Re: PHP mail spam

To: debian-isp@lists.debian.org
Subject: Re: PHP mail spam
From: Carlos Acedo <carlos@pangea.org>
Date: Tue, 22 May 2007 13:17:18 +0200
Message-id: <[🔎] 4652D13E.30009@pangea.org>
In-reply-to: <[🔎] 001501c79c5d$fd516510$1002a8c0@kellerautomat>
References: <[🔎] 001501c79c5d$fd516510$1002a8c0@kellerautomat>

Hi Soenke,

The website is again up, that is what I'm looking for:

    *
      Adds protection against newline attacks to mail()

    *

Unfortunately, there is no package for debian sarge, but it is worth to
compile it.

Thank you for the answer!

Carlos.



En/na Soenke Ruempler - NorthClick ha escrit:
> Hi Carlos,
> 
> Carlos Acedo <mailto:carlos@pangea.org> wrote on Tuesday, May 22, 2007 12:36
> PM:
> 
>> My server is being used by spammers who inject mail headers in php
>> scripts to send spam, I have tried mod-security to block those
>> injections but still remains. 
>>
>> Is there a way to block this php header injections once for all?
>> I've been thinking about suPHP, but this will only tell me
>> where is the
>> 'hole'
>>
>> Any solution?
> 
> Use suhosin protection, it has email spam protection as it doesn't allow
> newlines in headers:
> 
> # apt-get install php5-suhosin
> 
> Unfortunately the website suhosin.org is down atm - however if up again:
> 
> http://www.hardened-php.net/suhosin/index.html
>

Reply to:

Follow-Ups:
- Re: PHP mail spam
  - From: Marek Podmaka <marki@marki-online.net>

References:
- RE: PHP mail spam
  - From: "Soenke Ruempler - NorthClick " <soenke.ruempler@northclick.de>

Prev by Date: RE: PHP mail spam
Next by Date: Re: PHP mail spam
Previous by thread: RE: PHP mail spam
Next by thread: Re: PHP mail spam
Index(es):
- Date
- Thread