Is someone spamming through me?

[Martin Hepworth]

Jody

Yeah - someones exploiting a hole on the web server...could be perl, could
be php....could be a real problem to identify...;-(

Are all these scripts etc under you control or a customers....

If it's your control, I'd recommend you upgrade all the programs that the
webserver is running...all the php based programs, all the perl based
stuff..

If you can identify when this started you may be able to spot what program
they are calling through the website by looking at the apache logs at that
time.

--
Martin Hepworth 
Snr Systems Administrator
Solid State Logic
Tel: +44 (0)1865 842300

> -----Original Message-----
> From: mailscanner-bounces at lists.mailscanner.info [mailto:mailscanner-
> bounces at lists.mailscanner.info] On Behalf Of Jody Cleveland
> Sent: 26 April 2006 14:43
> To: MailScanner discussion
> Subject: RE: Is someone spamming through me?
> 
> > Unfortunately, there aren't any there right now. But, yesterday I
> > cleared out the que and looked at the headers. They all said they were
> > coming from a hotmail address.
> 
> I stand corrected. They are coming from apache at mystique.winnefox.org.
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
> 
> Before posting, read http://wiki.mailscanner.info/posting
> 
> Support MailScanner development - buy the book off the website!


**********************************************************************

This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote confirms that this email message has been swept
for the presence of computer viruses and is believed to be clean.	

**********************************************************************