Eliminating Spammers From Adding Records?
I have a website that allows users to add records for their events. Recently I've had a bunch of spammers coming in.
Do you have any tips on how to keep them from entering bogus information.
I have started checking for any "http" in some of the fields but I want to make it even harder for them. Is there a way to check what the referring page is and if it is not the right one to produce an error?
View Complete Forum Thread with Replies
Related Forum Messages:
DELETE RECORDS - Database Adding New Records
iv got the database adding new records, and now I want it to display all of the records that are there buy name and id number, then i want u to be able to type in the id number of the customer u wish to delete and it shoudl delete it, sounds good buts its not actually deleting the record. it says it does, but its not doing it. Code:
View Replies !
Adding Multiple Records
i have mysql database table named 'table' it has fields : id (auto increment) , name , message , category , views currently i have php script that only adds one record at a time.now i want to add 10 records at a time.
View Replies !
Adding A Number To All Records
is there a query structure that will enable me to add, say, 10 to all records in a certain column without doing 2 queries for each record (one to get the current value and one to update it with the new value.
View Replies !
Prevent Adding Duplicate Records
theres a XML file located on the internet. every week or so. this xml file gets updated with one or two new entry's. i have a php script which can read all the entrys i want from this xml file. and then put it into a database. the problem is say i run the php script again to update the database and add the new entry's that the xml file has. every thing gets added again. each time the script is run. the enter xml file entry's are added again. so the database get full with duplicates triplcate records ect ect. how would i go about preventing the same record being added over and over.
View Replies !
Adding Multiple Records To A Table In One Form.
I have one form in a php page. In that form there are several rows, each with several input boxes. These rows represent individual products and their price. You may add as many products as you want by clicking a add product button and it will add another row using javascript. When you are finished adding your products you then click submit. For each product I would like it to insert an individual record in the products table. For example if you add 10 products, when you click submit it will add 10 records in the product table.
View Replies !
Eliminating Frames
I have a html thing with a frame. The top has buttons controlling the site and the bottom has info. I get the redirection working but don't know how to get rid of the bottom frame. What happens is that the top frame gets stuffed with the second pages stuff an dhte bottom frame stays static. If I could eliminate the second frame when I redirect, it would work perfectly.
View Replies !
Pulldowns (eliminating Doubles)
I have one table with (amongst others) SUBJECTS. Now every user has subjects so there are doubles (user 1 has NEWS, user 2 had NEWS). On 1 page I want a pulldown that lists these subjects and currently I'm using this: $q = "select onderwerp from mailupdate;"; $r = mysql_query($q); echo "<select name="onderwerp">"; for($i=0;$i<mysql_num_rows($r);++$i) { $arr = mysql_fetch_row($r); echo "<option value="".$arr[0]."">".$arr [0]."</option>"; } echo "</select>"; But I want to eliminate the doubles (just one timme NEWS and not every time it appears in the table.
View Replies !
Eliminating Multiple Do-while Loops
I've been using the foll type of coding since i started php a while ago but i know multiple do-while loops can be eliminated to make the code more efficient. i've tried various combinations but i cannot seem to make it work. Would anyone be able to have a look and tell me how i can change it? Code:
View Replies !
Eliminating Malicious Form Input
I have a form where visitors input their information and it is stored in a database. That data can later be displayed on a web page. I want to make sure that no code (malicious or otherwise) can be input in the form, therefore stored in the database, which then executes when displayed. Will strip_tags() take care of removing all code (malicious or not) or do I need to use a different function?
View Replies !
Methods For Eliminating Duplicate Rows
I'm looking for methods for removing duplicates. Currently, what I'm using is to add a new column with a sequential number in it to use as a unique key. If your system has some pseudo row number type, like postgresql's oid column you could use that too. After that, I use the following statement to find and eliminate the duplicate rows: Code:
View Replies !
Eliminating Code From Email Form Results?
I created a simple PHP contact form for my website. When a person submits this form, a copy of it is emailed to me and a copy is emailed to the person submitting the form. How do I eliminate all the PHP junk from appearing in the emails? Code:
View Replies !
Eliminating Passed URL Variables For Multiple Listings On A Page
I have a page with a list of several users, each hyperlinked to another page of 'more info' about that user. The hyperlink contains the UserNumber, UserRegion, and UserStatus, and the receiving page picks up the data in the passed URL. This works well, but I'd like to eliminate the passing of these variables in the URL. One way is to make a graphic ('More Info') that can be clicked to submit a form. Each 'More info' graphic from the dynamically created page could hold the UserNumber, but how can I pass several variables with a single click? On some pages, there can be 100+ users, and I hate to have 100+ separate forms and hidden fields. I thought of using session variables, how can I know which user was clicked to set the session variables?
