aesoft
Joined:
07 Nov 2003
Posts:
15
Location:
USA
|
Posted: Sat Nov 22, 2003 12:34 pm
Post subject:
|
 |
|
Hi Dinky,
Not necessarily an intention to break into your server.
There are several older FormMail scripts that have some security
holes in them that allow others to exploit the scripts mainly for Spamming
purposes.
Note: This script came out way before Spamming was such a problem
and the abuse was minimal.
You can go to:
http://www.scriptarchive.com/formmail.html
and you'll notice:
"SECURITY UPDATE -- April 19, 2002 -- UPGRADE IMMEDIATELY"
| Quote: | | Any users who have versions of FormMail prior to v1.91, including the popular version 1.6, should upgrade immediately. v1.91 plugs several more spam-related security holes. The following fixes have also been implemented since v1.6: prevents unwanted access to environment variables and problem of receiving e-mail while using the redirect option. The script has two extra arrays (new in v1.7) you must define, but will not affect current forms or the way they appear after having been submitted. |
Again, I've only ran across this from OLDER scripts and Matt's script,
the grandfather of FormMail scripts, was the most widely known script
for this breech.
All in all, you should be fine. You may want to track the IP address
and interval for future ref.
Hope this helps.
_________________
All The Best,
James
ZipBranding.com
*******************
This new software is creating a shockwave in the
internet marketing community...
Find out how to grab a Free copy today! |
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Private Messages
Log in
