Hi all I have a form on my website (php mail) and I have put a few sections in there to trap spam, does anyone know any more ways I could trap it before it gets sent? Thanks Justin
To avoid automated form spam you could use a CAPTCHA ( en.wikipedia.org/wiki/Captcha ), random text in an image. Maybe you already have that function?
i have some Email Injection code on the form as my host warned me that too much php process would end in charges, but yes, I must put image verification on there. Is it not just possible to have a form submit with only a string of text input which is displayed on the page? I find the code for image verification a bit over the top.
if you get spam because of mime header injection , check this link: http://www.securephpwiki.com/index.php/Email_Injection
Well..the thing about Captcha vs plain text is that most automated crawlers and such can't read the randomly generated image... If you put text on there, it could be possible to be read automatically and then your work doesnt mean anything.
It is such a pain that people write robots that go around spamming web forms. It seems captcha is the best method for protecting from this, but it really hurts usability, and then people who send these robots should be ashamed of themselves.
i have a function to check every field for spammy words (viagra, casino, poker, ...) and it just aborts if it finds something. works quite well
I've had success by including my forms via a Javascript call. Since Javascript renders client-side, there's no form to spam