Andre Hübner wrote:
Hello List,
in last times i recognize that some scripts/formmailer of customers get abused
by spammers.
Some scripts avoid to use smtp-server and do smtp-dialog by its own using
fsockopen etc.
Problem ist that if mails are sent by fsockopen directy to other servers they
not occur in server-maillog.
Right - because it's not going through your mail server.
Only way to find them is viewing accesslog, bit it is really hard to make
relations between entries in accesslog
and spamreports from other servers.
My question is if there is a way to restrict fsockopen to use not port 25 or a
kind of logging which makes entries if fsockopen is used.
Block it in the firewall? Local mail gets redirected to a dedicated mail
server (which is allowed in the firewall). Everything else has port 25
blocked.
You can also do logging with iptables (and other similar programs) but
that's way OT for php.
--
Postgresql & php tutorials
http://www.designmagick.com/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
