Spam proof form?
I'm using DW to build my forms and formmail.pl to process
them. The bots have taken over! Does anyone know of a way to build
a form that is spam proof?
Google "honeypot".
Murray --- ICQ 71997575
Adobe Community Expert
(If you *MUST* email me, don't LAUGH when you do so!)
==================
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
==================
"kim" <[email protected]> wrote in message
news:g15n6c$be$[email protected]..
>
http://geekministry.com/blog_article.php?id=93
>
> Katsuey skrev:
>>> I'm using DW to build my forms and formmail.pl
to process them. The bots
>>> have taken over! Does anyone know of a way to
build a form that is spam
>>> proof?
>>
>> There's a couple depending on what "flavor" you
need, but
>> Try
http://www.Recaptcha.com
>
> --
> Kim
> ---------------------------
>
http://www.geekministry.com
>
Similar Messages
-
Increase in SPAM web form submissions
Hi,
I'm noticing a trend of increased SPAM web form submissions across most of our BC sites. This has got particularly bad in the past week or so. All SPAM submissions follow a very similar theme. The text is complete 'gobbledygook' basically! The forms being used don't have any description fields where long descriptions or links can be entered so I struggle to see why this is happening.
What I want to know is:
- is this something other BC partners are noticing, particularly recently
- are your SPAM submissions similar to what I have shown below
- what can we do to reduce these other than using CAPTCHA on all forms?
- we exclusively use BC but I would be interested to know if the BC platform is particularly bad for SPAM submissions or is this something all sites are suffering from nowadays?
- any other light you could shed on this issue or advice you could impart would be much appreciated
Real submission example:
First name: tjlavseb
Surname: tjlavseb
Email: [email protected]
Date: hgnhQMmssGynJLb
Time: 11am
House Name: LHkJxazHGUYClEZJQd
Street address: nvOaQumEsbBGsA
Postcode: lJEODtxlXjHi there,
We are experiencing a high volume of spam since changing our web forms on our newly redesigned site. The objective of the site design was to make it quick and easy for clients to get a quick quote thus asking for only a few fields to be completed. Adding a captcha form would actually detract from the purpose of the form.
We have implemented the honey pot field which seems to have made little to no difference in volume (this seems to be the case for this fix across many other users of BC). The problem is with our spam is quite unusual whereby we are not getting any specific info from them really making it hard to detect if it is spam or real. See example;
Have you seen this type before?
Your Name
David
Email Address
[email protected]
Case Number
4257685
Company
casterick
Date
18-Apr-2013
Location
Victoria
Type
Meeting
Your Requirements -
Need Help With Spam Proof Email Form
I am making a new web site using iWeb, .Mac, personal domain and forwarding from my commercial host. I want to make an email contact form that spammers cannot hijack and use to deluge use with spam. I have another web site that was created with Dreamweaver that contains a javascript form that I think that I can modify and use as an html snippet in iWeb.
Will this work in iWeb (sending a form response to non-.mac email address? The form I am using relies on two small text documents that are stored in the templates folder of my site. The following code refers to the one line of text in the confige document.
<input type=hidden name="config" value="templates/confige.txt">
<input type=hidden name="success_url" value="http://myothersite.com">
<input type=hidden name="email" value="[email protected]">
Text of confige: mail_template=templates/emailTemplate.txt
The confige document refers to the following text which are the field names and order.
Name: <first>
Store Name: <store>
Location: <city>
E-mail: <custemail>
Platform: <platform>
Comments:<storeDescription>
How do I deal with the text documents that are stored in a separate folder in my Dreamweaver site, and can I eliminate these documents and use just the html form in iWeb?You might want to check out wufoo.com - very customizable
-
Does anyone know what the technique is to stopping spam when
producing:
1/ form to mail contact pages
2/ mailto links?
is there a technique? other than that of using image random
character way - ie : https://www.fasthosts.co.uk/login/
thanksI take this one step further. I use TWO fields hidden by CSS:
1. one field is called 'address3' and is empty. I check to
see if it's
been filled in and if it has, the form goes into the bit
bucket.
2. another field is called 'moreinfo' and contains "More Info
Here" as a
value. If that field does NOT contain "More Info Here" on
submit, the form
goes into the bit bucket.
