Apache being used to relay mail
Mark Komarinski
mkomarinski at wayga.org
Mon Apr 7 16:03:53 EDT 2003
On Sun, Apr 06, 2003 at 12:29:40PM -0400, Bruce Dawson wrote:
> For those of us who run web sites and are wondering why your site is
> getting blacklisted for email, I've finally figured this much out:
>
> Spammers are using the Proxy mechanisms of apache to surreptitiously
> send mail. Turning off ProxyRequest and ProxyVia seems to close the
> hole.
>
> They appear to be using HTTP requests like
>
> POST http://rogue.codemeta.com:25 HTTP/1.0
> ...
>
> Just thought some of the sysadmins out there would like to know - it
> took me forever to figure out the "Open Relay" was in Apache and not
> sendmail!
Shouldn't proxying be turned off to the outside world anyway? The only
advantage would be pseudo-anonymous web browsins.
-Mark
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20030407/73bed671/attachment.bin
More information about the gnhlug-discuss
mailing list