it looks like some one is trying to see if you have an old version of formail that they can exploit. From the looks of it if the example you gave finds a vulnerable script it sends an email to the oh so bright scripter :(. If your server doesn't use formail no prob but if it does you need to make sure that it has been updated to the latest version.

Here is another thread about this here [webmasterworld.com]

<added> Just took another look at the examples. They are getting 404's so it may be that you either aren't using formail or already have an updated copy</added>

[edited by: Big_Balou at 9:23 pm (utc) on Oct. 1, 2002]

My server uses formmail and so do I.

>From the looks of it if the example you gave finds a vulnerable script it sends an email to the oh so bright scripter<

The scripter meaning who exactly?

I am sorry, how can someone exploit a form mail? Sorry, I not too sure that is all :)

Would you suggest that I contact my web host as well?

Thanks so much.

Pink ;)

Pink :)

sorry if I wasn't clear. When I refered to the scripter I meant the person who is using a script to automatically check for sites that are using an older version of formail.

I would defintely contact my host to see if they have either upgraded to formail 1.9 or have installed the patch available for 1.6. Here is a link [online.securityfocus.com] that discusses the exploit in detail.

<added> oops...was doing a search and didn't see your reply. As far as I know if you aren't using formail.cgi you should be in good shape...if I'm wrong someone will come by and correct me</added>

Most awesome. Thanks - I am using tmail.cgi and am planning on using php as I continue. I hate spammers :(

Thanks so much again ;)

Pink