It is absolutely impossible! This is an open source software, You can see the source code!!!
There is no server or connection information in any of the files. Meaning that it can only connect to whatever servers you put in !!!!!
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
acalbert? Thanks for the plugin (I use it myself on one of my installations) but you may want to calm down. For your own health. 😉
@erik As acalbert indicated this plugin is GPL’ed opensource (like all plugins in the repository) and you can view the source code yourself on your own installation or on trac.
http://plugins.trac.wordpress.org/browser/wp-smtp/trunk
There’s no server defined in the 2 PHP files. If you’re routing e-mail through China (and you’re not in China) then my guess is that your server has either been misconfigured or hacked.
Either way you want to speak with your web host.
Thread Starter
Erik
(@erikalm)
This incident made me realize I was putting my Google login information in a database on the web … which isn’t actually my style.
On the other hand, my server has been hacked before, and I’ve had things happening with my Google account before (unsure if it was a Google glitch or me being careless with my login info).
So, this was probably just a coincidence!
And, it was a question of whether this plug-in was phishing or not…
The question has been answered to my satisfaction, and that’s good enough for me.
Thanks for your replies guys!