We are getting 'spammed' and by that I mean has probably hacked an account's cedentials and is using it to send out mail - its jamming us up - we are going to upgrade to 2012 next year but I need to continue with 6.5 till then. We have had this problem before and people say to 'look in your poa log' to figure out which account is being used - but I have scoured it and how do I know which account? We use client connections so literally all of our users show up as logging in there - we also use pop3 and imap. Last time we had a big problem I made everyone change their passwords - but I would love some help in deciphering which account is the one pushing all these mails through?
↧