The problems seem to be that it uses the Referer environmental variable to exclude spammers and it gives the option of encoding data in the URL. I've been told both are considered security risks. My ISP does not think even the latest release addresses these issues and refuses to let Formmail on its servers.
-----Original Message----- From: drieux [mailto:[EMAIL PROTECTED]] Sent: Monday, May 13, 2002 11:14 AM To: cgi Subject: Re: Matt Wright's formMail On Monday, May 13, 2002, at 08:52 , Kevin Meltzer wrote: > > try the rewrite from NMS: > > http://nms-cgi.sourceforge.net/ > > Cheers, > Kevin which version of the code is the 'problem' version? what is the current specific 'security' issue? there was a security update to v1.92 on 04/21/02 has there been some new issue arise??? since then? ciao drieux --- -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
