Re: Newbie php problem

Beauregard T. Shagnasty wrote:

Tim Greer wrote:

You probably want to evolve that script, but for the immediate
problem, why not have a form field that's a hidden HTML tag, which is
a specific value, and the script only executes the mail function if
(for example) the field name "mailed" is "wassubmitted" or any
combination you wish to use, and only then is is submitted.

What would prevent the bot people from copying your contact form (View
Source, of course), complete with "hidden" field, and submitting it to
your action script from their own server?

Nothing would and that wasn't the intent of the reply. I said that it
would stop a lot of bots and (probably) the search engine spiders. All
of the bots out there use specific preset fields to exploit common mail
forms, so that would stop most (probably all), but if they copied the
field and value, then it would allow them to exploit it, of course.
Unlikely if your site isn't too popular and you use a unique field,
though. Of course, this is why I said that they'd want to use a more
advanced script, since there are better ways (and you can stop
automated bots completely, if you do it right). My suggestion was
simply to solve their immediate problem (and also to suggest a more
advanced script, which I also had done).

IMO, a hidden field is next to useless for the purpose you described.

Not really. They wanted their script to be protected from search
engines and misguided posts, and if you require a specific field to be
posted, along with non empty fields you should require, it'll suit the
purpose perfectly fine. If they want to make it so spam bots can't
take the source (or read the source) and use the fields to protect from
blank or spamful posts (they've only complained about blank posts),
then they'd certainly need to do more/different things, which I
suggested.
--
Tim Greer, CEO/Founder/CTO, BurlyHost.com, Inc.
Shared Hosting, Reseller Hosting, Dedicated & Semi-Dedicated servers
and Custom Hosting. 24/7 support, 30 day guarantee, secure servers.
Industry's most experienced staff! -- Web Hosting With Muscle!
.

Relevant Pages

  • Re: Newbie php problem
    ... The OP said that their script would send email without ... Another common way is that spam bots will hit commonly ... you betcha he would automate it soon enough. ...
    (alt.php)
  • Re: Newbie php problem
    ... The OP said that their script would send email without ... CAPTCHA images are hackable/readable by the bots, ... you betcha he would automate it soon enough. ... contact form could have anything to do with its action script. ...
    (alt.php)
  • Re: Newbie php problem
    ... and the script only executes the mail function ... it would stop a lot of bots and the search engine spiders. ... you betcha he would automate it soon enough. ... engines and misguided posts, and if you require a specific field to be ...
    (alt.php)
  • Re: Bots?
    ... I think most of them are just chinese farmers, ... script is not made for that, ... I play on a FRENCH server, and the area you quoted are also "boted" a ... on your server how much of a problem are bots?. ...
    (alt.games.warcraft)
  • Re: Newbie php problem
    ... Please forget the first part of the script, as I do put some extra ... accepting input, ... Shared Hosting, Reseller Hosting, Dedicated & Semi-Dedicated servers ...
    (alt.php)