• If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to Register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.


No announcement yet.

BCC/php spam email and a fix


Unconfigured Ad Widget

This topic is closed.
  • Filter
  • Time
  • Show
Clear All
new posts

  • BCC/php spam email and a fix

    WordPress Hosting on SSD Servers
    So I am sure if you are running a cPanel server you are having the exact same trouble as we have been having the last week, lots of spam. It appears there is somebody in this world that has decided to write a rather efficient script that searches for webforms then sends spam via php and bcc. The first quick fix was to enable safe_mode but that obviouslly gets a fair amount of webhosting clients pretty bad. I have been working with mod_security and come up with a pretty simple rule that should help:

    SecFilterSelective THE_REQUEST "bcc:|Bcc:|BCc:|BCC:|bCc:|bCC:|bcC:|BcC:"

    What that will do is search first for the bcc, Bcc, etc then look for com, org, or net in a url. I was trying to filter it looking for an @ symbol but I was having trouble with apache picking it up. I figure if they are not spamming to one of those TDLs it is probably not a very big attack. If you want to protect more simply add to the list, remember all it has to do is catch one and it blocks the entire request.

    Last edited by admin; 08-12-2015, 08:24 AM.

  • #2
    hey guys... sorry but how can set a picture in my profile?


    • #3
      ASP.Net Hosting starts @ $3.18/Mo.

      Sure. Send us the picture by email at [email protected] / [email protected] . We will do that for you.

      Technical Support Group
      Windows Website Hosting
      Linux Website Hosting



      Sign up for a News Letter Click here to sign up