dont get so heated. i fixed an old standing problem that this person was referencing as apache a long time ago, this isnt what i am refering to needing help on thank you very much. i wanted to make that distinction as I just did. Now, my problem is QMAIL sends out a lot of spam through what I assumed as relaying, but when I disable relaying, or password protect it, this still happens, therefore it's script related. HOWEVER, I cannot just disable PHPs ability to send emails as many of our websites rely on this system. I am asking for an optional fix.
Now, to solve the Apache problem, all one must do is open the php.ini in the apache/conf/ directory, search for the disabled_features = line, and add these:
disable_functions = phpinfo,shell_exec,passthru,exec,system,proc_get_status,proc_nice,proc_open,proc_terminate,proc_close
I also recommend doing "whereis wget" and going to that directory of its location, you must chown root wget. Most script kiddies use that to import their scripts into your /tmp/ directory to execute.
If you have problems w/ a lot of stuff in that regard, also, create a crontabed process running the following:
#!/bin/sh
killall -9 cgi
killall -9 mech
rm /tmp/cgi
rm /tmp/udp.pl
rm /var/tmp/udp.pl
rm /tmp/*bnc*
rm /var/tmp/*bnc*
rm /tmp/*giga*
rm /var/tmp/*giga*
rm /tmp/*mech*
rm /var/tmp/*mech*
rm /tmp/*.php
rm /var/tmp/*.php
rm /tmp/*.pl
rm /var/tmp/*.pl
rm /tmp/*.htm
rm /var/tmp/*.htm
rm /tmp/*.html
rm /var/tmp/*.html
rm /tmp/*.txt
rm /var/tmp/*.txt
rm /tmp/*.c
rm /var/tmp/*.c
rm /tmp/*.tgz
rm /var/tmp/*.tgz
rm /tmp/*.tar
rm /var/tmp/*.tar
rm /tmp/*.gz
rm /var/tmp/*.gz
Most "hackers" are Turkish people wanting to create Emech DOS bots and so forth. Quite easy to solve that by doing those steps, the FIRST step should do it, but the other two are smooth precautions.
NOW, about my PROBLEM again, I'd love a solution to stop QMAIL spamming without disabling PHPs mailer option. Ideas?