Welcome to WebmasterWorld Guest from 22.214.171.124
One thing I don’t quite understand and hopefully someone can shed some light on it.
If my mail() variables are all hardcoded, for instance the to, subject and body how could a spammer send out a completely different email message to recipients?
Wouldn’t the spammers recipients get an email which had my hardcoded subject and body?
An interesting idea, just like Apache logs ind. processes, it would be interesting to log ind. php functions. You could then review your "php-mail" log to scan for abuse...