View Full Version : wish to get log of scripts that send out emails

09-22-2009, 02:25 AM
I have only just been made aware of a problem with my coding and face 100's of emails being sent to my main email account due to an incorrectly formed variable in my code!!

i now wish to find out which site and script file is sending out these emails and have looked at logs provided by my host but these do not show much apart from the date and time how do i get a list of these files as someone i once knew and can not get hold of now once had this sort of thing and was able to get a list of the scripts and site urls that sent out the emails.

hope someone can help out as i am now getting way to many on my phone to cope with. as i use my phone mainly for this address and can not possibly change it now.

09-22-2009, 03:26 AM
Examine the e-mail headers. All of the I.P's in the transport path will be listed there, including the I.P of the originating server.

09-22-2009, 03:23 PM
i had used the mail() command so no scripts are logged.

i have been told elsewhere to use...


but have no idea what i do with this or where to put it

09-22-2009, 05:45 PM
Again, examine the headers of an e-mail which you have received from one of these servers.

09-22-2009, 08:34 PM
these are the ful headers from one such email....

Return-path: <nobody@xxxxx.xxxxx.com>
Envelope-to: xxxxx@xxxxx.com
Delivery-date: Tue, 22 Sep 2009 00:43:34 -0500
Received: from nobody by xxxxx.xxxxx.com with local (Exim 4.69)
(envelope-from <nobody@xxxxx.xxxxx.com>)
id 1pMAy2-0000n8-R3
for xxxxx@xxxxx.com; Tue, 22 Sep 2009 00:43:34 -0500
To: xxxxx@xxxxx.com
Subject: the subject
Content-Type: text/html; charset=ISO-8859-1
From: xxxxx@xxxxx.com
Message-Id: <xxxxx-xxxxx-xxxxx@xxxxx.xxxxx.com>
Date: Tue, 22 Sep 2009 00:43:34 -0500

09-23-2009, 12:12 AM
Are you viewing the complete headers? Those seem a tad sparse of info. However, these are from the originating server:

Received: from nobody by xxxxx.xxxxx.com with local (Exim 4.69)
(envelope-from <nobody@xxxxx.xxxxx.com>)

If you need to trace any deeper, get in touch with the admin(s) of the remote server and they can backtrace from their logs.