|
Posted by mungos301 on 09/28/60 11:44
I have feedback form on my web page using sendeal.php
and almost every day I'm receiving mails from my web page
with faked mail address as shown:
sport3453@myweb.com
sdgav234@myweb.com
kjgkasdgak@myweb.com, etc...
Can anybody help me to protect my feedback form from
situation like this. I tried to change name of PHP script,
change permissions, and variables (declaration)..--- no success.
************************
PHP SCRIPT:
<?php
$myemail = "mymail@myweb.com"
if(!$visitormail == "" && (!strstr($visitormail,"@") ||
!strstr($visitormail,".")))
{
echo "<h2>Use Back - Enter valid e-mail</h2>\n";
$badinput = "<h2>Feedback was NOT submitted</h2>\n";
}
if(empty($visitor) || empty($visitormail) || empty($notes )) {
echo "<h2>Use Back - fill in all fields</h2>\n";
}
echo $badinput;
$todayis = date("l, F j, Y") ;
$attn = $attn . "(" . $ccopy . ")" ;
$subject = $attn;
$notes = stripcslashes($notes);
$message = " $todayis [EST] \n
Subject: $attn \n
Message: $notes \n
From: $visitor ($visitormail)\n
Additional Info : IP = $ip \n
Browser Info: $httpagent \n
Referral : $httpref \n
";
$from = "From: $visitormail\r\n";
if ($myemail != "")
mail($myemail, $subject, $message, $from);
if (($ccopy == "ccyes") && ($visitormail != ""))
mail($visitormail, $subject, $message, $from);
?>
[Back to original message]
|