Hi Folks,I'm trying to diagnose a spam-injection attack. Someone seems to have figured out how to POST a message to wordpress, and by doing so inject spam into postfix's mail queue. Definitely nasty.
I can see the Apache and Postfix log entries created by the attack - but not the actual content of the POST messages.
So.. I: - enabled mod_dumpio - put a |DumpIOInput On config statement in httpd.conf - restarted the server But... I'm not seeing the input data logged into error.log.So... either I'm doing something wrong, or there's some interaction between logging, mod_dumpio, fastcgi, and php that's interfering with with capturing/dumping the input data.
Suggestions please! Thanks very much, Miles Fidelman | -- In theory, there is no difference between theory and practice. In practice, there is. .... Yogi Berra --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|