It hasn't failed me yet....
Murray --- ICQ 71997575
Adobe Community Expert
(If you *MUST* email me, don't LAUGH when you do so!)
==================
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
==================
"-m-@v@-m-" <[email protected]> wrote in message
news:frm5rr$sab$[email protected]..
> Only if you want to exclude some people from being able
to use the form.
>
> Have a textfield (hidden by CSS) that is named Name. In
your server side
> code, if that field is not empty then ignore it.
>
> Also, checking for HTML code in the e-mail and if has
it, ignore it.
>
> I've encrypted the e-mail addresses in the mailto links
to prevent e-mail
> harvesters from getting the e-mail addresses to begin
with.
>
> "tweaked_eye" <[email protected]> wrote in
message
> news:frm51b$raq$[email protected]..
>> using flash seems to be the best way for me.
>
> -
Code to stop html SPAM in forms
Hi,
I am getting spammed to death through my forms. I am assuming it is a bot. I am on ASP and plan to switch over to PHP so I can do Captcha if I cannot find the solution I am looking for.
How do I disable my submit button if someone enters a web address? I know they can break it up and do http : // ispam dot com.
If someone has some suggestions I would appreciate it.
Thanks,
RichardRicky, do us a favor and avoid speculation by posting a link to your email form and the contents of your form processing script.
As mentioned earlier, no one is looking over your shoulder or reading your mind. You managed to provide a link to your page but unfortunately you epically failed to provide the contents of your form processing script. Get it together, Little Ricky. I never said you didn't know what a div is or a css file. I said if you're having trouble differenciating between those and a form processing script then you have a lot to learn. If you wish to continue alluding from providing necessary information that is asked for then do a search for asp if statement that I mentioned earlier. There's plenty of information on the internets that will show you how to create an if statement in asp.
best,
Shocker -
Looking for a good spam-proof guestbook!
Hello.
Anyone know of a good guest book component that uses flash
and/or cold fusion. The only good ones I can find are with php. :(
I don't want to use php.
I bought a decent one last year from cfmagic but the evil
spam people destroyed my guest book with ugly posts.
I will pay money for a good one. It does not have to be free.
Thanks.
PedroCF and PHP should "mix" fine since they're different. Many
hosts offer CF
and PHP and even ASP(x) so as long as your server has PHP
installed there
should be no problem. I guess if your host doesn't offer PHP
there's not
much you can do. You just said you didn't want to use PHP,
not that you
couldn't use it. In that case, I'm not sure... but good luck.
Dave -
Head Developer
http://www.blurredistinction.com
Adobe Community Expert
http://www.adobe.com/communities/experts/ -
Is the Mail Me Button Spam-proof
Just wondering if the 'Mail Me' button in iLife '09 is safe from email harvesters? Or am I better with a contact form? I'm publishing to Mobile Me.
No. You can use one of the methods on this page to make them invisible to web crawlers: 2 Ways to Encode an Email Address.
There are other ways also. I believe one was posted to the iWeb forum a while ago. Do a search for "encode email" or similar in the iWeb forums.
OT -
Best way to prevent automated/spam form filling? ASP/VB
Hi,
I wanted to ask what your advice would be with regard the
best way of
preventing the automated submission of forms on a web site?
We have tried using form validation, but it seems that the
spammers have
already sussed this and are submitting valid data, albeit it
is usually
something along the lines of:
Name: wuehtasdgadfl
Title: ahadlf
Address: audhliuhwerlj
City: akjsdhiehrlj
Email: [email protected]
What is the best way to stop this happening? Or at least
reduce it!
Much appreciated.
Regards
Nath.> When you say "Test the form content server side..." is
that what the built
> in Dreamweaver behaviour (validate form) does?
No. That's client-side validation using javascript. It's
vulnerable in
that disabling js in the browser will still allow you to
submit the form,
but will not do any validation. The automated bots that spam
your forms
don't do the validation when it's client side.
By server-side validation, I mean to submit the form to an
ASP, PHP, CF,
CGI, etc., script that actually examines the contents of each
field and
decides whether to send the email.
> With the sum field, do you mean that you'd ask the user
to enter a number?
