1. Home
  2. Forums Index
  3. General SEO Issues / Crawler, Spider, and User Agent ID 3:16 pm May 4, 2026

Forum Moderators: open

Message Too Old, No Replies

Gozilla/4.0

Just looking for formmail.pl

         

bobriggs

3:15 am on May 11, 2002 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



I did a site search first:
Anyone care to add to this list [webmasterworld.com]

Not sure if that's the same one (Goz!lla in the former). But I doubt this one would obey robots.txt

Always from a different IP
UA:
Gozilla/4.0 (compatible; MSIE 5.5; windows 2000)

Always doing a GET on formmail.pl (of course leaving the recipient's email in the logs - DUH! with the title of the email formed FORMMAIL Found!)

Harmless if you don't have formmail.pl, but it will produce a 404. I've just banned it with mod-rewrite.

frontpage

3:20 pm on May 11, 2002 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



I get those requests for formmail.pl as well. What the exactly program is formmail.pl from and is this some type of attempted hacking attempt?

bobriggs

3:40 pm on May 11, 2002 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Formmail is a popular configurable perl script used to send mail to any given recipient.

This is an attempt to find the vulnerable scripts on servers, once found, it can be used to send untraceable spam from that server.

sparrow

3:46 pm on May 11, 2002 (gmt 0)

10+ Year Member



This is why I do all my mail in PHP

stever

4:48 pm on May 11, 2002 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Why would it be intrinsically any more secure to use php rather than perl?

The discussion we recently had at our webhost centred on vulnerabilities in both perl and php scripts and, in fact, the two secure-approved mail scripts turned out to be the monkeys and the London perlmongers modifications of the original perl script.

Brett_Tabke

9:59 pm on May 11, 2002 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



It wouldn't stever. The problem is with a single script, not the language.

Yep, there are still formail exploit scripts running around out there.

Kev

9:30 am on May 12, 2002 (gmt 0)



I've been getting a lot of these recorded as referers to home pages on IIS session logging - not only do they get the error 404, but click the home page link on it?
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. General SEO Issues / Crawler, Spider, and User Agent ID 3:16 pm May 4, 2026