Egads! I was bouncing SAtalk email since last weekend, so I am resending the below question. Thanks.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mad Martian Sent: Sunday, June 29, 2003 3:53 PM To: [EMAIL PROTECTED] Subject: RE: [SAtalk] BUGGY_CGI? Ok, I switched to NMS FormMail version 3.08c1 and I get the same BUGGY_CGI result. Is there some configuration I need to tweak? Here are my variables: $DEBUGGING = 1; $emulate_matts_code= 0; $secure = 1; $allow_empty_ref = 1; $max_recipients = 5; $mailprog = '/usr/lib/sendmail -oi -t'; $postmaster = ''; @referers = qw(www.madmartian.com); @allow_mail_to = qw(madmartian.com); @recipients = (); %recipient_alias = (); @valid_ENV = qw(REMOTE_HOST REMOTE_ADDR REMOTE_USER HTTP_USER_AGENT); $locale = ''; $charset = 'iso-8859-1'; $date_fmt = '%A, %B %d, %Y at %H:%M:%S'; $style = '/css/nms.css'; $no_content = 0; $double_spacing = 1; $wrap_text = 0; $wrap_style = 1; $send_confirmation_mail = 0; $confirmation_text = <<'END_OF_CONFIRMATION'; Thanks, -Mike -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bob Apthorpe Sent: Sunday, June 29, 2003 2:56 PM To: [EMAIL PROTECTED] Subject: Re: [SAtalk] BUGGY_CGI? Hi, On Sun, 29 Jun 2003 12:17:50 -0700 "Spam Sucks" <[EMAIL PROTECTED]> wrote: > Anyone know what Spamassassin is testing to trip the BUGGY_CGI sensor? > Is there a web site that lists the tests of each of the default > settings? I could only find lists of the default scores and descriptions > (even on the spamassasin.org site). > > The message I get is: > > BUGGY_CGI (2.8 points) Broken CGI script message > > I am using a very simple and standard FormMail form on my website and > forms sent to me from my own web site are getting marked as spam! If you are running the original FormMail from Matt's Script Archive (yes, that monstrous security hole distrubted from http://worldwidemart.com/scripts/formmail.shtml), you have much bigger problems than setting off your local copy of SpamAssassin. The original FormMail is so rife with bugs and security holes it's not funny (good news: it no longer offers shell access to your machine; bad news: it still turns your webserver into an open mail relay.) Stop worrying about SpamAssassin until after you replace FormMail with a secure equivalent, such as: - http://nms-cgi.sourceforge.net/scripts.shtml - ftp://ftp.monkeys.com/pub/formmail/1.9s/ Details at: http://www.monkeys.com/anti-spam/formmail-advisory.pdf or http://www.monkeys.com/anti-spam/formmail-advisory.ps http://www.securityfocus.com/corporate/research/top10attacks_q1_2002.sht ml > I also tried giving a negative score to having a particular subject (the > subject of my form) but couldn't get that to work either. > [...] > > Still didn't work. I have lowered the score of BUGGY_CGI as a > workaround, but I would like to solve these two problems. Leave BUGGY_CGI alone; it's doing what it's supposed to do (detecting FormMail spam.) Replace your FormMail script with something that doesn't turn your system into an open relay and SpamAssassin should work as intended, no rule-mangling necessary. hth, -- Bob ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
