Re: Formmail and spam attack
by "Mike Taylor" <lonewolf(at)one.net>
|
| Date: |
Tue, 22 Oct 2002 18:50:51 -0400 |
| To: |
"custom" <custom(at)desktoppub.com>,
<hwg-techniques(at)mail.hwg.org> |
| References: |
rr |
| |
todo: View
Thread,
Original
|
|
Here's some info about it. I had this appear in my logs, even though we're
on IIS and don't use any Perl/CGI.
http://www.ctssn.com/linux/formMailExploit.html
----- Original Message -----
From: "custom" <custom(at)desktoppub.com>
To: <hwg-techniques(at)mail.hwg.org>
Sent: Tuesday, October 22, 2002 2:33 PM
Subject: Formmail and spam attack
> This weekend I made the unpleasant discovery that a spammer was
> apparently using a formmail script on my client's site to send out porno
> spam. Thousands of messages went out, all with my client's return
> address.
>
> The tech folks at the hosting company said spammers can exploit a
> weakness in formmail to launch their email. They recommended upgrading my
> version (I had 1.9 and I found 1.92 at Matt's Script Archive).
>
> Has this happened to anyone here? Is the recommendation I received
> sufficient or are there other steps I should take?
>
> John
>
> Custom Communications
> Web site design
> 145 Newbury St., 3rd Floor
> Portland, ME 04101
> (207) 771-5510
> www.desktoppub.com
>
HWG hwg-techniques mailing list archives,
maintained by Webmasters @ IWA