[Phpwm] Securing feedback forms
Jonathan Adjei
jadjei at ntlworld.com
Wed Nov 1 12:48:59 GMT 2006
Is anyone using human-readble image checks, and how much of a turn off have
you found them? I've just added one to a contact form and am wondering if
these will end up on all my sites and what impact there will be to genuine
usage. I personally find them a bit of a pain.
jon
-----Original Message-----
From: phpwm-bounces at mailman.lug.org.uk
[mailto:phpwm-bounces at mailman.lug.org.uk] On Behalf Of David Johnson
Sent: 01 November 2006 12:14
To: West Midlands PHP User Group
Subject: Re: [Phpwm] Securing feedback forms
On Wednesday 01 November 2006 11:00, Greg Jones wrote:
>
> only from the beginning or end of the string though, not anywhere
> within it.
>
Sigh. That'll teach me to read things properly in future...
Thanks for all the suggestions. I'm now doing the following to user input:
* checking the string length is not greater than the maxlength of the text
box
* checking for \n and \r control characters
* doing addslashes, trim and strip_tags (to stop me receiving garbage,
rather
than to increase security)
* checking for multiple occurrences of '@' in the provided from address
Hopefully that should keep the spammers away for a while, unless anyone can
think of something I've missed. I remember the days when you could just
stick
your e-mail address in a mailto: link on your website without fear...
Cheers,
David.
_______________________________________________
Phpwm mailing list
Phpwm at mailman.lug.org.uk https://mailman.lug.org.uk/mailman/listinfo/phpwm
More information about the Phpwm
mailing list