Fed up with these joomla injection and mass mail. Any advise.

[ozgurerdogan]

Ok couple of times in a month some users' joomla sites got hacked or iframed and send many spam mails. If I disable all user account I will loose clients. So I want to take an action at admin level. In someway, I want to limit or block certein local user and it is most of time system acount for that domain that sends mails. Please advice me. I am going to install csf and see what it does. I hate seing joomla or wordpress keyword.

 

[smtalk]

You may try CustomBuild 2.0 with suhosin, ClamAV and PHP upload scanning enabled. Also, it's recommended to limit the number of emails that could be sent by your clients in /etc/virtual/limit. Maldet should help with the system scans: http://forum.directadmin.com/showthread.php?t=45851.

 

[ozgurerdogan]

I donot want to clean or scan their site. It is their problem. And also it takes long time everytime.

I want to block those sending. I already limit x mail per day but this time joomla eats all usage thus usual mail accounts also can not send mail. I just disabled mail function but site can still send mail. How is that possible? I tried simple php send mail form which faild. I thought joomla using php mail send function ? I can not block local user default mail account as it is whitelisted.

 

[zEitEr]

I just disabled mail function but site can still send mail. How is that possible?

To send emails from a PHP script (as well as Joomla, WP ) they can use:

- PHP mail()
- SMTP server
- sockets

 

[ozgurerdogan]

- PHP mail()
- SMTP server
- sockets

Can I disabled those function in disabled_function. Sorry I could not find on net.