[Ben]

Ilia Alshanetsky hat einen Patch für die PHP-Funktion mail() zur Verfügung gestellt. Diese Erweiterung ermöglicht das Logging und Tracking der mail()-Nutzung, um herauszufinden, welche Anwendungen/Skripte für eventuellen Spam missbraucht werden.

Zitat:

The mailing logging patch, which you can download here, offers two features which can be controlled via INI settings for the entire PHP setup or on a per-virtual-host level.

The first option, mail.add_x_header (boolean) allows you to enable the addition of the X-PHP-Originating-Script header to each mail sent by mail(), which will include the uid of the script and its name. The combination of the two should be sufficient to identify the user to whom the script belongs and via a simple find command locate the actual script. This option is intended primarily for instances where you have a bounced e-mail or a forwarded mail with a spam complaint, allowing you to quickly identify the offender.

The second option, mail.log (takes a filename) allows you to enable logging of every single mail() call, each log line will include the fullpath of the file and the line where the mail() was called from in addition to the "To" address and any headers (to keep track of CC, BCC) that were part of the function call. To ensure that each log line is 1 line long, \r and \n are replaced with spaces.

Sicherlich eine interessante Sache, allerdings sei auch dieses Kommentar beachtet:

Zitat:

Suhosin has a similar feature, but much more complete .. anyway is a nice addtional, better late than never

Quelle: http://ilia.ws/archives/149-mail-log...P.html#c191348

Ich selbst kenne die Suhosin-Extension nicht bzw. ich habe nicht damit gearbeitet. Demnach bleibt abzuwarten, was da noch herauskommt.