ACCOUNT VIOLATION????

[moteor]

So I have just started using roundcube mail and already the nighmare begins!!

Once upon a time there was a new user. One day he logged into his account and clicked on the sent folder . . .

. . . Imagine his horror when he found sent messages that he has not sent !!

Seriously tho, these messages are from a medical company in Spain!

IS ROUND CUBE SECURE??? I wouldn't trust it . . . .


BLATANT SERVER ERROR!!!!!!!!!!!!!!!!!   

 

[moteor]

Just an update, I logged out and in and the messages were still there

10 minutes later and they disappear along with the sent folder.


Just enough time for me to find out if all the details of the offending company and who this guy is:

Contact these (hackers) for why they use other peoples webmail?


http://www.whois.com/whois/http://informaticamedica.alumnos.exa.unicen.edu.ar/contacto

Mail of the chair: imedica@alumnos.exa.unicen.edu.ar

Mariana Fresno, mdelfres@exa.unicen.edu.ar

José María Massa, jmassa@exa.unicen.edu.ar

Pedro Escobar, pescobar@fio.unicen.edu.ar

Emanuel Arguiñarena, earguinarena@alumnos.exa.unicen.edu.ar

Barbara Rodeker, barbararodeker@gmail.com


at http://informaticamedica.alumnos.exa.unicen.edu.ar/contacto

for more info.


Oh yeah and if you do it again I will DDos you.

IMA FIRIN UP MA LASER!!! 

[JohnDoh]

Hi,

Do you host your own copy of roundcube or are you an end user? Roundcube is an imap client it doesn't store your imap password.

If you host your own copy: you could check your imapd and httpd logs to see who has logged in to your account from where.

If you are an end user: you should contact your ISP and ask them to find out where the message came from.

If someone else has got into your account and been using it to send spam that is, ofcourse, serious. The first thing to do is to find out how they got in, for that you need to check server logs. Just because you use Roundcube webmail it doesn't mean it must of somehow of been connected to that. If it was then the devs will want as much info as possible about what happened if they are going to have any chance of stopping it from happening.

[moteor]

As an end user I will contact my host and find out but as the messages are gone now is there any proof?

I have a feeling it will be too much work and no solution. I did think server error . .  but now am not sure.

Ill post them a link and see what they have to say about it, although their servers are DNSMADEEASY.COM not my host (50webs)

so how can it be my provider? Very quick to allocate blame . . .

[JohnDoh]

only your providor can access the server logs to find out what actually happened it doesn't mean they are to blame.