What is info_log in autoresponders?

[Lyttek]

I just noticed that on any domain with an autoresponder configured, there's an additional autoresponder of 'info_log' that I've not seen before. Searching the forums produced zero results, and I'm not seeing anything meaningful in a google search.

Any ideas?

 

[cPanelMichael]

Hello

I have not been able to reproduce the creating of "info_log" after creating a new autoresponder. Could you let us know which version of cPanel is installed on your system? Also, could you take a screen shot of the specific autoresponder entry you are referring to?

Thank you.

 

[Lyttek]

Actually... I can't :-/

I have been unable to reproduce it as well. I've delete the couple of instances I found, have created and recreated, all to no avail. All I can figure is it was possibly some artifact from a recent server crash where I had to restore/rebuild everything server-wide.

 

[cPanelMichael]

Feel free to let us know if you experience this issue again in the future.

Thank you.

 

[mrobinson]

I have the same question. Just noticed info_log after going in to clean up my autoresponders.

 

[cPanelMichael]

It's likely intended to be there to provide the auto-responder logs. However, you can contact your web hosting provider (assuming you do not have root access) to have them investigate this or have them contact us to take a closer look and verify that's the case.

Thank you.

 

[Massimiliano]

Hi folks!
I've found the same strange autoresponder in many accounts on my servers running WHM cPanel.
They seems to be suspicious, cause they have in subject the variable "Re: %subject%" ad so could be used by spammers as target.

I found that the file is located in:

/home/xxxxxxx/.autorespond/info_log

and contains some error message like this:

[2010-08-04 15:36:24 +0200] info [autorespond] Failed to parse sender identity for message sent to [email protected]
[2011-03-05 15:36:24 +0200] info [autorespond] Failed to parse sender identity for message sent to [email protected]

So I argued that:

1. this is not a dangerous file but a log file automatically created by the system (Exim?)
2. parsing errors are often related to malformed spam headers
3. cPanel front-end read all files located in /home/xxxxxxx/.autorespond/ and treat them like a standard autoresponder files
4 cPanel use the name of file as sender and adds some default options such as "Re: %subject%"
5. you can of course delete this file by cPanel interface, like a normal autoresponder (but you cant' edit it)

I think that storing this log in the same location of autoresponder file can be confusing.

I hope this will help.

 

[wrender]

I am seeing the same auto-responder record in our cpanel systems. 11.40.1 (build 9) I agree it is a bit confusing what it's purpose is. I immediately thought of a potential security issue as it was not previously there.