Slightly OT - Exim / Apache

Kai Schaetzl maillists at CONACTIVE.COM
Thu Dec 8 22:47:51 GMT 2005

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

Michele Neylon :: Blacknight Solutions wrote on         Thu, 8 Dec 2005 
21:59:01 -0000:

> Over the last few weeks the number of attacks on forms hosted on our servers 
> has reached new levels 
> Unfortunately the user id for the mail is set to apache, which makes 
> tracking down the domain / user who has the vulnerable script very awkward

This is not a problem with CGI, so I assume you are talking about php scripts 
and mod_php? You can set a mail from address for each virtualhost for php which 
will replace the apache userid.


Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services:

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki ( and
the archives (

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list