Ping a Specific Port

Question

Dmytro Leonenko

Asked: 2011-03-23 05:03:45 +0800 CST2011-03-23 05:03:45 +0800 CST 2011-03-23 05:03:45 +0800 CST

Log all outgoing mail created by php

772

I have Debian Linux server which serves several PHP sites. Today I received mail from Datacenter where they say my server is sending spam and attached spam message. This was really message from my server and I managed to find it in exim4 mainlog. Question: how to identify where is the vulnerability in PHP code and which site (i have 3) send this mail? I've chrooted one site already and disabled php mail and all exec,system etc. functions for it but i'm not sure taht it is site sending mail. Any way to log message body for all outgoing mail?

1 Answers

Voted

jamespo · Answer 1 · 2011-03-23T05:34:58+08:00

Best Answer

jamespo

2011-03-23T05:34:58+08:002011-03-23T05:34:58+08:00

You could write & configure a wrapper around sendmail that does more logging

in php.ini:

sendmail_path = /usr/sbin/sendmail -t -i

change to:

sendmail_path = /usr/local/bin/myscript

Or in your php code, you could write your own mail function that acts as a wrapper around php mail that does the logging. Remember to validate all input.

3

Log all outgoing mail created by php

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?