Am 20.08.2011 23:41, schrieb The Doctor: > I suspect my web user is sending spam out. > > Only Postfix is stopping this. > > How can I check to see > 1) who is using the web user to send mail > > and > 2) by what script
i would recommend disable mail() in PHP (guess used on the server) and require every web-user to use smtp onöy with authentication in this case you would see the user in the maillog and if your customers are not wantig to use phpmailer() or whatever with SMTP take a breath and spend some minutes to think about if you really want everybody as customer we defined mail() in disabled_functions ten years ago primary for security reasons because there wre way to much header-bypassings in badly written scripts and the benefit is that we see ecactly what user is sending what messages
signature.asc
Description: OpenPGP digital signature
