At 07:36 8/07/02 +0200, Holger Lembke wrote :-
> > Recently, I have had a flurry of attempts looking for a
> > formmail.pl script in the cgi-bin directory.
>
>A well known attack. To get a rough idea, what is up at your [tm] system,
>use:
>
>
>#!/usr/bin/perl
>
>open(LOG,'>>formmail_log') or die $!;
>print LOG scalar(localtime). ", $ENV{'REMOTE_ADDR'},
>$ENV{'QUERY_STRING'}\n";
>close LOG;
>
>sleep(30);
>print "Content-type: text/plain\n\n";
>print "You have been logged. A complaint will be sent to your provider.";
Of course, you can use the
$ENV{HTTP_REFERER} - to only accept all forms from your site, & reject any
other sites..
G.
-------------------------------------------------------
To unsubscribe please go to http://www.sambar.ch/list/
