Hi,
What sort of spam? Is it direct email or spam submitted via the form?
If it's direct email, then I think the possibilities are:
- The _private folder isn't protected. Can you open the INI file via a browser?
- The email address you used is something that could be guessed. Spammers often just send to common names in the "hope" that such an address exists.
- If you're on a shared hosting system, perhaps someone has logged into the computer via Telnet or SSH and just grabbed the email address directlry out of the INI file.
Bookmarks