Results 1 to 18 of 18
  1. #1
    Join Date
    Mar 2004
    Posts
    1,005

    Find PHP Nobody Spammers

    Hello Everyone,

    Below is the script whcih i have foudn at http://layer0.layeredtech.com/showthread.php?t=75

    It seems to be woriking on canel based systems.

    Anyone know if any similar script for Plesk based systems to detect Nobody Spammers?
    Best Regards,
    Namesniper

  2. #2
    Join Date
    Sep 2000
    Location
    New Jersey
    Posts
    389
    There is a patch to add headers into the php mail function where it will show what script called the mail function. Its at http://www.lancs.ac.uk/~steveb/php-mail-header-patch/

    You will need to patch the php source and recompile php to use it.

  3. #3
    Join Date
    Mar 2004
    Posts
    1,005
    Will it work on plesk based systems?

    Any other ideas?

    Originally posted by Tcoy
    There is a patch to add headers into the php mail function where it will show what script called the mail function. Its at http://www.lancs.ac.uk/~steveb/php-mail-header-patch/

    You will need to patch the php source and recompile php to use it.
    Best Regards,
    Namesniper

  4. #4
    Join Date
    Sep 2004
    Location
    Flint, Michigan
    Posts
    5,765
    That patch should work on any system
    Mike from Zoodia.com
    Professional web design and development services.
    In need of a fresh hosting design? See what premade designs we have in stock!
    Web design tips, tricks, and more at MichaelPruitt.com

  5. #5
    Join Date
    Jul 2003
    Location
    Texas
    Posts
    785
    Hello,

    That script will work fine with Plesk. I have used it in the past to bust some Paypal scammers on Plesk hosts.

    Thanks,

    Jeremy

  6. #6
    Join Date
    Mar 2004
    Posts
    1,005
    Jeremy,

    You mean that one http://www.lancs.ac.uk/~steveb/php-mail-header-patch/ or that one http://www.lancs.ac.uk/~steveb/php-mail-header-patch/ ?



    Originally posted by LTADMIN
    Hello,

    That script will work fine with Plesk. I have used it in the past to bust some Paypal scammers on Plesk hosts.

    Thanks,

    Jeremy
    Best Regards,
    Namesniper

  7. #7
    Join Date
    Jul 2004
    Posts
    246
    You may want this one for the updated php versions;

    Read more at Steve Bennett's patch as I created my patches according to his patch with a little tweak/modification since his patch only available for version 4.3.4 and also won't be working for mail function example 1 as listed at php manual.

    http://choon.net/php-mail-header.php

  8. #8
    Join Date
    Nov 2001
    Location
    The South
    Posts
    5,403
    I use the choon.net patch and it's great for tracking down php spammers, it just puts right in the email header the script called pretty easy to find them then!
    Gary Harris - the artist formerly known as Dixiesys
    resident grumpy redneck

  9. #9
    Join Date
    Feb 2004
    Location
    Fort Worth, TX
    Posts
    2,585
    I have to second that the choon.net patch is really good, and very simple to use. We have that installed on all of our servers.. works like a charm. Besides the apache recompile.. its a few second install.

    *Quick note: rmMark1 its good to see a hosting provider doing so well for so long.. congrats (the 8 year signature)
    www.JGRoboMarketing.com / We Filter out the Bad Leads and Send you the Good ones!
    █ Office: (800) 959-0182 / Automated Lead Funnel Service

  10. #10
    Join Date
    Mar 2004
    Posts
    1,005
    Mark,

    Have you tried http://choon.net/php-mail-header.php on Plesk based systems?

    It can break up the Plesk

    Anyone please tell me if you have tested it on Plesk?

    Originally posted by rmMark1
    You may want this one for the updated php versions;

    Read more at Steve Bennett's patch as I created my patches according to his patch with a little tweak/modification since his patch only available for version 4.3.4 and also won't be working for mail function example 1 as listed at php manual.

    http://choon.net/php-mail-header.php
    Best Regards,
    Namesniper

  11. #11
    Join Date
    Jul 2003
    Location
    Texas
    Posts
    785
    Originally posted by NameSniper
    Jeremy,

    You mean that one http://www.lancs.ac.uk/~steveb/php-mail-header-patch/ or that one http://www.lancs.ac.uk/~steveb/php-mail-header-patch/ ?
    Hello,

    I meant the script that is posted in our forums that was included in the top post of this thread.

    http://layer0.layeredtech.com/showthread.php?t=75

    I have used the above script one time on a Plesk enabled host and it worked perfectly. I have not tested the other posted scripts so they could be bettter or worse then one above.

    Thanks,

    Jeremy

  12. #12
    Join Date
    Jul 2004
    Posts
    246
    Originally posted by RealtorHost


    *Quick note: rmMark1 its good to see a hosting provider doing so well for so long.. congrats (the 8 year signature)
    Thank You!...Still growing, still an adventure,and still learning each day.

  13. #13
    Originally posted by Tcoy
    There is a patch to add headers into the php mail function where it will show what script called the mail function. Its at http://www.lancs.ac.uk/~steveb/php-mail-header-patch/

    You will need to patch the php source and recompile php to use it.
    This is a really bad idea. It could possibly reveal the path of a hidden script doing legitimate mailings to people.

  14. #14
    Hi,

    I don't understand what we can do with those extra header informations ?
    Can we read them in a file ?
    I have Postfix as mail server and PHP 4.3.11 and not yet applied the patch.

    Thanks in advance.

  15. #15
    Join Date
    Sep 2004
    Location
    Flint, Michigan
    Posts
    5,765
    Originally posted by kernelpanic
    This is a really bad idea. It could possibly reveal the path of a hidden script doing legitimate mailings to people.
    So what do you suggest for tracking down php nobody spammers?
    Mike from Zoodia.com
    Professional web design and development services.
    In need of a fresh hosting design? See what premade designs we have in stock!
    Web design tips, tricks, and more at MichaelPruitt.com

  16. #16
    Join Date
    Nov 2001
    Location
    The South
    Posts
    5,403
    Originally posted by kernelpanic
    This is a really bad idea. It could possibly reveal the path of a hidden script doing legitimate mailings to people.
    So? I fail to see why it matters. Most -legitimate- mailers put at least an "X-Formmailer:" or other header blurb in telling what script was used, maybe not the full path but enough to know what the filename probably is.

    The benefits of immediately being able to find who is spamming using php based functions far far far outweighs the minute possibility that displaing this information in the header might cause a problem.
    Gary Harris - the artist formerly known as Dixiesys
    resident grumpy redneck

  17. #17
    Join Date
    Mar 2004
    Posts
    1,005
    Any real solutions to investigate an issue ?
    Best Regards,
    Namesniper

  18. #18
    Join Date
    Mar 2004
    Posts
    1,005
    Any other suggestions?
    Last edited by NameSniper; 05-22-2005 at 03:19 PM.
    Best Regards,
    Namesniper

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •