mail() injection, am i safe? — PHP Programming Language

You are here: mail() injection, am i safe? « PHP Programming Language « IT news, forums, messages

Posted by Simon on 11/11/05 13:03

Hi,

I was looking at mail injection,
http://securephp.damonkohler.com/index.php/Email_Injection

And I was wondering if my mail(...) was safe.

I ask in a form for
1 Name
2 Email address
3 Subject
4 Comment/Message

I then build one message by putting all of the above together.
So even if there was injection, it is all in the body of my message, right?

I then use mail(...) as per normal with my hard coded "To:" and "Subject:"

Is that a fairly safe way?

How should I parse my form to prevent malicious code, (Script? eval?)

Many thanks for your input.

Simon

Navigation:

Next in forum: Re: UTF-8 Problem
Prev in forum: Re: MIME_BASE64_TEXT
Thread view: mail() injection, am i safe?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация