Problem se spamem

[Jiří Červenka <cervenka zavinac sps-pi bod cz>]

Zdravim vsechny,
stala se mi nemila vec. Nekdo zacal muj mailovy server pouzivat k 
rozesilani spamu. V logu se najednou objevilo ze uzivatel www-data (muj 
uzivatel pod kterym bezi apache) posila maily na vsechny strany. Zaroven 
mi zacaly chodit stiznosti na muj server(Debian sarge). Jako postaka 
pouzivam postfix spolu s amavisd-new+spamassassin+nod32, ktery postu 
preposila na mercury mail server na stroji s netware5, ktery ji pak 
rozdeluje do schranek.
Nevim kde bych mel zacit s hledanim problemu.

Dik za kazdou pomoc


Prikladam konfiguracni soubor postfixu:

| cat main.cf
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
delay_warning_time = 4h

myhostname = gate.sps-pi.cz
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = gate.sps-pi.cz, localhost, localhost.localdomain, localhost
relay_domains = $mydestination, sps-pi.cz
mynetworks = 127.0.0.0/8, 172.16.0.0/16, 172.17.0.0/16
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all

message_size_limit = 52428800

transport_maps = hash:/etc/postfix/transport

content_filter = smtp:[127.0.0.1]:10024

smtpd_recipient_restrictions =
permit_mynetworks,
reject_invalid_hostname,
reject_non_fqdn_hostname,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
# reject_unknown_recipient_domain,
reject_unauth_pipelining,
reject_unauth_destination,
reject_rbl_client relays.ordb.org,
reject_rbl_client opm.blitzed.org,
#reject_rbl_client list.dsbl.org,
reject_rbl_client sbl.spamhaus.org,
permit

smtpd_sender_restrictions =
check_sender_access hash:/etc/postfix/access|