Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:26950 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 12702 invoked by uid 1010); 14 Dec 2006 11:02:29 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 12687 invoked from network); 14 Dec 2006 11:02:29 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 14 Dec 2006 11:02:29 -0000 Authentication-Results: pb1.pair.com header.from=stuttle@gmail.com; sender-id=pass; domainkeys=good Authentication-Results: pb1.pair.com smtp.mail=stuttle@gmail.com; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 64.233.162.230 as permitted sender) DomainKey-Status: good X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01 X-PHP-List-Original-Sender: stuttle@gmail.com X-Host-Fingerprint: 64.233.162.230 nz-out-0506.google.com Linux 2.4/2.6 Received: from [64.233.162.230] ([64.233.162.230:62307] helo=nz-out-0506.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 33/11-04864-22F21854 for ; Thu, 14 Dec 2006 06:02:29 -0500 Received: by nz-out-0506.google.com with SMTP id k1so267818nzf for ; Thu, 14 Dec 2006 03:01:52 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=RiJ0Wum7YAp9mYmsZqex0x09MNt1cwlMW5IC2KK7aDPJZh323Rb6nFq9fiZH8uqY53IdKr5CwBuRYRtkDC3gAp+PRKTV8qn/Ytwn32kReXDKmCVwBrdNtQQb71i3mSkvOvJIvca35yjULFWn3Uxeyn9VjP1MJfoAGMdZoh0Kcmo= Received: by 10.65.232.19 with SMTP id j19mr1300540qbr.1166094112366; Thu, 14 Dec 2006 03:01:52 -0800 (PST) Received: from ?10.10.206.228? ( [194.131.158.1]) by mx.google.com with ESMTP id f17sm2446764qba.2006.12.14.03.01.50; Thu, 14 Dec 2006 03:01:51 -0800 (PST) Message-ID: <45812FC2.3050500@gmail.com> Date: Thu, 14 Dec 2006 11:04:34 +0000 User-Agent: Thunderbird 1.5.0.8 (Windows/20061025) MIME-Version: 1.0 To: Markus Fischer CC: Ilia Alshanetsky , PHP internals References: <10536315-883E-4C1A-AF35-386DF4D73F84@prohost.org> <45807AC8.8020907@gmail.com> <515375DA-C752-4F5D-A244-3394C56846DA@prohost.org> <45808461.9070505@gmail.com> <98F4FCCE-94A0-448D-AA27-EABF7E82A7DB@prohost.org> <45812ABB.4060309@fischer.name> In-Reply-To: <45812ABB.4060309@fischer.name> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: [PHP-DEV] mail() logging for PHP From: stuttle@gmail.com (Stut) Markus Fischer wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Ilia Alshanetsky wrote: > >>> I'm thinking about this from an ISP point of view... we get a lot of >>> abuse reports because people have poorly written form handlers. It >>> would be great if we could have PHP insert the full URL, domain name >>> included, in the mail headers for anything it sends. Would that be >>> possible? >>> >> That is way too much information to include into an e-mail header, this >> would in fact be information disclosure vulnerability in many eyes. The >> log file that you can enable provides you with the full path to the >> script that called mail, which is more then enough to identify the >> offending script and/or application. >> > > In case someone would use a library installed on the server were the > mail() call e.g. in /usr/lib/PEAR/lib/php/Mail/Transport/PHP_Mail.php > (just an example) would this really help identifying the cause of the > problem? No Domain, no URL, I think it would be hard to determine who > used it. Cracking point. Putting the domain in a header would make this far more useful, and I don't think that's too much info to include in a header. Ideally it would be the full URL, and I have to say that I don't think that's too much information for a mail header, and it's exactly what would be needed. -Stut