I'm trying to continue building up an email tracker - successfully done GMail Yahoo and several web clients. Now I'm stuck with AOL webmail.
Trying the usual methods of using HTTP_REFERER, HTTP_USER_AGENT and REMOTE_ADDR have all yeilded in showing my details and nothing for the referer.
Upon further inspection, it seems that AOL's Webmail somehow is loading the messages into an iFrame where the content is local.
Is there anyway to get the referer and still show the image - I did think of using javascript's parent method, though this would stop the tracker pixel/web bug from appearing. Besides, it wouldn't load in web clients.
I would appreciate any help. I also would like to know if AOL's Desktop Email had a User Agent string - I haven't looked on Google just yet (though finding User Agent's for email clients is difficult - still hunting for Outlook versions prior to 2007).
Related
I have a problem that i've been trying to figure out, but can't seem to fix. Perhaps someone here has had this problem before and knows a solution.
Problem:
Recently noticed the contact form on my website does not work reliably. The issue is, sometimes the form submits successfully, and sometimes not at all. When the forms are not successful, there is an error page displayed but does not list any error information so difficult to know what the problem is. It has been like this for over a month now.
Situation:
Prior to the above, there were no changes, updates or edits to the website, server or email app and all form submissions from the website were 100% successful. The website is hosted on digital ocean. We use outlook office365 for receiving form submissions from the website.
What we've tried so far:
We have set up a temp sendgrid account and used smtp settings from this 3rd party to send contact form from website. This seemed to resolve the problem.
BUT! We would prefer to continue to use outlook office 365 instead of setting up with another 3rd party.
Likely cause of problem:
So it seems, the issue probably has something to do with smtp settings for outlook office365. We've checked our settings, and everything is as it should. If it wasn't then we wouldn't be receiving any forms summited from the website at all. We are able to receive some form submissions and not others. You can test it out on our website contact page to see exactly what I mean.
https://www.miscea.com/en/contact
We've tried adding the website IP to the SPF records in the DNS.
We also tried adding website IP to Office 365 IP allow list.
Does anyone have experience with this kind of problem specifically with outlook office 365 and digital ocean? If more information needed, let me know.
~ Khanh
Here is a similar question already.
I am trying to simulate a browser like behaviour of my script to login into hotmail using http requests and cookies. I found this link which shows how to login to facebook using http requests in c#.
I am using PHP Pear HTTP_Request2 package to simulate this. I was able to render the login page but I cannot login.
I googled about how to login into Hotmail.com and found someone saying that hotmail is CSRF protected and i cannot achieve this. But i think there might be a solution because i am using a server side script to make the request so there is no chance of csrf. If anyone has done this before, i would highly appreciate some help.
But i think there might be a solution because i am using a server side script to make the request so there is no chance of csrf.
That's irrelevant - Hotmail has no idea that the request comes from a server rather than a browser, and even if they did, chances are they wouldn't want you accessing their systems automatically (as the most common use for that is probably registering accounts en masse to use for spamming).
You'd need to fetch the CSRF token and include it with your subsequent login request, along with the Hotmail session cookies. I'd expect to run into further protections intended to prevent automated access like this (captchas and the like).
On Firefox and Internet Explorer, when you close the browser while being logged into a website (e.g. Yahoo mail) it automatically logs you out.
However on Google Chrome (with Sync enabled), the $_SESSION seems to be stored even when the browser is closed. Its easy to reproduce,
a) Log into yahoo mail, on Chrome (with sync enabled)
b) Close your browser without logging out of yahoo mail
c) Open a new browser
d) Got mail.yahoo.com. This will allow you into yahoo mail without requiring you to log in.
I am using yahoo mail as a example because it'll be easier to relate to. I have same exact issue with my website login system. I am worried about my users logging into their accounts from a public account and closing their Chrome browsers not realizing that the next person that comes along and open the browser window might be able to log into their account.
Has anybody come across this. Does anybody know how to fix this i.e. ensure that the session is closed and user logged out when a Chrome Browser is closed?
I have an e-mail address that is signed up to a list-serv and I would like to set up a script to monitor it. If it gets an e-mail addressed to the list-serv, I would like to have the contents dumped to a secure webpage a user would log into (in a blog-style output, making it almost like one big thread for a forum) so that all of the e-mails are in a central location.
I'm pretty sure php has this type of capability, but I'm new to web dev so was wondering if someone could point me in the right direction of how I could go about this.
If you email provider supports IMAP you can use PHP IMAP functions to do this.
I'm working on shifting my local web application to google apps. I have an account already for google apps for business and right now I need to work on the functionality of interacting with email.
Let me give a synopsis - my web app currently was set up that a cron job would download all emails from a set mailbox into a database at short intervals and when each message would be entered they would be assigned a specific ID and we would be able to use that ID to refer to that message in our application wherever we would require. So basically our applications mail section gave the illusion of being a webmail client when nifact it would retrieve from a database. I'm interested in a solution with google apps on a similar case.
The thing is that the application initially when the cron job runs - not only does it download a the email from the mailserver but it would also delete the email from the mailbox. So basically we would refer to the email on our local database as that is where it would exist.
Now however I don't want to delete the email form the inbox at all. Infact I would like to set it up such that I can maintain a reference to an email on my gmail inbox and still have a copy in my local system or at the least a basic link to the email. The thing is that from my programming with email webclients I havent been able to find what is a UNIQUE ID for emails in the mailbox which could be used as a way to identify them from an external application - emails seemed to be numbered by sequence and the sequence changes when an email is moved between inboxes. The UID or unique ID value seems misleading as it is just a sequence number for that email which can change if earlier emails are deleted or moved about.
What would be the best way to do this?
Are you sure about the fact that the id changes? I just archived a message that was in my inbox. (I had copied the link beforehand). Then I took the link, and used it in a completely different browser (first time was FF, second time was Chrome). It pulled up the same e-mail.
Google's IMAP server supports a proprietary X-GM-MSGID command which allows retrieval of a message's Gmail UID.
https://developers.google.com/google-apps/gmail/imap_extensions#access_to_the_gmail_unique_message_id_x-gm-msgid