View Replies !
Overcoming BOT Spammers
Someone mentioned that not one but two of their php-based Guest Books had been spammed by bots. I haven't gotten the details of how this was accomplished. Apparently, they are porn sites and such, and they post hundreds of messages to the GB daily. Would it be correct to assume that the bots were harvesting the URI and form field variables that passed the data to the php script to do it remotely ? If so, can this be accomplished passing the data using "get" or "post?" Even so, wouldn't domain blocking be effective against this, or simply blocking all requests from domains outside your own, for example? Or what about converting the form field values to variables, defined in external docs, etc? At any rate, I'd be interested in knowing how these bots might have spammed these php scripts, if you anyone has had any experience with this, and how it might be prevented.
View Replies !
Prevent Spammers
I'm writing small script for sending mail from my web pages. I have heard about security hole in FormMail.pl script which can be used by spammers. I would like to prevent that in my script.
View Replies !
My Php Email Script Is Getting Used By Spammers.
I have been using a vert basic php form that sends its contents via email. But recently I am getting hundreds of spam emails that are using my script. Basically, I use a HTML form that sends the value to a PHP script, which sends me an email with the contents. I was told I need to use a ramdom numbers/letters generator or block multiple script uses from the same IP. Could somebody please help me with that or giving me other solutions? I already get the IP information with: $message .= ( "IP = " . $REMOTE_ADDR . ""); Is there a way I could leverage that to avoid the spamming?
View Replies !
Stop Email Spammers
I have a contact form on my website which appears to be being used by email spammers. at one point my website was taken down by my hosts as my account was suspended as I was apparently sending a lot more than the allowed 150 emails an hour. The reason I suspect it's my web form is that I receive a lot of spam supposedly sent through the actual web form so I'm sure it's the culprit. The problem is, I can't see what I can do differently to my web form to stop this from happening. It's a very straight forward form that uses the mail function to send an email should anyone fill out the form. Not sure it matters but I've added the main crux of the code below: Code: $Submit=$_POST['Submit']; if (isset($Submit)) { //the function escapeshellarg helps prevents users from entering malicous code into the form. $name = $_POST['name']; $name = escapeshellarg($name); ..............
View Replies !
Hide Email From Spammers
I would want to hide my E-mail address from homepage(s). Currently I have a E-mail text on my home page and that refers to link mailto:mymail@mycompany.com. That's too easy for any e-mail harvester program to find, and then include it to some spamming list. I'm looking some *very simple* PHP-script, because I'm going to use it regularly on several sites. Google has found me PHP scripts that could do it, but those scripts are usually several pages long, with dozens of attributes and parameters to set first.
View Replies !
Script Exploited By Spammers
i just got my site taken down. apparently, someone is using our php mail() function to send out 1,000's of spam emails. what can i do to prevent this? i'm no schooled programmer. i figured a simple contact form using mail() would be better than displaying all our email addresses where bots could get them. now it seems this method is no good either. is there something about this that can address this security issue? i had no idea that someone could do this and still can't say i have a clue as to how they do this. PHP Code: $mail_to = $to; Â Â Â Â $mail_subject = $_POST[subject]; Â Â Â Â $emailbody = $_POST[body]; Â Â Â Â mail($mail_to, $mail_subject, $emailbody, 'From: "'. $_POST[from] . '" <' . $_POST[replyto] . '>');
View Replies !
Spammers Filling Out Forms
Spammers have started filling out the forms on my site. About 1/2 the form I can reduce to check boxes and radio buttons. However, for name, address, comments and similar fields, spammers are putting in their vile messages. PHP Code: $ghost = $_POST['comments']; A typical input ($ghost) might be something like: "I'm interested in such and such. Can you please send me info about blah." In most cases, the spammers will put a URL (or series of URLs) in the comments field. It looks something like: "Come visit my site www.vileimagery.com for the best vile imagery." How do I check the input ($ghost) for a URL in the midst of all the other text.
View Replies !
