On 7/2/2013 8:20 πμ, (HT) Simon Walter wrote:
I can change the password, however, this account is shared amongst
many users and I'd rather not ask all the users to change their password.
My humble advice:
1. Change the password and require users to change their passwords. Use
a password policy to require safe passwords. Computer illiteracy is not
an excuse.
2. Find the cause of the password leakage and correct.
3. Make sure you have measures to avoid this from happening again, and
if it happens you can quickly stop spam (e.g. with policyd/postfwd)
otherwise your server will get blacklisted in no time.
2c,
Nick
