Web Hosting Forum | Lunarpages


*
Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length
May 24, 2012, 09:01:46 AM

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Form email security  (Read 378 times)
KJones
Galactic Royalty
*****
Offline Offline

Posts: 327



WWW
« on: June 30, 2003, 11:56:43 AM »
I want to provide a way for my visitors to contact me but I don't want to use a mailto: link because someone might send me a virus or add me to a spam list. So I thought an email form would be better but I'm concerned about whether or not those can be abused.

I'm wondering what would happen if someone entered an email into the form, clicked send, and then used their BACK button to return to the forum and send the message again... repeating this over and over again until my mail box is flooded with thousands of copies of the same email.

Besides filling my inbox I'm assuming that would also cause problems on the server side. Is there a way of preventing that kind of email flood attack from happening? Maybe a built in "1 post per minute" restriction, or an IP ban of some kind?
Logged
"I believe that this nation should commit itself to achieving the goal, before this decade is out, of landing a man on the moon and returning him safely to the earth." - John F. Kennedy
TWebMan
Quantum Encyclopedia Writer
*****
Offline Offline

Posts: 3112



WWW
« Reply #1 on: June 30, 2003, 06:07:29 PM »
You can use the 'new improved' formmail.  It's available at:
http://www.hotscripts.com/Detailed/18270.html  
http://www.hotscripts.com/Detailed/10680.html  
http://www.hotscripts.com/Detailed/20950.html

There's a couple of settings, but nothing major or complicated.

Be sure to put it in your cgi-bin and CHMOD it to 755
Logged
"Computers cause people to make more mistakes than any other invention in history, with the possible exception of handguns and tequila."  - Unknown
"Liberty of any kind is seldom lost all at once." - D. Hume
Every day is an Ode to Joy
The planet will be fine... and so will your site
KJones
Galactic Royalty
*****
Offline Offline

Posts: 327



WWW
« Reply #2 on: July 02, 2003, 07:52:38 PM »
I'm not sure if those do exactly what I'm looking for (flood control) but they look like good scripts. If I can't find something like what I want I'll probably go with one of those. Thanks. Smile
Logged
"I believe that this nation should commit itself to achieving the goal, before this decade is out, of landing a man on the moon and returning him safely to the earth." - John F. Kennedy
KJones
Galactic Royalty
*****
Offline Offline

Posts: 327



WWW
« Reply #3 on: July 02, 2003, 11:25:12 PM »
I've installed the NMS FormMail script. Does anyone know how to tell it to record the senders IP address in the emails?

Also... is it possible to set the message entering page to expire after the Send button is clicked so that if they click the back button all they get is an error that says "This page has expired"?
Logged
"I believe that this nation should commit itself to achieving the goal, before this decade is out, of landing a man on the moon and returning him safely to the earth." - John F. Kennedy
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: