Bformmail - Secure?

[wigoweb]

Have read the posts about FormMail and its security risks.

 

As a result, I implemented Ultimate Form Mail which is a very versatile script.

 

However, the external database features of Ultimate Form Mail are still under development.

 

Until UFM is completed in the Pro Version, which I am prepared to purchase, what is the position of TCH on using BFormMail? This is an enhanced version of Matt Wright's FormMail which is supposed to have corrected some of the security issues of FormMail.

 

Here is a link with information:

 

http://www.infosheet.com/iScripts.html

 

Here is a quote from the above link:

BFormMail version 2.0 is now available for download!

After many requests for the security update of Matt Wright's FormMail version 1.9, the features have been encorporated into BFormMail.  If you are using FormMail 1.6 or any version of BFormMail prior to 2.0, please upgrade immediately! These features help prevent using the script as a mail relay for spam. Apart from these security features, there is no additional functionality.

Is it okay to install bformmail until UFM is ready?

 

I don't want to violate the policy stated in the following quote from a January 23 posting:

Bill Kish Head Guru

 

Group: Admins

Posts: 3259

Member No.: 1

Joined: 15-October 02

 

The older versions of Formail is very insecure. Anything 1.9 or back is not allowed on TCH servers.

The admins review the reports daily and will remove any insecure version found.

I am not sure if it is well known, but I have a zero tolerance level for SPAM. I do mean ZERO. So if you do sneak a unsecure version of a formmail script on our servers and its exploited, your account is terminated. I make it policy, we dont warn spammers, we dont suspend spammers, the accounts get removed from the servers period.