At 08:20 2002-02-05 -0500, Don Hammond did say:
I *suspect* the original poster is asking about formmail, a script
commonly(?) used for some facet of web mail, and not the same formail we
all know and love. If so, and if spelled correctly as above, google
will return some 123,00 hits which ought to provide a start.
This is OT, but formmail.pl is the same CGI script commonly exploited to
send spew from YOUR server (yup, rather like having an open SMTP relay):
pppa30-resaleftlauderdaleb1-5r7024.dialinx.net - - [03/Feb/2002:23:51:32
-0800] "GET
/cgi-bin/formmail(_dot_)pl?recipient=mangroin51(_at_)aol(_dot_)com&subject=http://www.yourhost.tld/cgi-bin/formmail.pl&email=rdtim(_at_)rightimage(_dot_)com&=http://www.yourhost.tld/cgi-bin/formmail.pl
HTTP/1.1" 404 315 "-" "Microsoft URL Control - 6.00.8862"
(from the 404, you should be able to guess that *I* don't run this
script). I get dozens of these requests every day - scriptkiddies scanning
systems looking for the ones running this free cgi that will relay mail for
them.
If you must use it, ensure that you're using a version which permits you to
restrict the posting based on the referrer (which rather ironically, is
something the scriptkiddie could just set to be equal to the host that
they're requesting the script from, so even that's not really _secure_ -
just less wide open than the config the script kiddies are presently
searching for).
---
Sean B. Straw / Professional Software Engineering
Procmail disclaimer: <http://www.professional.org/procmail/disclaimer.html>
Please DO NOT carbon me on list replies. I'll get my copy from the list.
_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail