pesty

Hello My site was recently hacked with email header injection. I changed my script so it ignores bcc and cc requests. My site is indexed so I use the robot meta tags on my php pages and set them as nofollow, no index. Since I am still pretty new to this, I was wondering if I should put the php pages in a private folder, and if I do, will I need to change the "action" in my <form> tag? Thanks, pesty

I too have been hit by the botnet aka email header injection. I am in the process of changing my code on my forms. Unfortunately, I have several forms, all of which have been attacked. Anyway, I just wanted to update you on the article that Ken provided a link to. Toward the bottom of the article you'll find a list of aol names/addresses where your form is being bcc'd to. Here are more aol names/addresses to be on the lookout for. Voiettag@aol.com frekiforbes@aol.com hollowiog1503@aol.com Pesty