https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52472#M10391 <P>Blades that are related to emails are Anti-Spam, Threat Emulation and Threat Extraction. Other Software Blades that are open are APPCtl , URLF, IPS, AV, AB, Identity Awareness.</P><P>&nbsp;</P><P>Also i have raised this to TAC and they told me that i am experiencing this sk110813. Now that i know that is only sends this kind of email when the email is not delivered but i need more explanation or verification that the Security Gateway is not compromised or what are other factors that causes this. eg. Compromised Mail Server or PC</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 03 May 2019 02:36:40 GMT El_Fernandez 2019-05-03T02:36:40Z https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/51943#M10295 <P>Hi everyone,</P><P>I would like to ask why does the Security Gateway sends out this kind of email to the internal users.</P><P>&nbsp;<span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="mail.PNG" style="width: 837px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/993i63B8DB44A6DF1B57/image-size/large?v=v2&amp;px=999" role="button" title="mail.PNG" alt="mail.PNG" /></span></P><P>and i also checked the postfix logs of the email server and gives me this info</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Mail Server PostFix Log 2.PNG" style="width: 988px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/994iC6AB7613EDBFA46F/image-size/large?v=v2&amp;px=999" role="button" title="Mail Server PostFix Log 2.PNG" alt="Mail Server PostFix Log 2.PNG" /></span></P><P>is there a possibility that the security gateway is compromised? or if anybody here can interpret what this logs and mail means its really a big help.</P> Fri, 26 Apr 2019 08:38:10 GMT https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/51943#M10295 El_Fernandez 2019-04-26T08:38:10Z https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52192#M10344 What Software Blades do you have enabled on this gateway? Mon, 29 Apr 2019 22:26:12 GMT https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52192#M10344 PhoneBoy 2019-04-29T22:26:12Z https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52212#M10347 <P>I'd check it for being an open relay just in case:</P> <P><A href="https://mxtoolbox.com/diagnostic.aspx" target="_blank">https://mxtoolbox.com/diagnostic.aspx</A></P> Tue, 30 Apr 2019 02:13:19 GMT https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52212#M10347 Vladimir 2019-04-30T02:13:19Z https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52472#M10391 <P>Blades that are related to emails are Anti-Spam, Threat Emulation and Threat Extraction. Other Software Blades that are open are APPCtl , URLF, IPS, AV, AB, Identity Awareness.</P><P>&nbsp;</P><P>Also i have raised this to TAC and they told me that i am experiencing this sk110813. Now that i know that is only sends this kind of email when the email is not delivered but i need more explanation or verification that the Security Gateway is not compromised or what are other factors that causes this. eg. Compromised Mail Server or PC</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 03 May 2019 02:36:40 GMT https://community.checkpoint.com/t5/General-Topics/Check-Point-sends-out-MAILER-DAEMON/m-p/52472#M10391 El_Fernandez 2019-05-03T02:36:40Z