These are all useful when trying to track down an open formmail script.
List bounce messages
exiqgrep -f '^<>$'
Freeze bounce messages
exiqgrep -i -f '^<>$' | xargs exim -Mf
Freeze messages from user@domain.com
exiqgrep -i -f user@domain.com| xargs exim -Mf
Find out what user your webserver runs as. Use this as the email address to key on. For example, my Apache runs as nobody so I want to freeze all messages sent from the user nobody@domain.com so I can look through them to see if I can deduce where the insecure formmail script is.
Delete frozen messages
exiqgrep -z -i | xargs exim -Mrm
Popularity: 1% [?]
