Dear All, Lately, one of the repository I am handling received massive emails from its feedback form. I wonder how we can mitigate this? It seems that the message was sent even though some of the values in the field did not pass validation, like in the email address field.
Although I assumed that DSpace is safe from XSS attacks, it is very annoying when your inbox is bombarded by garbage messages. This particular repository is running version 8.0. Is it possible to apply reCaptcha in the feedback form? I enabled captcha, but this feature was used only for self-registration. [image: spam1.PNG] [image: spam2.PNG] [image: spam3.PNG] Thanks in advance! euler -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/70f6aaa1-33ff-4961-af19-d1ffd85a41aen%40googlegroups.com.
