http://qs321.pair.com?node_id=299473


in reply to Re: Are Perl or PHP scripts easier to secure?
in thread Are Perl or PHP scripts easier to secure?

Are you saying that hard coding the To: field would solve most of the problem with SPAMMERS using the script to access the SMTP server on the site?

Replies are listed 'Best First'.
Re: Re: Re: Are Perl or PHP scripts easier to secure?
by erasei (Pilgrim) on Oct 15, 2003 at 18:01 UTC
    Yes. The way the spammers are hijacking your script is by sending their own To: field (the person being spammed) and their own Body: field (the spam itself).

    If you hard code the To: field, the spammer won't be able to send email to anyone other than the person hard coded already. That defeats the purpose for them, and they won't use it.