The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

spammer on the server can't find the script

Discussion in 'E-mail Discussions' started by hammer65, Aug 13, 2009.

  1. hammer65

    hammer65 Registered

    Joined:
    Jul 16, 2008
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    I have done a number of things including setting up extended logging for exim and cannot find the PHP script that is sending spam mail. I can see the activity when using the "top" command, I can view the mail in the queue but the only indication I have of what is sending the mail is that the nobody user is sending it. This could be any of the accounts on the machine. Is there any way to alter the sendmail path in php.ini to pipe the output through something that can identify where these are coming from? I thought the logs would be enough, but I'm not finding enough info.
     
  2. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    38
  3. Datcrack

    Datcrack Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    47
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Istanbul / TURKEY
    cPanel Access Level:
    Root Administrator
    The spammer might have used a cgi file. And could start executing the script and while executing could delete the file from the server.
     
Loading...

Share This Page