Hi guys,

few days ago my host says in one of my website are sending large mail, that come from senegal country ip


here are my host says

Quote:

There were another 16 mails in the queue this morning going to a very large number of recipients.

X-PHP-Script: www.domain.com/myphpfile.php for 111.222.333.444

That seems to be the source IP, they more than likely injecting headers into the mail() being used in PHP, there are a few regexes and methods on the Internet if you google on how to prevent it.

myphpfile.php are file for sending private message (member got email notification too for each private message) to another member in my site, you must be login to use that page



is there a way to prevent myphpfile.php page by accessing from other server, so only real user that can accessing the page? maybe like prevent hotlinking image





please share your knowledge guys

If it's a bot, checking the referrer header (preventing cross linking) won't help.
It's probably best to ensure only logged in users have access

yes, only logged in user have access, the bot looks like can register and login too, using they script

is there anyway to only allow real user to access the myphpfile.php page?

Check server longs, lock the access with .htaccess, block bots with robots.txt and if possible change defualt SMTP port.

Use some kind of CAPTCHA system, to make it harder for bots to both register, login, and send e-mail. Make them fill in some characters from an image for each of these steps.

Also, if you havn't already, you might wanna add some flood protection, so that the same user cannot send a new email for, lets say 60 second, after he has sent one.