[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] New FormMail script
- Subject: Re: [cobalt-users] New FormMail script
- From: "Anthony C. Herman" <tony@xxxxxxxxxxx>
- Date: Thu Apr 25 06:46:25 2002
- Organization: Webstix, Inc. http://webstix.com
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Hello (my first post...busy list!)
Jeff Lasman wrote:
> FormMail.pl v.1.91s is available by anonymous ftp at ftp.nobaloney.net;
> it's probably using the same security as 1.92. It's never been reported
> as breached.
>
> It runs fine in our RaQs, and no one's ever reported to us any problems
> in using it. It runs as a .pl file wihtout difficulty.
I thought the same thing about formmail.pl 1.92, then got slammed with
someone abusing it about 2 weeks ago. They managed to send 20,000 emails
in just about 5 hours on a Sat. Good thing I logged in and caught it.
The return emails have just finally stopped coming in and I'm on Yahoo's
blacklist for sure. What a mess.
My advice, change your scripts to NMS before this happens to you. Matt's
scripts are not kept up to date very well and these are a bunch of real
programmers trying to help:
http://nms-cgi.sourceforge.net/
At the very least, rename your script to something else. :-)
-Anthony
--
------------------------------------------------------------------
Anthony C. Herman - Webstix, Inc. USA Office: 608-712-5878
"Using the Whole Brain" FAX: 608-223-0944
Web Design and Development
tony@xxxxxxxxxxx http://www.webstix.com/
------------------------------------------------------------------
Madison's Web Directory: http://www.madisonclick.com/