PHP sendMail(): It's that easy to forge?

[Kalphiter]

I never knew it's so easy to forge e-mails in PHP.
You could basically send fake e-mails to people.

For example, I did


Does anyone know why this is possible?

[Ad Bot]

[Thorax]

Thank you kindly, now time to get some free BL id's... :D

[Azimuth]

Because not all mail servers aren't hosted by trustworthy people and there is no way that they will be hosted by anyone else.

[Kalphiter]

Thank you kindly, now time to get some free BL id's... :D

I used Jagex because I still have the phrase "Jagex staff will never ask you for your password" stuck in my head.

[Azimuth]

It's also quite easy to bomb someone with spam.

[Kalphiter]

It's also quite easy to bomb someone with spam.

Haha.

[Azimuth]

Of course, there are more useful applications other than being a nuisance...

[tails]

You can also do it in the CMD.

[Kalphiter]

You can also do it in the CMD.

This is not my web server.

[tails]

The windows cmd.

[Packer]

This is not my web server.

It is now, STOLEN!

[Azimuth]

Code: [Select]

while(1)
{
mail("email@email.com","3nl4rge y0ur m4n-st1ck t0day - v1agra","lol u clicked mesag nob","From: p3n1leenlargment@bigroostertoday.us\r\nReply-to: p3n1leenlargment@bigroostertoday.us");
}


[Robo Noob]

Code: [Select]

while(1)
{
mail("email@email.com","3nl4rge y0ur m4n-st1ck t0day - v1agra","lol u clicked mesag nob","From: p3n1leenlargment@bigroostertoday.us\r\nReply-to: p3n1leenlargment@bigroostertoday.us");
}


LOL

[Kalphiter]

LOL

I didn't even see the while(1) there

[Azimuth]

I didn't even see the while(1) there

It makes less sense but is funny when your friend finds his mailbox filed with 284721 messages all about 3nl4rging his p3n1s