Posted by Shelly on 01/24/08 02:07

On Jan 23, 8:47 pm, Manuel Lemos <mle...@acm.org> wrote:

The email is only sent to the site owner, so the spammer has no way of
knowing what the email should look like. That tells me that they have
to be going through the form. Yet the proper email has an echo of
generated security code. The spam email has that field empty. So,
that says he can't be going through the form.

It seems to me that they must:
1 - Somehow diverting a legitimate email so that copy is sent to
them.
2 - Using that email copy to create a template and modify the output
so that junk is sent.

I really don't know how they are doing it.

• Next in forum: Re: webpage hit counter in PHP
• Prev in forum: Re: IP Spoofing
• Thread view: Re: Contact Form Spam

[Reply to this message]