Lindsay Haisley wrote: > I just had a serious security breach here. > [...] > I have a very few customers who require authenticated SMTP. All others > use their ISPs' SMTP servers. On top of this, customers are able to set > their own mailbox passwords, and some don't understand about proper > password security.
Did you find out how did the spammer get access? If not, would you mind mentioning if the MYSQL_CHARACTER_SET entry is set and what version of authmysql is installed? (Recall there was some concern about possible SQL code injection when escaping strings with the provided library call.) ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
