On Wed, Feb 20, 2002 at 04:09:17PM -0700, Lisa Bogar wrote: > > Someone on campus called me yesterday inquiring about how to stop relaying > through sendmail. He thought he had configured his sendmail.cf to not > allow relaying, but then got notified he was relaying mail. Today after > some searching he found some information about FormMail.pl where it can be > used to cause your webserver to relay mail. He found his information from > www.8wire.com. Is anyone else familar with this and have you encountered > it? The logs show attacks targeted at the cgi-bin that sent out tons of > porno spam. > > Just trying to find out more information and I am surprised if it is > indeed happening why I haven't seen anything on CERT or bugtraq.
You might find this usefull: http://www.monkeys.com/anti-spam/formmail-advisory.pdf