Spammers Are Hacking My Site
I got the below message from my ISP, can someone tell me the best way to stop URLS from being inserted into my site. Your help would be appreciated. I am a newbie to PHP, so you may need to spell it out for me. Your website has been temporarily taken offline as it is being abused by spammers and used to send large amounts of spam to other users on the Internet. We have provided our analysis below to hopefully help your web developer(s) understand the problem and hopefully help fix your website. Basically, it seems that index.php and possibly other files allows inclusion of code from another site. The piece of PHP code in question from index.php has been provided below: ... <?php if(isset($_GET["content"])) { $page = $_GET["content"]; include_once("$page.htm"); } else { include_once("main.htm"); } ?> Spammers are abusing this to include HTML e-mail forms hosted on a free webspace provider and using it to send mail messages to other users on the Internet. We have renamed index.php to index-old.php and provided an example of one form below: ...
View Replies !
My Mail Being Exploited By Spammers
My webhost has notified me that my php scripts that send mail in my public_html directory are being used by spammers to send mail. They asked me to correct any open holes by changing to SMTP authorization instead of phpmail going forward, but I don't know the necessary scripts to do that.
View Replies !
Secure (from Spammers) Mail() Script
Does anybody have examples of a secure mail script using the local mail() function in php. I want to write a script that can send email out to external domains that can contain html and text alternative, but is also secure from spammers. I have written many mail functions in the past, just not to external domains that are spam resistant.
View Replies !
How Do You Make A Form Unusable By Spammers Please?
How do you make a form unusable by spammers please? Hi all, I'm desperately trying to get a php form to not be used by spammers, I don't want anything to do with javascript or captcha's. Can anyone please let me know what changes I would need to make to the code on the link below?
View Replies !
Security - Blank E-mails By Spammers.
I have an online form - script below. I thought it was secure, but last night I got 20 or so blank e-mails from my site and one that bounced ? Is this script secure or am I being abused by spammers? PHP SCRIPT:
View Replies !
Email Forms - Blocking Spammers
I have a couple of email forms I have created that use PHP to email the collected data to the appropriate recipient. A concern has been raised by clients about the form being hacked by spammers. Is this likely to be a problem? If so what is the best way to stop it happening. All I can think of is to maintain a log of, say, users ip addresses and use this the limit the frequency with which the form can be used.
View Replies !
Hiding Email Links From Spammers
Instead of a mailto link, put in a link to a PHP script that contains these lines: <?php header("Location: mailto:test@test.nz"); ?> and this will create a new blank email message with the address in the To field.
View Replies !
Protect Script From Being Hijacked By Spammers?
Recently found out AOL has blocked our company's IP for e-mail for spam. We don't send spam. So I had our server host check it out, and they said huge amounts of spam are being sent through us via a compromised PHP script we have for a Web support form. How is this possible? How can they do this? We validate if certain fields are blank, what else can we do to prevent someone from using our PHP pages to send spam? I don't know if it helps, but here's the last few actual lines we use to send the mail on that page in question: $msg .= "Problem: "; $msg .= "$problem "; $mailheaders = "From: (our domain) Support "; $mailheaders .= "Reply-To: $useremail "; mail("customerservice@(our domain).com", "Customer Service", $msg, $mailheaders);
View Replies !
Form Injection - Escape From Spammers?
One of my clients' accounts has been suspended two days before because of a huge email traffic. Reports say that nearly 28000 emails have been sent through that domain. My client is unable to send that much emails, so it must have been some sort of spam effort. The first thing I thought are the forms on the website. There is a contactus form and a login form for member entry. On the contactus form, I thought I had taken some precaution using: if(isset($_POST['postquote'])) { $name = $_POST['name']; $gender = $_POST['gender']; $email = $_POST['email']; $email = urldecode($email); if (eregi(" ",$email) || eregi(" ",$email)){ $admin_to = "admin@mydomain.com"; $admin_subject = "Spammer Injection"; $admin_message = "Sir, spammer injection has been a failure, script died as you ordered! Email Phrase is: $email"; $admin_from = "Spam Warrior Of My Domain"; mail($admin_to,$admin_subject,$admin_message,"From: $admin_from "); die("Why ?? :("); } $phone = $_POST['phone']; $fax = $_POST['fax']; $quote = $_POST['quote']; // code to send email } // contactus form ?> Obviously that was not enough. I protected the email field, seems that it may be possible that the spammers use the other fields to send email. So, I have to protect other fields as well. How can I do this? Is there no escape from these spammers?
View Replies !
Spammers Targetting My Enquiry Form
I have a simple enquiry form here: When you click submit, you are taken to a page with some php that just emails me the enqury. At the moment, it is being targetted by spammers so I am getting hundreds of rubbish enquiries per day. How can I stop this? Is there a way to make such a form less attractive to spammers?
View Replies !
