On some newer servers, the last place I thought I would see PHP Nuke webmail again
... there has been some extensive spamming going on.
This is a reminder: We do NOT allow the WebMail module of PHP Nuke. This can be exploited.
No version of PHP Nuke is available with that module officially.
http://www.phpnuke.org/modules.php?n...ticle&sid=7081
As I understand, there are WebMail plug-ins available from 3rd party programmers. These are NOT allowed.
The image attached is an email that was just going out of SH59. The scammers had created multiple usernames in a Surpass customer's PHP Nuke site and were exploiting PHP Nuke WebMail to send out hundreds of emails. They were doing so well that I've already got SpamCop reports on these messages.
We will disable any /modules/WebMail/ folder on all of our servers. A script is running again that we ran last November and December that goes through all servers and does this on a weekly basis.