How can I track outgoing emails from Unix and Sendmail?

Question

How can I track outgoing emails from Unix and Sendmail?

I am starting the FreeBSD server and I was sent a warning that spam was sent from my server. I do not set it as an open relay, and I configured the sendmail configuration. I would like to know who sends the email by email with my username, email, and also how much mail they send. I would like to run a log report similar to how this is done when processing Apache server logs.

What are my options?

+6

unix email freebsd sendmail

Brennan Jul 13 '09 at 12:42

source share

4 answers

If FreeBSD has a default configuration, you have only one way to handle output mail, make sure that you send through the sendmail system to /etc/mail .

All output mail should be logged /var/log/maillog

+1

etz Jan 30 '11 at 3:52

source share

Can you give some sample logs? I think you would be best off looking through them with grep or cut to get the sent source / recipients. Alternatively, you can write a Perl script to automate it as soon as you have the correct regular expression. That would be the best option.

0

Suroot Jul 13 '09 at 12:51

source share

You can also control all system calls with the write and read functions by doing:

 ps auxw | grep sendmail | awk '{print"-p " $2}' | xargs strace -s 256 -f 2>&1 | grep -E $'@|(([0-9]+\.){3}[0-9]+)' | tee -a "/var/log/sendmail-logs.log"

This will give you direct access to information; you cannot go deeper, I think.

0

test30 Feb 09 '16 at 11:14

source share

uniquesnowflake8 · Accepted Answer · 2009-07-13T01:02:55+0000

One idea is for alias sendmail to be a custom script that simply mows sendmail arguments to the end of the log before calling sendmail in the usual way.

How can I track outgoing emails from Unix and Sendmail?

More articles: