bingo123 Posted February 26, 2010 Share Posted February 26, 2010 Hi, I'm looking for some help. I manage a small web server which is used for some student's personal pages as well as school projects. Recently a couple of the students have started up a bit of a spamming project using apache & php, which they promptly deleted. The server already blocks the mail() as well as several others (specifically phpmailer,mail,dl,exec,passthru,shell_exec,system,pcntl_exec) but they have still been able to use php to send mail. The mail did not seem to go through our email server, exim, because it didn't show in the logs, however it did get out. I'm wondering if anyone can help me with some information on alternate methods these students may have used to send mail using php without the above functions, so that I can hopefully block this from happening in the future. I'm not a php expert, and have only done very basic work with it. Note: the server itself does also function as a mail server, so I don't believe a solution using a firewall to block ports or something like that will work. Thanks very much. Link to comment https://forums.phpfreaks.com/topic/193482-sending-mail-without-the-mail-function/ Share on other sites More sharing options...
trq Posted February 26, 2010 Share Posted February 26, 2010 You will want to take a look at and block the socket functions. Link to comment https://forums.phpfreaks.com/topic/193482-sending-mail-without-the-mail-function/#findComment-1018735 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.