Yes. See how I have done it here -
http://great-web-sights.com/g_contactus.asp
> If so, what happens when the spammers suss that out and
start submitting
> the correct number?
If the 'spammer' is a human reading the instructions and
submitting the
form, you can't do anything about it. I think that's not the
case with
these things though.
Murray --- ICQ 71997575
Adobe Community Expert
(If you *MUST* email me, don't LAUGH when you do so!)
==================
http://www.dreamweavermx-templates.com
- Template Triage!
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
http://www.macromedia.com/support/search/
- Macromedia (MM) Technotes
==================
"Nathon Jones" <[email protected]> wrote in
message
news:[email protected]...
> Hi Murray,
>
> When you say "Test the form content server side..." is
that what the built
> in Dreamweaver behaviour (validate form) does?
> If not, would you have a link to a tutorial on how to do
that (for
> ASP/VB)?
>
> With the sum field, do you mean that you'd ask the user
to enter a number?
> If so, what happens when the spammers suss that out and
start submitting
> the correct number?
>
> Much appreciated
> Regards
> Nath.
>
> "Murray *ACE*" <[email protected]>
wrote in message
> news:[email protected]...
>> Test the form content server side and always have a
field like this -
>>
>> Please enter the sum of 3 and five minus one:
>>
>> If that field doesn't contain "7", don't send the
email....
>>
>> --
>> Murray --- ICQ 71997575
>> Adobe Community Expert
>> (If you *MUST* email me, don't LAUGH when you do
so!)
>> ==================
>>
http://www.dreamweavermx-templates.com
- Template Triage!
>>
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
>>
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
>>
http://www.macromedia.com/support/search/
- Macromedia (MM) Technotes
>> ==================
>>
>>
>> "Nathon Jones" <[email protected]>
wrote in message
>> news:[email protected]...
>>> Hi,
>>>
>>> I wanted to ask what your advice would be with
regard the best way of
>>> preventing the automated submission of forms on
a web site?
>>>
>>> We have tried using form validation, but it
seems that the spammers have
>>> already sussed this and are submitting valid
data, albeit it is usually
>>> something along the lines of:
>>>
>>> Name: wuehtasdgadfl
>>> Title: ahadlf
>>> Address: audhliuhwerlj
>>> City: akjsdhiehrlj
>>> Email: [email protected]
>>>
>>> What is the best way to stop this happening? Or
at least reduce it!
>>>
>>> Much appreciated.
>>> Regards
>>> Nath.
>>>
>>
>>
>
> -
Is it possible to create a Master Form?
Hello... i am using Acrobat Pro 8.6. I was wondering if it might be possible to create a master form. I am using a form to receive artwork approval from my customers. My question is if I can use my proof form to create a form and use that form every single time. Only issue is I have to chante my proof form with the customers information and add their ad on to the form. All the areas that need the form fields will not change so I wasn't sure if its possible to just save all the field forms so that I can use it every time I open a new proof? Is this possible? If not, does anyone have a good idea on how to accomplish this without having to create a new form for every single customer we have, its a lot?
Thanks,
JaymeThanks for responding... when you copy the form, and I open up a new document and paste the form fields right into my new document? Is that what you mean, this may work. My proof sheet is created in Illustrator and I bring that into Acrobat to create the form. The form fields will not change, but the Illustrator file will always change. I just don't want to have to create a form every time, it takes a little bit of time. LOL
-
How do i get my registration form to post with MD5
Hi
I have a registration form which posts to my, mysql database via this code:
<?php
define('DB_NAME','');
define('DB_USER','');
define('DB_PASSWORD','');
define('DB_HOST','');
define('DB_TABLE','user00');
$link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_TABLE);
if (!$link){
die ('Could not connect: ' . mysql_error());
$db_selected = mysql_select_db(DB_NAME, $link);
if (!$db_selected) {
die('can\'t use' . DB_NAME . ': ' . mysql_error());
$value1 = $_POST['Name'];
$value2 = $_POST['EmailAddress'];
$value3 = $_POST['Username'];
$value4 = $_POST['Password'];
$sql = "INSERT INTO user00 (Name, EmailAddress, Username, Password) VALUES ('$value1', '$value2', '$value3', '$value4')";
echo 'connected successfully';
if (!mysql_query($sql)){
die('Error: ' . mysql_error());
mysql_close();
?>
The code works fine but i have just noticed that I have missed out the MD5 encryption that I want the password format to be in within the database.
