Posted by dorayme on 05/22/07 22:08

In article
<emJ4i.31784$p47.20713@bgtnsc04-news.ops.worldnet.att.net>,
"Beauregard T. Shagnasty" <a.nony.mous@example.invalid> wrote:

> dorayme wrote:
>
> > In article <46526ef0$0$7128$4d3efbfe@news.sover.net>,
> > Leif K-Brooks <eurleif@ecritters.biz> wrote:
> >
> >> Adrienne Boswell wrote:
> >>> Usually, when I make contact forms, I include an option to cc the sender.
> >>
> >> Spammers must love you.
> >
> > Care to elaborate?
>
> An unscrupulous person can fill in the form using a victim's address and
> have that "cc:" go to the victim. I'd also envision that the spammer
> would make a local copy of the form, and blast it at the "action" script
> with continuous submissions.

Trying to get my head around these points. A spammer who already
knows the email address of people can do all manner of things,
what is so attractive to a spammer of a form that has a CC input?
That he gets also to send info to the form's owner?

Perhaps the penny will drop for me, but it is still early here.

I have learnt something from this thread: that it is likely many
people don't like a mere contact form without a proper email
address as an alternative means of communication. And that there
is some downside (which I don't fathom completely) to putting in
a CC field.

--
dorayme

[Back to original message]