Reply to Re: Block email inject spammers

Your name:

Reply:


Posted by Franηois on 02/06/06 18:40

"Good Man" <heyho@letsgo.com> wrote in message
news:Xns97627100E7446sonicyouth@216.196.97.131...
> "Franηois" <franc@nowhereinparticulare.whatever> wrote in
news:ds7pbg$eu7$1
> @news.tiscali.fr:
>
> > Hi there,
> >
> > if (ereg(":", $Name)) || (ereg(":", $From))
> >
> > If I validate my mail() headers thus, will this stop spammers
being
> > able to abuse my mail form? If there is somebody who has a colon
in
> > their name or email address, I have yet to meet them.
> >
> > Many thanks in advance
> >
> > Franc
>
> there are several things you need to do
>
> 1) hard-code the recipient - do not allow them to send mail where
they wish
>
> 2) put a session-cookie on the mail compose screen, and check for
that
> session on the mail-send script - not there? no mail gets sent

I already have those two in place, but hardcoding the recipient is NO
guarantee that some spam punk cannot inject their own headers into my
form fields. I was just wondering if my regular expression would
accomplish this.

Thanks for the input.

[Back to original message]
УдалСнная Ρ€Π°Π±ΠΎΡ‚Π° для программистов  •  Как Π·Π°Ρ€Π°Π±ΠΎΡ‚Π°Ρ‚ΡŒ Π½Π° Google AdSense  •  England, UK  •  ΡΡ‚Π°Ρ‚ΡŒΠΈ Π½Π° английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Π‘Π°ΠΉΡ‚ ΠΈΠ·Π³ΠΎΡ‚ΠΎΠ²Π»Π΅Π½ Π² Π‘Ρ‚ΡƒΠ΄ΠΈΠΈ Π’Π°Π»Π΅Π½Ρ‚ΠΈΠ½Π° ΠŸΠ΅Ρ‚Ρ€ΡƒΡ‡Π΅ΠΊΠ°
ΠΈΠ·Π³ΠΎΡ‚ΠΎΠ²Π»Π΅Π½ΠΈΠ΅ ΠΈ ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠ° Π²Π΅Π±-сайтов, Ρ€Π°Π·Ρ€Π°Π±ΠΎΡ‚ΠΊΠ° ΠΏΡ€ΠΎΠ³Ρ€Π°ΠΌΠΌΠ½ΠΎΠ³ΠΎ обСспСчСния, поисковая оптимизация