Block Email Inject Spammers
if (ereg(":", $Name)) || (ereg(":", $From)) If I validate my mail() headers thus, will this stop spammers being able to abuse my mail form? If there is somebody who has a colon in their name or email address, I have yet to meet them.
View Replies !
Have Page Expire To Slow Spammers
I have a PHP & MySQL entry system we've been using for a few years. The entry page sends to the "refer a friend" page that processes the entry, the refer a friend page sends to the "thank you" page which processes the referrals by sending emails. This has worked fine in the past but I want to add a new feature so that when people get to the thank you page they can't just click the "back" button to revisit the refer page, enter new people to refer and then continue again....and again.... and again.... I want to make it more annoying for them to spam by having the refer page expire when they hit the thank you page. It's just a short slow-down but it will make my bosses happy.
View Replies !
Stoping Spammers Posting Junk Using IP Address!!!
I have a colomb which stores the users IP I use this code to insert data : <?php mysql_select_db("databse", $con); $IP=GetHostByName($REMOTE_ADDR); $Date = date("Y/m/d"); $tim = localtime(time(),true); $Time=($tim['tm_hour'].":".$tim['tm_min'].":".$tim['tm_sec']); $query="INSERT INTO ads (Email, Title, Date, Time, IP) VALUES ('$Email', '$Title', '$Date', '$Time', '$IP')"; print "Data was inserted successfully"; ?> How can I stop the same IP adding to databse unless minium 6 hours pass by what should i add.
View Replies !
Secure Mail Form (avoiding Spammers)
I want to create a simple web form in order to allow visitors to send me their comments via email. I created this code: $to = "mybox@mydomain.com"; $subject = "Comments from the web"; $body = "Comments: "; $body = $body . "----------------------- "; $body = $body . $email . ""; $body = $body . "----------------------- "; $body = $body . $name . ""; $body = $body . "----------------------- "; $body = $body . $text . ""; $headers = "From: $email"; mail($to,$subject,$body,$headers); '$email' is the email address of the visitor, '$name' is their name, and '$text' is the contents of the comments. But I found out that some spammers used this form to send spam. I didn't make any filter of the contents, and I was suggested they were using script injection within the form.
View Replies !
Displaying Priorty Records And Normal Records In The One Dataset.
I have a page which displays the records from the database and uses paging to display the records in groupes of 10 per page. I now want to be able to show results depending on the database field (display) in the database (can be set to either "full" or "limited"). If the record and the field display is equal to "full" i want to then display this record at the top of the record set and display all the fields. If the record is equal to "limited" i want to display different results and they must show after all the records which are equal to "full". I can't output two different recordsets as i use paging and only want to show 10 records per page. Code:
View Replies !
Problems With The Listing Of Records, Editing Of Records
I'm having problems with the listing of records, editing of records, and deleting of records. I'm not sure what I'm doing wrong. The listing script is calling the add entry script. So I add the record, the database is updated, and nothing else happens. I don't get a list of records from that table. When I did SQL programming off the mainframe, you did a simple select statement. I'm not sure why the PHP list script is calling the add entry script. Code:
View Replies !
DNS Records
Hey everyone, I'm trying to get a DNS record of an IP using PHP's checkdnsrr() and getmxrr(). I used echo checkdnsrr($REMOTE_ADDR); and echo getmxrr($REMOTE_ADDR); but I receive an error that the PHP build does not support it, but I am using PHP 4.0.5 and in the manual, it shows that PHP 3 and 4 supports the two commands. Any help?
View Replies !
Next N Records
how do I create a "next n records" interface? I want to initially output a specific number of rows, and have a next/previous scenario where the user can click on either and scroll forward or back through the records. I'm currently outputting all rows through mysql_fetch_array: Code:
View Replies !
HOW TO GET HOW MANY RECORDS YOU HAVE IN DB
I finally discover the way how to get what I need. Let's look to my code: ----------------------- CODE ------------------------> $res = @mysql_query("SELECT COUNT(*) AS ToT FROM table_name"); $dato = mysql_fetch_array($res); echo($dato[ToT]); ----------------------- CODE ------------------------> With this code you will get how much records do you have in DB. PS: Whan you think that everything is over and that you are at bottom of trying push harder to see what is under.
View Replies !
Old Records
Would anybody know where i have gone wrong in this script? $tm7781=date ("d:m:Y H:i:s", mktime (date("H"),date("i"),date("s"),date("m"),date("d")-1,date("Y"))); mysql_query("DELETE FROM tracker WHERE endsession < '$tm7781'");
View Replies !
