Re: [exim] Tracing Web Form Spam

Top Page
Delete this message
Reply to this message
Author: Brian Blood
Date:  
To: Exim Mailing List
Subject: Re: [exim] Tracing Web Form Spam

On Jul 27, 2010, at 9:32 AM, Oliver Heesakkers wrote:

> Op dinsdag 27 juli 2010 16:10:19 schreef Marc Perkel:
>> Just wondering - what is a good way to put information from the apache
>> web server into an Exim header so that I can figure out what web form
>> has been hacked to send out spam.
>>
>> Thanks in advance
>
> You can add
>
> php_value mail.force_extra_parameters -fuser@???
>
> to every virtualhost, so you can identify the offending one.
>
> Of course user@??? would have to match something sensible for that
> particular virtualhost.
>
> More info here:
> http://php.net/manual/en/configuration.changes.php



Also, PHP 5.3 adds the following useful parameters:

; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename
mail.add_x_header = On

; Log all mail() calls including the full path of the script, line #, to address and headers
;mail.log =




Regards,
Brian Blood
ECMSquared.com