WEB Wierd ass emails coming in through php script v. Hack?

Discussion in 'OT Technology' started by Coaxsist, Jan 29, 2010.

  1. Coaxsist

    Coaxsist Re-create... Innovate

    Joined:
    Feb 11, 2008
    Messages:
    1,032
    Likes Received:
    0
  2. dazmanultra

    dazmanultra New Member

    Joined:
    Jun 17, 2002
    Messages:
    34,795
    Likes Received:
    0
    Location:
    English Countryside
    Someone or a bot is trying to exploit your PHP script.

    Seeing as you're receiving the emails, it's probably not actually been exploited, but they're trying to. Just have another go over your code to make sure you're stripping any user entry, preventing header injection and the like of the email.

    Next, make sure that you have a captcha on your email form - even something as simple as asking a question ("what colour is the sky"). Whilst not unbreakable, it should severely cut down on the number of emails you're receiving.

    Next thing is to use a session timer or similar to make sure that a user can only submit the form x times in a certain time frame.
     
  3. Major Tom

    Major Tom OT Supporter

    Joined:
    Mar 10, 2003
    Messages:
    5,683
    Likes Received:
    0
    Location:
    England
    I got a few of those a while back. Just ignored them.
     
  4. jvblackxj

    jvblackxj VW4Life

    Joined:
    Mar 14, 2003
    Messages:
    100
    Likes Received:
    0
    be careful I started getting those, Ignored the first few, then bam. 500 in one night. Add a Captcha to your email page and it should stop.
     
  5. Coaxsist

    Coaxsist Re-create... Innovate

    Joined:
    Feb 11, 2008
    Messages:
    1,032
    Likes Received:
    0
    Aight. Thanks all.
     
  6. crazybenf

    crazybenf Active Member

    Joined:
    Nov 14, 2001
    Messages:
    15,575
    Likes Received:
    2
    lol, thats xrumer (or a similiar bot) trying to spam your comments section.
     
  7. Coaxsist

    Coaxsist Re-create... Innovate

    Joined:
    Feb 11, 2008
    Messages:
    1,032
    Likes Received:
    0
    Wikipedia'd that. Sounds complicated, but somwhat trivial as well. What would be the "payload" that it would upload? Where would it upload to, because I don't have a database or anything associated with that site besides some php files...
     

Share This Page