[TYPO3-UG Denmark] Spam angreb

Karsten kap at os.dk
Sun Jan 21 11:53:47 CET 2007 

Tonni Aagesen skrev:
> Karsten wrote:
> 
>> Har lige været ude for et spam angreb, hvor man brugte en kontakt
>> formular på min side som var lavet med extension tmail. kopi til bruger
>> var sat til NO. Men det lykkedes dem at hijacke min form og der er
>> blevet sent X antal mail ud, med min mailadresse som afsender (ikke
>> fedt) jeg sad tilfældigvis og redigeret på siden, der de første mail kom
>> til mig, og jeg skjulte kontakt formularen med det samme.
> 
> Er "tmail" lig med "TMailform"? TMailform skulle gerne opdage forsøg på 
> header injection.
> 
>> Jeg vil jo gerne have denne kontakt formular på siden, men hvad kan jeg
>> gøre for at forhindre det samme en gang til. Er ikke så meget inde i
>> lige dette emne.
> 
> Kan du paste headerne fra en af de mails?
> 
> 

Hej Tonnie

Ja det er TMailform

En af de mails som er kommet retur:

This message was created automatically by mail delivery software (Exim).

A message that you sent could not be delivered to one or more of its 
recipients. This is a permanent error. The following address(es) failed:

   rbkursus14 at rb.hsrds.dk
     delivery cancelled; message timed out

------ This is a copy of the message, including all the headers. ------
------ The body of the message is 27078 characters long; only the first
------ 500 or so are included here.

Return-path: <minmailadresse.dk>
Received: from [211.112.108.72] (helo=ellmi)
	by fw.hsrds.dk with smtp (Exim 3.36 #1)
	id 1H7o0P-0006Bo-00
	for rbkursus14 at rb.hsrds.dk; Fri, 19 Jan 2007 08:17:46 +0100
Received: from vok ([81.146.78.170])
	by ellmi (8.13.5/8.13.5) with SMTP id l0J7GhAs011955;
	Fri, 19 Jan 2007 16:16:43 +0900
Message-ID: <000801c73b99$ace6cb30$aa4e9251 at vok>
From: "Matthias" <minmailadresse.dk>
To: <rbkursus14 at rb.hsrds.dk>
Subject: btw, if anyone else sees this and has good photo-posting 
advice, please throw it my way !
Date: Fri, 19 Jan 2007 16:06:23 +0900
MIME-Version: 1.0
Content-Type: multipart/related;
	type="multipart/alternative";
	boundary="----=_NextPart_000_0004_01C73BE5.1CBA4EF0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106

------=_NextPart_000_0004_01C73BE5.1CBA4EF0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_001_0005_01C73BE5.1CBF5800"

------=_NextPart_001_0005_01C73BE5.1CBF5800
Content-Type: text/plain;
	charset="windows-1250"
Content-Transfer-Encoding: quoted-printable


I'm a mommy and when I have to be, a working stiff.
The idiots are announcing themselves so that they can be more easily = 
targeted?
In part, then, some people feel that our industry won't be fully = 
"validated" until Madison Avenue signs up for more retail-oriented = 
projects.
Trip over a tree root ? In terms of the perceived benefits of = 
implementing a shopper marketing program, 42.
I'm glad you're back migs!
As Schlosser's study shows, interactivity can have a significant impact 
= on customers' memory, whether the interaction takes place online or in 
a = retail store.
well, shucks, moderateman .
More power to 'em, I say. Take my organs not my whole body? now, i can = 
accept that he goes to bed at sunrise every single night. now, i can = 
accept that he goes to bed at sunrise every single night.
well danny, you have the basics there. I feel it needs more exploring!
but only one teeny, tiny bit was relative !
People will always do bad things and then lie about it.
This prevents you from losing your entire business due to one small = 
incident.
btw, long time between visits; it took you to break the ice.
You have a lucky wife.
She went through the drive-though. Common Sense finally gave up the will 
= to live after a woman failed to realise that a steaming cup of coffee 
= was hot.
in fact, i suspect you have a lot ! On the other hand, if neither of us 
= gets each other anything, we know that will not result in hurt 
feelings = or anger.
now, i can accept that he goes to bed at sunrise every single night. not 
= only is he talented, he is handsome, clever, funny and blindingly = 
intelligent.
can colleen and I live there?
People will always do bad things and then lie about it.
Where as I love clutter and for things to be comfortable, and I'm not = 
even close to as fussy as her.
It's nice to be back.
------=_NextPart_001_0005_01C73BE5.1CBF5800
Content-Type: text/html;
	charset="windows-1250"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> 
<HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = 
charset=3Dwindows-1250"> <META content=3D"MSHTML 6.00.2800.1106" 
name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> 
<DIV><FONT face=3DArial size=3D2><IMG alt=3D"combatant" hspace=3D0=20 
src=3D"cid:000301c73b99$accd9de0$aa4e9251 at vok" align=3Dbaseline=20 
border=3D0></FONT></DIV> <DIV><FONT face=3DArial size=3D2>I'm a mommy 
and when I have to be, a = working=20 stiff.</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>The idiots are announcing themselves so = that 
they=20 can be more easily targeted?</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>In part, then, some people feel that = our 
industry=20 won't be fully "validated" until Madison Avenue signs up for 
more = retail-oriented=20 projects.</FONT></DIV> <DIV><FONT face=3DArial 
size=3D2>Trip over a tree root ? In terms of the = perceived=20 benefits 
of implementing a shopper marketing program, 42.</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>I'm glad you're back migs!</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>As Schlosser's study shows, = interactivity can 
have=20 a significant impact on customers' memory, whether the 
interaction takes = place=20 online or in a retail store.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>well, shucks, moderateman = 
</FONT></DIV> <DIV><FONT face=3DArial size=3D2>More power to 'em, I say. 
Take my = organs not my=20 whole body? now, i can accept that he goes to 
bed at sunrise every = single night.=20 now, i can accept that he goes 
to bed at sunrise every single = night.</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>well danny, you have the basics there. = I feel 
it=20 needs more exploring!</FONT></DIV> <DIV><FONT face=3DArial 
size=3D2>but only one teeny, tiny bit was = relative=20 !</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>People will always do bad things and = 
then lie about=20 it.</FONT></DIV> <DIV><FONT face=3DArial size=3D2>This 
prevents you from losing your = entire business=20 due to one small 
incident.</FONT></DIV> <DIV><FONT face=3DArial size=3D2>btw, long time 
between visits; it took = you to break=20 the ice.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>You have a lucky wife.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>She went through the drive-though. = 
Common Sense=20 finally gave up the will to live after a woman failed to 
realise that a = steaming cup=20 of coffee was hot.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>in fact, i suspect you have a lot ! On 
= the other=20 hand, if neither of us gets each other anything, we know 
that will not = result in=20 hurt feelings or anger.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>now, i can accept that he goes to bed = 
at sunrise=20 every single night. not only is he talented, he is 
handsome, clever, = funny and=20 blindingly intelligent.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>can colleen and I live = 
there?</FONT></DIV> <DIV><FONT face=3DArial size=3D2>People will always 
do bad things and = then lie about=20 it.</FONT></DIV> <DIV><FONT 
face=3DArial size=3D2>Where as I love clutter and for things = to be=20 
comfortable, and I'm not even close to as fussy as her.</FONT></DIV> 
<DIV><FONT face=3DArial size=3D2>It's nice to be = 
back.</FONT></DIV></BODY></HTML>

