We use cookies to help make our site work properly and to analyze how our site is used. Some are optional, but none contain your personal information, and we don't use any for ads. You can view our cookies policy, manage your cookie preferences, or consent and dismiss this banner by clicking agree:

Agree
ExpressionEngine CMS
Open, Free, Amazing

Thread

This is an archived forum and the content is probably no longer relevant, but is provided here for posterity.

The active forums are here.

email_data.php being used for spam

March 16, 2009 5:07pm

Subscribe [2]

  • #1 / Mar 16, 2009 5:07pm

    tubes

    10 posts

    Today my host told me that my site has been sending out spam emails and that they are coming from email_data.php (in the languages folder of the the system folder).

    I found a few spam accounts in my members list (only have a couple) and deleted them as well as temporarily disabling registration of new accounts. I also changed the passwords for member accounts. Is there anything else I can do to prevent spammers from using my site to send spam? I do have one contact form on the site so I do need that file to be in there but is there anything I can modify in the file itself or the manager to help prevent this?

    Thanks in advance.

  • #2 / Mar 16, 2009 5:12pm

    Ingmar

    29245 posts

    Today my host told me that my site has been sending out spam emails and that they are coming from email_data.php (in the languages folder of the the system folder).

    That’s rather unlikely, given that this file only contains a few language related strings and email templates.

    I found a few spam accounts in my members list (only have a couple) and deleted them as well as temporarily disabling registration of new accounts.

    Are you allowing your members to send email? Tell-a-friend forms, anything like that?

    I do have one contact form on the site so I do need that file to be in there but is there anything I can modify in the file itself or the manager to help prevent this?

    Make sure your users cannot modify the intended recipient of that form.

  • #3 / Mar 16, 2009 5:25pm

    tubes

    10 posts

    That’s rather unlikely, given that this file only contains a few language related strings and email templates.

    That’s what I thought after looking at the file but that’s what they said. But somehow, they are using something to spam. We only have a coupe members and they are all members of our company. I turned off the feature that allows new people to register as members, even though we have no registration form on the site, they somehow registered themselves.

    Are you allowing your members to send email? Tell-a-friend forms, anything like that?

    Nope.

    Make sure your users cannot modify the intended recipient of that form.

    Probably a dumb question but how do I do that? Or maybe it isn’t an issue since it’s just staff and all member registrations are blocked now?

    Thanks so much for the help.

  • #4 / Mar 16, 2009 5:32pm

    Ingmar

    29245 posts

    In your email contact form, you’d use the user_recipients= parameter. It should be “false” to be on the safe side, abd specify the recipient yourself:

    recipients="[email protected]"

    You should also upgrade to the latests version, if you haven’t done so already; EE 1.6.7 is a recommended security update.

  • #5 / Mar 16, 2009 5:38pm

    tubes

    10 posts

    Oh, OK, I already have it set to that - just one email address. And I’ll upgrade as well. Thanks a lot!

  • #6 / Mar 16, 2009 5:40pm

    Ingmar

    29245 posts

    My pleasure… Marking as “Resolved” for now, please post again if anything else comes up or you need help with something else.

.(JavaScript must be enabled to view this email address)

ExpressionEngine News!

#eecms, #events, #releases

© Packet Tide, All Rights Reserved. Legal Notices

Username

Password

Forgot password?
or Register