|
|
Posted by Carl Pearson on 01/13/07 02:40
Chuck Anderson wrote:
> I have a contact form on my site (been there for a few years) and just
> lately someone has begun using it to send Spam to me - and only to me
> (one to three times a day). I can tell because I track the usage of
> those contact form scripts (that I wrote) closely. The person is not
> even trying to inject anything into the headers, they are just sending
> me URLs to their porn sites.
>
> Is there any way to block this kind of usage? I've tried the usual
> tricks (hidden form field - checking referrer), but they always (almost)
> check out okay. The originating IP address changes every time, of
> course - and the porn sites are usually already gone.
>
> I'm already cleaning all my form variables (checking for LF and CR and
> content_type and cc:), so that is not my problem. It's just the few
> annoying emails I get.
>
> [ ..... Is this actually a productive way for spammers to distribute
> their crap ... one email per form?]
>
You could always modify .htacess, presuming the spammer stays on the
same IP. If their IP is changing, just go upstream and block a whole
subnet. With the latter method, you might lose some valid entries if
someone else on the that subnet tries to sign the book...
Navigation:
[Reply to this message]
|