------=_NextPart_001_0005_01C73BE5.1CBF5800--

------=_NextPart_000_0004_01C73BE5.1CBA4EF0
Content-Type: image/gif;
	name="mainstream.gif"
Content-Transfer-Encoding: base64
Content-ID: <000301c73b99$accd9de0$aa4e9251 at vok>
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dtuMANTUbmYPOGoTDKZkom8d8P312XEN+gFikXe45VUfc35f0QEOYjJYYVjEOwbGlDcLPZyLy+Ps
FwVGV/DkqSSEte842AihsLH2Gp095xNURC0XgZBfSRDHpfMrb2y5XBzxWiHgIhRI7Ej5TyOs0cgs
Ahb+3UqDLQD6IG0HKvZrJjlHoxYT6weWhXwzBEg7QreRdyz5f28JWPCD/7+cwlRE9KVgyrL+
Ahb+kywA
AAAAaQEEAgAH/4AAgoOEhYaHiImKi4yNjo+QkZKTlJWWl5iZmpuGAZ6foKGio6SlpqeoqaqrrAGQ
raacgrCjsra3uLm6u7y9mLSevsLDxMXGx8jJysvMzc7P0NHS09SFn9bA2drb3KjVhN3XyeHi3+bn
AOSxyKnolaDg6vLz9OuI9fii7vv8lu396PIJzAcw0cCDrAoumqewoS2E8hxKnEgMIjxNFmlR3Mjx
UMZgGD8m7EjSl8iT3oqVKFESW8aW0jTI1OAuQ4ZFFHJSECRCBBNEDx5wikA0woCjgyAohSBoaU4Q
gwgQIASialULgixo1QqTUblv9BZE8BShAMpWGDCckirVk1QSpP+KGFCXYsGoBXYD4FUjApQI
gwgQIASialULgixo1QqTUblv9BZE8BShAMpWGDCckirVk1QSpP+NwFE
VKgASoCAUIY9GU7wsqu7DRsMKVDwY7KgBQoEWdY8OTOAzp05hwYN2lNpT3tOB7DJOgPIQRNiyzYs
AIAAFoYHralte4Ig2St8/44tgUciCRIMSThRCLlyCs4HRZduQJCB646zU6KxoFCD74LAgwcwHm86
vAHioNdrdz1e9+0XHPX0PkCIEJ7uexox4tSIIUPwJ2B/n8wUgAYSBIAcfXkFkFhiqHDAwRYc
vAHioNdrdz1e9+LKjg
DRellVYhGHgm2mYWdBZDDB5ql90qC3wQwAcssggfg+uxhxcGGwQAmSiQCbLBUQMIckKPA7B1
DRellVYhGHgm2mYWdBZDDB5ql90qC3wQwAcssggfg+QAEm
FFAAAEYKkiT/ABMcqUiLALAYpQgAyCDVfSEAEAOPg/DopSADSNGjIuMRUqYh39kwyJlmNgDAdXBi
Z+KcjUgpSIt2GkCHdTMYwFRTfw5yQR2G5CSITt0BsEAPitYXyosBsGnICuJNxdZUALCVKQES
Z+DtIp
IgccoM8gBSRwiKmK5BZlF4jkBiFtrtDJjEWJmAdAFXjZCUKWgmTAmyda0WdBAMGGUuxWwxI7rFZt
BRDUA85CG60nQZ0C6ydY4mefflTgp9+22PI6CAhPxPNJVaNcAIcnXRBFAyhEkTXWJ/EGEAED
BRDUA85CG60nQZ0C6ydY4mefflTgp9+AZgw
b



Karsten

More information about the TYPO3-UG-denmark mailing list