Steffen Dettmer wrote:
* Steffen Dettmer wrote on Thu, Nov 28, 2002 at 11:34 +0100:
* Alex Levit wrote on Wed, Nov 27, 2002 at 10:28 -0800:
Somebody is exploiting a php mail script on my web-server and use it for sending spam.
Damn, just had the same problem on a customer's server, formmail.cgi. I don't know why I need to remove formmail again and again, didn't they learned it?!
These people scan for them, and when they find one, they try to break it. The simplest solution is to rename it. Better still, upgrade to this version, *and* rename it: ########################################################################## # FormMail Version 1.9s-p7 # # Copyright 1995-2001 Matt Wright mattw@worldwidemart.com # # Created 06/09/95 Last Modified 02/24/02 00:34:00 PST # # Matt's Script Archive, Inc.: http://www.worldwidemart.com/scripts/ # # Enhanced Security Version: ftp://ftp.monkeys.com/pub/formmail/ # ########################################################################## Cheers, Laurie. -- --------------------------------------------------------------------- Laurie Brown laurie@brownowl.com ---------------------------------------------------------------------