|
|
Posted by mantrid on 12/05/06 17:23
"Allodoxaphobia" <bit-bucket@config.com> wrote in message
news:slrnen9c5b.vad.bit-bucket@shell.config.com...
> On Mon, 04 Dec 2006 19:07:17 GMT, mantrid wrote:
>
> <-snip->
>
> > Im getting more of these notices of spamming than I was getting
originally
> > spammed messages with many more emails in the cc: bcc: and a proper
message
> > (just sales stuff about tea oil). Why is he still attempting this if the
> > spam is not working and being sent to the recipients. I have an
appropriate
> > message displayed when the spam is attempted. Is he stupid and just
sitting
> > there trying to spam my feedback form even though he is getting this
message
> > telling him to go away, or is do you think there is some sort of
automatic
> > process being run on my webpage?
>
> Most certainly you're being targeted by a botnet controlled by a spammer.
> The 'nonsense' emails you first saw were "proof of concept" testing
> before your URL was passed out to hundreds of "working" machines in the
> botnet. Most certainly no Real Person is viewing anything that you
> present on the screen. At most the http return code(s) and, maybe, some
> screen scraping for successful results are sent back upstream to the
> slime ball running the botnet.
Thanks
Very informative reply.
The function I have uses eregi() to check POST data for "cc:" and "subject:"
what other checks should I be using in my function to tighten my security
further?
Ian
Navigation:
[Reply to this message]
|