I'm sorry, but I wasn't exactly sure what forum to post this in! I just got this e-mail from my host (Lunarpages) and I don't know what it means:
"In an effort to proactively ensure the stability of our servers, we are regularly running a program to identify exploitable form mail scripts.
Form mail scripts that are exploited will result in a deluge of spam
being generated from our server, endangering our servers to blacklisting by ISP’s. Also, because of the quantity of emails generated by these compromised scripts, it may cause an excessive load on the servers. This may mean services would have to be disabled or even the server rebooted if it got to a critical point.
We are asking your assistance with this to check your form codes for **poorly named scripts** or **insecure scripts**
Poorly named scripts are scripts with any extension that are named or have in their name “mail”, “formmail” or any variation thereof. In the case of poorly named scripts, please rename these to something more obscure. Scripts with these names are targeted for exploits and even scripts written well don't need the undue attention.
Insecure scripts are scripts we know to be exploitable and have already caused issues on our servers. If you have any of these, please disable them immediately."
Ok, I have no idea what that means, but I don't want to be doing something wrong! Could someone tell me what they're trying to say??
What that means is certains scripts like the Formmail.cgi script have a few exploitable components in its coding. So you might want to run a scan of Formmail,Formail,or any mail script that is being used that could be exploited and used as a spam relay.
Originally posted by taylor87 Ok. How do I do that?
If your host wants them disabled or re-named then I'm sure they will give you step by step instructions on how to do that. After all, they can see your scripts and should be able to give you specific instructions that pertain to the exact scripts you may be using.