Hello EB, Tuesday, February 1, 2005, 8:22:15 AM, you wrote:
E> We had secured the formmail.pl with the anti-spam version, and we had E> searched all httpd logs while the spamming occured, but there wasn't E> any suspicious call to cgi scripts. We think it could be something E> harder to check, which is PHP. Have you secured all formmail.pl (and similar) scripts? You may have one central copy you've secured, but it may be that some user has an insecure one in a private cgi directory? Bob Menschel
