Reply to Re: submit form via URL

Your name:

Reply:


Posted by Kim Andrι Akerψ on 12/07/05 04:36

Shank wrote:

>
>
> "Beauregard T. Shagnasty" <a.nony.mous@example.invalid> wrote in
> message news:x4mz96op7ey5.7ejmwfl46jb5$.dlg@40tude.net...
> > Shank wrote:
> >
> > > I would not have access to the code or page design in any way. I'm
> > > trying to design a macro that would submit a form on someone
> > > else's site.
> >
> > Ok, now you have piqued my curiosity. Why ... do you want to use a
> > "macro" to submit a form on someone else's site?
> >
> > Sounds nefarious. Like spamming .. or mailbombing the owner ..
>
> poppycock! Not even close to anything like that. Because it's not
> possible, no sense in discussing. thanks

It IS possible. In fact, I'm even doing that as we speak to someone to
sent me a scam mail. In Norwegian, mind you! (My native tongue!)

So I decided I'd send an invoice to the company who sent me the scam
mail for services done on the site "as part of your job request" (page
testing, validation, that sort of thing). I didn't get as far as
putting stamps on the envelope when I found several news articles (from
reliable news sources), describing these people as scammers (as their
so-called address was pointing to a nonexistant mail box at an
apartment building - they did try to ring every doorbell in that
building, without a trace of the company).

By taking a quick look at their order form, I found it to be insecure
enough for me to write a quick Perl script that generates a random
e-mail address (of the example.com domain-type) and processes the order
form with a blank order, invalid credit card (I believe I set it to
"1234567890123456"). This script is run on a cron job (scheduled task)
every minute, from 4 different Linux computers. That makes 4 invalid
orders a minute, 60 times per hour, 24 hours a day, 7 days a week. I
can only imagine the face of the bastard who has to sift through over
5760 e-mails to find that 99.9% of them are completely bogus.

Serves them right to try to mess with me.

--
Kim AndrΓ© AkerΓΈ
- kimandre@NOSPAMbetadome.com
(remove NOSPAM to contact me directly)

[Back to original message]
УдалСнная Ρ€Π°Π±ΠΎΡ‚Π° для программистов  •  Как Π·Π°Ρ€Π°Π±ΠΎΡ‚Π°Ρ‚ΡŒ Π½Π° Google AdSense  •  England, UK  •  ΡΡ‚Π°Ρ‚ΡŒΠΈ Π½Π° английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Π‘Π°ΠΉΡ‚ ΠΈΠ·Π³ΠΎΡ‚ΠΎΠ²Π»Π΅Π½ Π² Π‘Ρ‚ΡƒΠ΄ΠΈΠΈ Π’Π°Π»Π΅Π½Ρ‚ΠΈΠ½Π° ΠŸΠ΅Ρ‚Ρ€ΡƒΡ‡Π΅ΠΊΠ°
ΠΈΠ·Π³ΠΎΡ‚ΠΎΠ²Π»Π΅Π½ΠΈΠ΅ ΠΈ ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠ° Π²Π΅Π±-сайтов, Ρ€Π°Π·Ρ€Π°Π±ΠΎΡ‚ΠΊΠ° ΠΏΡ€ΠΎΠ³Ρ€Π°ΠΌΠΌΠ½ΠΎΠ³ΠΎ обСспСчСния, поисковая оптимизация