Many of my clients using populer FormMail script to send mails from their pages. But I found out that they use some other domains to relay on this script too. So, they can call this script to send mails out. These domains are not hosted in my server.

I wanted to block this "abuse". How do I do this? I am thinking about to block sendmail as it not to send mails for the domains which are not hosted in my server.

Any solutions?

There are a lot of formmail scripts which only work if used by specific domain names.

Take a look at hotscripts.com for some of these scripts.

ok, But my problem is most of the clients using FormMail.pl from Matt. They have their own CGI-BIN folder so they can install in them self.
In the script, There is a referrer option where you can allow any domain to send mails, the script it self using the sendmail to process this.

But I need a solution that block anyone send mails using sendmail from "out side" the server. and It should work server wide.

Greetings:

Take a look at http://www.phorm.com/ as well as CGIEmail.

Thank you.

Hi dynamicnet

thank you for your suggestion, but my problem is not finding a new script can prevent this.
but I need to block the mails been send from my server, which is called from a domain hosted somewhere else.

It is more send mail related..

You cannot find something here ?

http://www.hotscripts.com/PHP/Scripts_and_Programs/Form_Processors/

or

http://www.hotscripts.com/Perl/Scripts_and_Programs/Form_Processors/index.html

Well if that client doesn't send out Spam then no worries :)

Originally posted by glypto.com
This can be done by setting only the domains you want to be able to call the script in the referrer field


@referers = ('customerdomain.com','seconddomain.com');


yes I know this set-up. but I do not want to go every formmail script of my clients and make the changes. what I need is a serverwide solution to block send mail processing mails for other domains which are not hosted in my server. only allow the domains are hosted in my server. I guess it is a sendmail issue, but couldnt find any solution for this yet...

We discovered many of our customers used version 1.6 and that version has spam security holes so we went though and upgraded all to version 1.9 also made that setting for our customers. Took us two days :bawling: Darn I wouldn't want to do it again!

Originally posted by NightMan


yes I know this set-up. but I do not want to go every formmail script of my clients and make the changes. what I need is a serverwide solution to block send mail processing mails for other domains which are not hosted in my server. only allow the domains are hosted in my server. I guess it is a sendmail issue, but couldnt find any solution for this yet...

there is no such solution for what you are asking. the only way to do is to monitor and police all scripts / formmail scripts and search in them for bugs. specially you can check that particular line to match domain on your servers. then fix that script for client or tell them to fix it.

hey, i don't have any such script but i am looking to program one or somebody program it for me for some $$$.

have a nice day
- mahinder

Block all files named 'formmail'. This will block almost all installation of Matt's Formmail.


<FilesMatch "[Ff][Oo][Rr][Mm]?[Mm][Aa][Ii][Ll]">
Order Deny,Allow
Deny from all
</Files>


This will also block all spiders that spammers use to scan your domains for insecure formmails. You also need to inform your users the change, any files named formmail will no longer function.

Originally posted by glypto.com
We discovered many of our customers used version 1.6 and that version has spam security holes so we went though and upgraded all to version 1.9 also made that setting for our customers. Took us two days :bawling: Darn I wouldn't want to do it again!
too bad that version is exploitable too:angry:

Aside from limiting the domain that can use the formmail script, you need to also lock down a fixed list of recipients. Otherwise spammers will still use this (my old company had smoeone mailout several thousand ads for penis enlargement from their servers).

More info here: http://www.mailvalley.com/formmail/