need help with /tmp security

Hi,
I need some help/advice in dealing with a spammer.

Somehow they are able to upload some php files to the /tmp folder on our linux server and then send mass emails.

We alredy have Noexec, Nosuid directories
on /tmp, /var/tmp, /dev/shm

How is it possible for them to do this and what can be done to stop it???

Thanks in advance

 

 

 

 

Top