Hi all,
i experience some problems with qmail.
Someone found a hole in my server (suse 9.3) and sends thousands of spams...
Does anyone has a script in order to find out where is the problem? (web form? other vulnerability?).
At mail-wide preferences on my server at WHITE-LIST the value is: 127.0.0.0/8
Is this safe? After some search about it, i found out that the correct value there is: 127.0.0.1/32 .... Which one is correct?
I have a lot of different domains/clients on my server, and all of them have web forms and i tried to check all of them, and patch them with "eregi" for avoiding injections). Is this correct?
Does anyone has written a script that runs allways on the server and checks for non-logic email sends?
Is there any configuration for qmail to LIMIT the recipients of a mail?
Thank you.
Zeroborg.
i experience some problems with qmail.
Someone found a hole in my server (suse 9.3) and sends thousands of spams...
Does anyone has a script in order to find out where is the problem? (web form? other vulnerability?).
At mail-wide preferences on my server at WHITE-LIST the value is: 127.0.0.0/8
Is this safe? After some search about it, i found out that the correct value there is: 127.0.0.1/32 .... Which one is correct?
I have a lot of different domains/clients on my server, and all of them have web forms and i tried to check all of them, and patch them with "eregi" for avoiding injections). Is this correct?
Does anyone has written a script that runs allways on the server and checks for non-logic email sends?
Is there any configuration for qmail to LIMIT the recipients of a mail?
Thank you.
Zeroborg.