Posted by hansBKK on 04/01/07 11:11

"Jason" <jwcarlton@gmail.com> wrote in news:1175061293.558023.29400
@n59g2000hsh.googlegroups.com:

> The problem is that when it emails out, the server recognizes it as
> coming from "nobody," which is automatically bounced to me. I set the
> server up to refuse "nobody" emails as a hack-attack preventative, but
> it's usually not a problem... until now.

And to address your question (someone correct me if I'm wrong):

You are running php as an Apache module, correct?

I believe in this environment, Return-path is going to be the web-server's
username, unless you hack something in your mail server software (e.g.
sendmail). The other from headers you should be able to set within your
(more secure) script.

However, if you have php running as CGI then the Return-path will be set to
the username that php is running as.

I believe searching on "tectite" and mail and form will bring you to a
(relatively?) secure mailform script. Do NOT use "Matt's".

[Back to original message]