Not strictly speaking on topic, but pretty close. Just found this one the hard way. If you're a web master running a site that uses the formmail.pl script from Matt's Script Archive, you're probably running version 1.6. Be aware that script has a security flaw that allows it to be used to relay spam through your site. You need to upgrade to version 1.9 immediately. Disable the current version until you do. I found this by accident because I was working on sendmail, and suddenly saw weird stuff in the logs. If you aren't paying really close attention, you won't notice. But if you're running a version of formmail.pl 1.8 or before, you're a spam relay. And much to my dismay, they obviously are doing automated scans of sites looking for copies to use. Needless to say, my copy is disabled until I get this sucker fixed. -- Chuq Von Rospach, Internet Gnome <http://www.chuqui.com> [<[EMAIL PROTECTED]> = <[EMAIL PROTECTED]> = <[EMAIL PROTECTED]>] Yes, yes, I've finally finished my home page. Lucky you. You know, I Remember When I Used To Speak In Capitals, Too. It's addictive. It also encourages people to poke sticks at you. Justifiably. (chuq, 1992)