3 Records Across
I have asked on this forum, but I need to know of a way to query a DB, and print the records across the screen 3 at a time. I always print downwards, but I am being asked to print 3 records, then break, 3 records then break, I am not sure how to do this.
View Replies !
Only 25 Records For Each ID
Is it possible to only collect 25 records for each ID? When I insert the 26'th record for that ID I want to get rid of the oldest record for that ID? I did it once in ASP and it looked like this: Code: strSQL = "SELECT * FROM list WHERE ID=1" rs.open strSQL, conn, 1 , 1 If rs.recordcount > 24 Then strSQL = "DELETE * FROM list WHERE Date IN(SELECT TOP 1 Date FROM list ORDER BY Date)" conn.Execute (strSQL) End If strSQL = "INSERT INTO list ( ID, Point, Name ) VALUES (" & _ "'" & sqllize(Request("player1ID")) & "', '" & sqllize(Request("player1Point")) & "', '" & _ sqllize(Request("Player1Name")) & "')" conn.Execute (strSQL) rs.Close Is this possible in PHP, and if yes, how?
View Replies !
Next Records In Db
i have, what i suspect, is a fairly basic task to perform, it's just i'm not sure how to approach it – client side or server-side? i load in an image (filename) from the db dynamically along with an image caption. my code is outlined below:  <!-- begin content -->  <div class="content">   <div class="gallery_image"><img src="images/gallery/music_sized/<?php echo $row_gallery_musicGetRecords['image']; ?>" alt="<?php echo $row_gallery_musicGetRecords['image_alt_text']; ?>" /></div>   <div class="caption">    <p><?php echo $row_gallery_musicGetRecords['caption']; ?></p>   </div>  </div>  <!-- end content --> my header code, accessing the db 'n what not is below: <?php require_once('Connections/emmadalzell.php'); ?> .......
View Replies !
Number Of Records
I want to find out how many records, but I am using LIMIT in mySQL so if set the limit to 20 and I have 56 records then it will display 20 instead of 56. I have been using: mysql_num_rows What should I be using?
View Replies !
What To Do If There Are No Records In The Database
I am pulling data from the database and displaying it using the code below: $db = mysql_connect("localhost", "root"); mysql_select_db("pyramid",$db); $result = mysql_query("SELECT * FROM table where area='Wales'",$db); while ($myrow = mysql_fetch_row($result)) { echo "blah blah"; } ?> What do I do if there are no records? At the moment it just doesn't display anything. How do I get it to display a message saying there are no records?
View Replies !
Updating Records
I am know to PHP i've been tring to do this **** for days now could someone PLEASE help me. Ok Im tring make an admin page where user can update multiple records at same time using checkboxes.Im using email as primary key. Here is the code **form page** <form action="update.php" method="post"> <input type="submit" name="submit" value="Select First 10 Names"> </form> **update.php** <?php if ($submit =="Select First 10 Names") { ?> <form method="post" action="<?php echo $PHP_SELF; ?>"> <hr size=3> <?php $query = mysql_query("select * from Names order by Last_Name limit 10"); while($row = mysql_fetch_array($query)) { $first_name= $row["First_Name"]; $middle_name = $row["Middle_Name"]; $last_name = $row["Last_Name"]; $email = $row["Email"]; $photo=$row["Photo"]; ?> <table width="100%" border="0" > <tr> <td align=right width=50%> <?php echo "First Name: <input type=text name="first_name" size="30" maxlength="40"value="$first_name" ><br> "; echo "Middle Name: <input type=text name="middle_name" size="30" maxlength="40" value="$middle_name"><br> "; echo "Last Name: <input type=text name="last_name" size="30" maxlength="40" value="$last_name"><br><br> "; echo "Email: <input type=text name="email" size="30" maxlength="40" value="$email" readonly><br><br> "; echo "Photo: <input type=text name="photo" size="30" maxlength="70" value="$photo"><br><br> "; echo "<input type="checkbox" name="email[]" value="$email"><b>Update?</b> "; ?> </td> <td align=right width=50%> <?php echo "$photo"; ?> </td> </tr> </table> <hr size=3><br> <?php } ?> <input type=submit name=submit value="Update Enteries"> <input type=reset> </form> <?php } if ($submit=="Update Enteries") { if (is_array($email)) { while (list($key,$value) = each($email)) { $query= mysql_query ("update Names set First_Name = '$first_name' Middle_Name= '$middle_name' Last_Name='$last_name' where Email='$value'"); } } } ?>
View Replies !
|
TRACKER
