On 13-Dec-06, at 5:53 PM, Stut wrote:
I'm thinking about this from an ISP point of view... we get a lot of abuse reports because people have poorly written form handlers. It would be great if we could have PHP insert the full URL, domain name included, in the mail headers for anything it sends. Would that be possible?
That is way too much information to include into an e-mail header, this would in fact be information disclosure vulnerability in many eyes. The log file that you can enable provides you with the full path to the script that called mail, which is more then enough to identify the offending script and/or application.
Ilia Alshanetsky -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
