> From: Robert Vreeland > > One of my client's web site is getting spammed, or something like it. It > appears as though someone is using a script to auto-fill their email > newsletter registration form; every field is being filled in with the > same bogus email address using my client's domain name. For example: > Email : 245she at clients_domain.com confirm email : > 245she at clients_domain.com Name : : 245she at clients_domain.com Address : > 245she at clients_domain.com > City: : 245she at clients_domain.com > > etc.. > > Does anyone have any idea what this is meant to do? Are they phishing > for a reply address or seeing if they can get a database error? > That's the classic Email injection. http://en.wikipedia.org/wiki/Email_Injection there was a recent discussion on this very list subject "Email header injection". http://lists.evolt.org/archive/Week-of-Mon-20051107/177540.html -- Kind regards, Liam Delahunty http://www.liamdelahunty.com/tips/