--On Friday, January 26, 2007 12:24:23 -0500 Charles Marcus <[EMAIL PROTECTED]> wrote:
| > | suppose I want to stop spam messages that are sent out for example | > | from vulnerable feedback forms on my web server . | > | Suppose that the spammer is sending 10000/email hour out of my server. | > | | > | Which is the best assp configuration/settings to block this spammer ? | > | > service httpd stop | > locate formmail.pl | xargs rm -f | | What is the best way to allow a user to submit an email from a website? | I'm curious, and my uncle actually needs to be able to do this on his | website now, and he asked me about it the other day...There exist re-written versions of formmail.pl that have closed the holes in that original Matt Wright version which had been extensively analysed and ripped to shreds.
My favorite is simply to collect all user input and mail it with say the php mail function, being extremely careful to only allow the user stuff in the body-text of the message, and supply the recipient and subject in the program script. Never ever trust a user to enter an email address you are going to use unchecked.
However if you do want a Formmail alike <http://nms-cgi.sourceforge.net/> is a good starting point -- Andrew Macpherson, OA5.com Ltd. The Red Lion #5. Much Hadham. Herts SG10 6DD. GB Phone +44 1279 843147 GSM +44 78999 61797 Fax +44 7092 052800 http://www.oa5.com/ OA5 is a member of ISPA-UK
pgpZY2r3mjX5R.pgp
Description: PGP signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
