On Thu, Feb 21, 2002 at 08:46:54AM -0000, Darren Simpson wrote: > try FormMail > http://worldwidemart.com/scripts/formmail.shtml
Be careful with formmail, for there are lots of script kiddies out there, trying to abuse it. Although I don't have it on my webserver, people occasionally try to exploit it. Look at my webserver's Feb 2002 access.log: 63.156.136.21 - - [03/Feb/2002:15:09:39 +0100] "GET /cgi-bin/formmail.pl?[EMAIL PROTECTED]&subject=www.jfranken.de/cgi-bin/formmail.pl&[EMAIL PROTECTED]&=www.jfranken.de/cgi-bin/formmail.pl HTTP/1.1" 404 225 63.156.136.21 - - [04/Feb/2002:10:07:28 +0100] "GET /cgi-bin/formmail.cgi?[EMAIL PROTECTED]&subject=www.jfranken.de/cgi-bin/formmail.cgi&[EMAIL PROTECTED]&=www.jfranken.de/cgi-bin/formmail.cgi HTTP/1.1" 404 226 63.156.136.146 - - [07/Feb/2002:08:02:59 +0100] "GET /cgi-bin/formmail.pl?[EMAIL PROTECTED]&subject=www.jfranken.de/cgi-bin/formmail.pl&[EMAIL PROTECTED]&=www.jfranken.de/cgi-bin/formmail.pl HTTP/1.0" 404 213 63.156.136.142 - - [11/Feb/2002:00:40:34 +0100] "GET /cgi-bin/formmail.cgi?[EMAIL PROTECTED]&subject=www.jfranken.de/cgi-bin/formmail.cgi&[EMAIL PROTECTED]&=www.jfranken.de/cgi-bin/formmail.cgi HTTP/1.1" 404 226 65.164.164.99 - - [15/Feb/2002:15:33:17 +0100] "GET /cgi-bin/formmail.pl?[EMAIL PROTECTED]&[EMAIL PROTECTED]&subject=www.jfranken.de/cgi-bin/formmail.pl&=www.jfranken.de HTTP/1.0" 404 213 -- Johannes Franken Professional unix/network development mailto:[EMAIL PROTECTED] http://www.jfranken.de/ -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
