if (strstr($subject, \r) || strstr($subject, \n)) die(spammer);
if (strstr($from, \r) || strstr($from, \n)) die(spammer);
That right there will kill off most of your header injection attacks,
assuming you have already got $from = $_REQUEST['from'] or something
similar.
The main thing is to make
: [PHP] How to not be abused by mail form injectors?
Hi,
Are there any general protection methods to minimize the risk of robots
using your mailing forms as spam senders?
/Peter
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
On 12/6/06, Peter Lauri [EMAIL PROTECTED] wrote:
Hi,
Are there any general protection methods to minimize the risk of robots
using your mailing forms as spam senders?
Yes, validate and escape data properly, the most important thing you
want to protect is anything that goes into the
On 12/6/06, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
I will be out of the office until Monday 11th December. If you have any urgent
enquiries, please direct them to Craig Mead on 1300 651 593 or [EMAIL PROTECTED]
how stupid people are, i hope mr fielding never needs help from me
cause he
On 07/12/06, Curt Zirzow [EMAIL PROTECTED] wrote:
On 12/6/06, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
I will be out of the office until Monday 11th December. If you have any
urgent enquiries, please direct them to Craig Mead on 1300 651 593 or [EMAIL
PROTECTED]
how stupid people are, i
and what's the issue/problem with an out of office reply?
-Original Message-
From: Curt Zirzow [mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 06, 2006 5:12 PM
To: [EMAIL PROTECTED]
Cc: php-general@lists.php.net
Subject: Re: [PHP] How to not be abused by mail form injectors?
On 12
: php-general@lists.php.net
Subject: Re: [PHP] How to not be abused by mail form injectors?
On 12/6/06, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
I will be out of the office until Monday 11th December. If you have any
urgent enquiries, please direct them to Craig Mead on 1300 651 593
7 matches
Mail list logo