[thelist] what's the hole in my contact form anti-spam?
Nan Harbison
nan at nanharbison.com
Thu Sep 10 11:25:02 CDT 2009
My client did NOT want a captcha under any circumstances, so in desperation,
after watching how the fields were filled out by bots for a few weeks, I
created this code:
$findspam1 = strpos($_POST['message'], "[");
$findspam2 = strpos($_POST['message'], "]");
$findspam3 = strpos($_POST['message'], "url");
$findspam4 = strpos($_POST['message'], "http://");
$findspam5 = strpos($_POST['message'], "link=");
if ($findspam1==false && $findspam2==false && $findspam3==false &&
$findspam4==false && $findspam5==false)
{
if ---the code you already have here----
{
to do whatever
}
}
And I haven't had any spam since then, and now, having said that, I bet I am
going to have to eat those words!!!
Nan
-----Original Message-----
From: thelist-bounces at lists.evolt.org
[mailto:thelist-bounces at lists.evolt.org] On Behalf Of Mohan Arun L
Sent: Thursday, September 10, 2009 5:32 AM
To: thelist at lists.evolt.org
Subject: Re: [thelist] what's the hole in my contact form anti-spam?
>>>>You need some way to either test for a human sitting at the form
>>>>loaded
into the browser, or some way to test weather the data received actually
came from the form loaded into a browser.
>>>
I get such contact form spam all the time.
Simply include a recaptcha script as part of your form to verify if form
submissions are being made by humans.
* * * * * * * * * * * * * * * *
www.mohanarun.com
--
* * Please support the community that supports you. * *
http://evolt.org/help_support_evolt/
For unsubscribe and other options, including the Tip Harvester and archives
of thelist go to: http://lists.evolt.org Workers of the Web, evolt !
More information about the thelist
mailing list