Ok. so a while back we had a spammer gain access to some accounts due to easy passwords. They had went in and changed the forwarding address on these accounts so any mail coming to these accounts got forwarded to them also. I had went in and changed the ones I knew got hacked but I found out yesterday that they had also changed the reply-to address so when these people used the web interface to sent out email, any replies went to the spammer and not back to the account holder.
I have over 300 accounts so is there anyway using the CLI to scan all accounts and give me the forwarding addresses on the accounts as well as the reply-to addresses? Some of the account will have forwarding addresses that are good so I know some will get returned but I can work through that list
Also, if I go in and change the password requirements to be more strict, will that break current passwords if they don't meet the requirements? My hope there is to set the passwords to expire in like 15 days and force everyone to change their password to something harder to hack.