Andre Hübner wrote:
Hello List, in last times i recognize that some scripts/formmailer of customers get abused by spammers. Some scripts avoid to use smtp-server and do smtp-dialog by its own using fsockopen etc. Problem ist that if mails are sent by fsockopen directy to other servers they not occur in server-maillog.
Right - because it's not going through your mail server.
Only way to find them is viewing accesslog, bit it is really hard to make relations between entries in accesslog and spamreports from other servers. My question is if there is a way to restrict fsockopen to use not port 25 or a kind of logging which makes entries if fsockopen is used.
Block it in the firewall? Local mail gets redirected to a dedicated mail server (which is allowed in the firewall). Everything else has port 25 blocked.
You can also do logging with iptables (and other similar programs) but that's way OT for php.
-- Postgresql & php tutorials http://www.designmagick.com/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
