I have the problem in my server that usually mail() functions are exploited by spammers who abuse function parameters to send email to hundred of accounts at a time, this is done by injecting MIME content in the parameters
When this happens I usually notice when starting to receive abuse complaints or when the server gets slow, however this is done overnight sometimes by spammers, and these thing finally got my server blocked by yahoo and hotmail
This abuse can be stopped by cropping inputs to a certain amount of chars or validating the inputs by regular expressions, the problem is that this involves modifying the php scripts, and if I have 100 customers that use mail() function I have to inscruct them all to do this or do the changes myself!!
So I decided to disable mail() function which I think is not the best solution since tons of apps use it and is the most common choice to customers to send mail instead of phpMailer that I am using now.
This must be a common problem, so my question is if there is any modification that can be done to the php.ini file or mail.c source code to avoid this,
Kinda big post here, but any help is appreciated!!
When this happens I usually notice when starting to receive abuse complaints or when the server gets slow, however this is done overnight sometimes by spammers, and these thing finally got my server blocked by yahoo and hotmail
This abuse can be stopped by cropping inputs to a certain amount of chars or validating the inputs by regular expressions, the problem is that this involves modifying the php scripts, and if I have 100 customers that use mail() function I have to inscruct them all to do this or do the changes myself!!
So I decided to disable mail() function which I think is not the best solution since tons of apps use it and is the most common choice to customers to send mail instead of phpMailer that I am using now.
This must be a common problem, so my question is if there is any modification that can be done to the php.ini file or mail.c source code to avoid this,
Kinda big post here, but any help is appreciated!!
Last edited: