Log php emails.

bretticus

Due to some badly written scripts long ago, I have noticed spammers using various PHP forms to piggy-back multiple addresses along with the real recipient. I didn't write these scripts but I didn't recognize the vulnerability in the past either (Man, I hate being a spam bitch.) Therefore, I'd like to log any mail sent from PHP.

For some time I've been able to mark email coming through PHP via

sendmail_path = /usr/sbin/sendmail -t -i -L PHP_MAILED_INI

in the php.ini file. However, this does not help me track the source. I found the following

this site here

I believe the ENV vars probably show up with a php cgi version only. I was skeptical and correct about not getting the environmental vars from the perl script.

Anybody, implemented a slick solution (or any) for my dilemma?

Thanks!

Roger_Ramjet

I remeber this being discussed earlier this year and did a search. Of the many threads and answers that came up, this looks like the best link

bretticus

I remeber this being discussed earlier this year and did a search.

Whoops, didn't think to search 😃 I'm not on this side of the posting usually.

Thanks Ramjet. That is not how my spammers were getting through, but that is SOOO helpful to know. Mine were getting through via this script (not written by me. :glare: )

$pipe=popen("/usr/sbin/sendmail -L PHP_MAILED -f \"" . $from . "\" \"" . $to . "\"","w");
		$message = format($message);
		$mysubject = format($mysubject);

	if (!$pipe) return false; 
	fputs($pipe,"To: $to\n"); 
	fputs($pipe,"Reply-To: $from\n"); 
	fputs($pipe,"Errors-To: $from\n"); 
	//fputs($pipe,"From: $from\n"); 
	fputs($pipe,"Subject: $mysubject\n"); 
	fwrite($pipe,$message);

It was written 'cause the guy coudln't make PHP mail function work 😉 The spammers must have really tweaked to figure this out. I believe I fixed it with just...

$pipe=popen("/usr/sbin/sendmail -L PHP_MAILED -f \"" . escapeshellcmd($from) . "\" \"" . escapeshellcmd($to) . "\"","w");
		$message = format($message);
		$mysubject = format($mysubject);

	if (!$pipe) return false; 
	fputs($pipe,"To: $to\n"); 
	fputs($pipe,"Reply-To: $from\n"); 
	fputs($pipe,"Errors-To: $from\n"); 
	//fputs($pipe,"From: $from\n"); 
	fputs($pipe,"Subject: $mysubject\n"); 
	fwrite($pipe,$message);

Anyhow, are there any ideas about logging php emails? Google didn't turn up too much.

Thanks again.

bretticus

I shoudl point out that the function that script is wrapped in also looks for a SINGULAR email being valid before it is executed.

bretticus

Oh, and another thing, I know I can just write logging into the script I showed, for example. However, I don't always have control over the PHP code (and there is a lot of it implemented in various ways.) What I'm lookign for is a wrapper for PHP mails period ( I do realize I'd only get mail function emails, but that's a start since most developers will use that function.)