http://blog.teledyn.com/node/1503 Comments for "Blogspam II: MT as a relay" en http://blog.teledyn.com/node/1503 <p>Just when you thought it was safe to go back into the blogosphere, Jacques Distler tells us there's <a title="Musings: More MT Spam Vulnerabilities" href="http://golem.ph.utexas.edu/~distler/blog/archives/000252.html">yet another spam vulnerability in MT</a>: The web's most popular bloghosting platform can be used to send email, anonymously to anyone.</p> <p>And what's worse, there's no fix:</p> <blockquote><p><i>Spammers can still send as much email as they want, with arbitrary message body content, to whomever they want, and do so completely anonymously. The only thing they can’t get rid of is the subject line ... which serves only to sully your reputation ...</i></p></blockquote> <p>Ben has posted a slightly <a href="http://www.movabletype.org/downloads/mt-send-entry.zip" title="click to download">improved version</a> but it's only a partial fix. Unless you have good reason to use the email-this-page feature of <span class="caps">MT, </span>the consensus is that you should remove or disable the <span class="caps">CGI </span>until further notice.</p> http://blog.teledyn.com/node/1503#comments the skin of culture Wed, 26 Nov 2003 13:34:41 -0500 mrG 1503 at http://blog.teledyn.com