|
|
Posted by Good Man on 07/09/07 12:58
Geoff Berrow <blthecat@ckdog.co.uk> wrote in
news:rlo393hccijoamvgvitt4nn5mjoeci75ag@4ax.com:
> The comments line seems to come from a bank of about 5-10 but the names
> and email addresses seem to be randomly generated. But what's bugging
> me is why someone is doing this? It's not vast numbers, about 8
> yesterday. IP addresses vary, Vietnam, and Japan appear quite a bit but
> I've also had one from the UK. There doesn't seem to be any payload, so
> I just don't see the point.
they're bots taking advantage of loose scripts. search ALL fields in the
form for hidden "cc" and "bcc" references (thats often how its done), or
for inappropriate "\r\n".
here's a quick article which can help:
http://www.paulsilver.co.uk/code/php_contact_spam_block.php
You can also do some other things to 'outwit' the bots. For example, bots
tend to put values in all fields. You can make a couple hidden fields in
your contact form, one that should be empty when checking the submission,
and one that should have a specific value (ie: "spammerssuck"). If on form
submission the first hidden field is not empty, or the second says
something other than "spammerssuck", you know its a bot....
Navigation:
[Reply to this message]
|