PHWinfo - Afficher un message

16/05/2007, 22h46

Fravo unleashed the infinite monkeys on 16/05/2007 20:23 producing:

> So, what can I do? I just need that localhost send e-mails via the php
> script using the funcion mail() from php 5.

And the odds are good that it's that script that's responsible for the
spam, not sendmail acting as an open relay.

This type of problem has been known about, and discussed, for literally
years. If you're not sanitising the information that gets passed to the
mail() function then you're going to be used as a spam "source" (as
that's how it will appear).

--
Rob MacGregor (BOFH)

Rule 37: "There is no 'overkill'. There is only 'open fire'
and 'I need to reload.'"

16/05/2007, 22h46	#2
Rob MacGregor Messages: n/a Hébergeur:	Re: Security Fravo unleashed the infinite monkeys on 16/05/2007 20:23 producing: > So, what can I do? I just need that localhost send e-mails via the php > script using the funcion mail() from php 5. And the odds are good that it's that script that's responsible for the spam, not sendmail acting as an open relay. This type of problem has been known about, and discussed, for literally years. If you're not sanitising the information that gets passed to the mail() function then you're going to be used as a spam "source" (as that's how it will appear). -- Rob MacGregor (BOFH) Rule 37: "There is no 'overkill'. There is only 'open fire' and 'I need to reload.'"