[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Spammer sending from httpd on our RaQ3

Subject: Re: [cobalt-users] Spammer sending from httpd on our RaQ3
From: Lillith Lesanges <lillith@xxxxxxxxxx>
Date: Wed Dec 12 16:15:29 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Wednesday, December 12, 2001, at 10:37 AM, Scott w wrote:

<paul said>
Someone is sending spam via one of our RaQs, they've apparently found a
way to send mail as if it were coming from the http daemon.  Not sure
just how to disable this, particularly in a way that the GUI won't
re-enable next time we add an email account.  Any ideas?
</paul said>
Do you or any of your users have Matt's Formmail script running? Thereis an exploit with older versions. You should upgrade any old versionsas soon as possible...

Or just not use stuff from Matt's Script Archive, since they aren'texactly the best or most secure scripts out there.

For drop-in replacements which are more secure, check out the NMSproject at Sourceforge (http://nms-cgi.sourceforge.net/). These free,drop-in replacements are written by a team of folks who are well-knownand active in Perl communities, such as Perlmonks(http://www.perlmonks.org/), and are dedicated to increasing the levelof security out there in the Web.


Lillith K. Lesanges
(amelinda on Perlmonks)
Sysadmin/Programmer, MIS, Inc.				http://www.misinc.net/

References:
- RE: [cobalt-users] Spammer sending from httpd on our RaQ3
  - From: Scott w

Prev by Date: [cobalt-users] No user here... CMU
Next by Date: [cobalt-users] /etc/hosts.deny
Previous by thread: RE: [cobalt-users] Spammer sending from httpd on our RaQ3
Next by thread: [cobalt-users] SSH and Telnet on a Qube3

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index