What is info_log in autoresponders?

Lyttek

Well-Known Member
Jan 2, 2004
776
4
168
I just noticed that on any domain with an autoresponder configured, there's an additional autoresponder of 'info_log' that I've not seen before. Searching the forums produced zero results, and I'm not seeing anything meaningful in a google search.

Any ideas?
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Hello :)

I have not been able to reproduce the creating of "info_log" after creating a new autoresponder. Could you let us know which version of cPanel is installed on your system? Also, could you take a screen shot of the specific autoresponder entry you are referring to?

Thank you.
 

Lyttek

Well-Known Member
Jan 2, 2004
776
4
168
Actually... I can't :-/

I have been unable to reproduce it as well. I've delete the couple of instances I found, have created and recreated, all to no avail. All I can figure is it was possibly some artifact from a recent server crash where I had to restore/rebuild everything server-wide.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Feel free to let us know if you experience this issue again in the future.

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
It's likely intended to be there to provide the auto-responder logs. However, you can contact your web hosting provider (assuming you do not have root access) to have them investigate this or have them contact us to take a closer look and verify that's the case.

Thank you.
 

Massimiliano

Registered
Jan 16, 2014
1
0
1
cPanel Access Level
Root Administrator
Hi folks!
I've found the same strange autoresponder in many accounts on my servers running WHM cPanel.
They seems to be suspicious, cause they have in subject the variable "Re: %subject%" ad so could be used by spammers as target.

I found that the file is located in:

/home/xxxxxxx/.autorespond/info_log

and contains some error message like this:

[2010-08-04 15:36:24 +0200] info [autorespond] Failed to parse sender identity for message sent to [email protected]
[2011-03-05 15:36:24 +0200] info [autorespond] Failed to parse sender identity for message sent to [email protected]

So I argued that:

1. this is not a dangerous file but a log file automatically created by the system (Exim?)
2. parsing errors are often related to malformed spam headers
3. cPanel front-end read all files located in /home/xxxxxxx/.autorespond/ and treat them like a standard autoresponder files
4 cPanel use the name of file as sender and adds some default options such as "Re: %subject%"
5. you can of course delete this file by cPanel interface, like a normal autoresponder (but you cant' edit it)

I think that storing this log in the same location of autoresponder file can be confusing.

I hope this will help.
 

wrender

Well-Known Member
Sep 29, 2007
69
3
58
I am seeing the same auto-responder record in our cpanel systems. 11.40.1 (build 9) I agree it is a bit confusing what it's purpose is. I immediately thought of a potential security issue as it was not previously there.