On Mon, August 7, 2006 2:37 am, David Dorward wrote: > Richard Lynch wrote: > >> <?php
switch($_REQUEST['email']){ case '[EMAIL PROTECTED]': case '[EMAIL PROTECTED]': //Do nothing. break; default: die("Hack attempt."); break; } >> if (isset($_REQUEST['email'])){ >> $success = mail($_REQUEST['action'], 'un/subscribe', >> 'un/subscribe', "From: $_REQUEST[email]\r\nReply-to: >> $_REQUEST[email]"); >> if ($success) echo "Status Change Sent"; >> else echo "Unable to send Status Change"; >> } >> ?> > > What if someone submitted: > > action = [EMAIL PROTECTED] > > email = [EMAIL PROTECTED] long winded evil spam message here > > ? -- Like Music? http://l-i-e.com/artists.htm -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php