Any help would be appreaciated.AFAIK GoDaddy scripts do not provide support for anti-spam measures. I'm pretty sure you would need to use a custom or 3rd party script.
Or is there a better way to protect my form from spam bots?
Yes. IMO Captchas are not user friendly and should be used only as a last resort.
The hidden Field Trick - Feeding an automated bot a field hidden with CSS. If it contains anything the message is deleted or flagged as spam.
Form Timer - If the form is submitted too quickly (automated submission), it is deleted or marked as spam.
See Formailer.php from DB Masters
http://www.dbmasters.net/node/18
Nancy O.
Alt-Web Design & Publishing
Web | Graphics | Print | Media Specialists
http://alt-web.com/
http://twitter.com/altweb -
I hope I'm not hijacking the thread too much, but in the trend of dealing with spam, it would also be nice if AUR was more spam-proof.
Right now google crawls all the PKGBUILDS (claiming ~19.500 hits) and gives spambots a whole bunch of free e-mail addys from the "Contributor: " and "Maintainer: " lines.
I'd rather not start obfuscating my email address in PKGBUILDS I post, because it feels like too harsh of a countermeasure. However, perhaps AUR could mangle email addresses when it gives webaccess to a PKGBUILD?iphitus wrote:
citral wrote:
I hope I'm not hijacking the thread too much, but in the trend of dealing with spam, it would also be nice if AUR was more spam-proof.
Right now google crawls all the PKGBUILDS (claiming ~19.500 hits) and gives spambots a whole bunch of free e-mail addys from the "Contributor: " and "Maintainer: " lines.
I'd rather not start obfuscating my email address in PKGBUILDS I post, because it feels like too harsh of a countermeasure. However, perhaps AUR could mangle email addresses when it gives webaccess to a PKGBUILD?
read the thread buddy we're talking about wiki spam not email spam.
Sounds to me like this issue should be taken care of as well, though. Might be interesting to start a separate thread. -
Our BC site uses Captcha, recently spam has jumped up??
20+ spam Web form submissions are coming in daily now. We use Captcha, but it appears this is no longer an assurance of spam not getting through? Help please.
Hey there,
If you can could you please make a ticket to the BC team, link the site, the web page with form and maybe some examples of the spam. They will need this information to help them.
With popular sites and Amazon infustructure your just open to this, Captcha can be bypassed but also bots send the image to serives that manually type these out and send back the answer via API type services so they can bypass this.
Not much you can do, but if you send that information across to BC they can have a look for you.
How is your javascript, you know jQuery? I can advise on a sort of sollution that is not captcha that could help here for you. -
Can software updates be shared on other computers?
I thought I read somewhere that Software Updates could be downloaded on one computer and then shared on another. We have 3 Macs in the house and the software updates are chewing through my allocated data, at least it is a part of the problem I believe.
Is there a link to the instructions to get ALL software updates on one and then just share them on the other two computers, this would greatly reduce the amount of data being used.
If so, could someone let me know the link and also how to disable the auto update on all but one computer so that we don't have this problem?
If someone knows, I would greatly appreciate their help. Thanks.I am just not sure how to stop the computers automatically updating
On the opening screen of:
System Preferences > Software Update > Scheduled Check pane
uncheck "Check for Updates" | Weekly
now you can check for and install updates manually on your own schedule.
how to choose the "Download Only" mode
On the Update menu, the "Download only" menu item will be present, but will be grayed out until updates are actually available. Selecting "Download only" will download (but not install) the updates with checkmarks from the list. In 10.4 and earlier, these are left in the "Packages" folder inside the Library folder. In 10.5 and later, they are left in the "Downloads" folder.
\[To actually install once downloaded, you may either open all the packages in the Finder (which launches Installer) or choose "Install now" from the same menu.]
Once they have been downloaded, you are free to copy them around to your other computers. You can use Zip disks if you prefer.
If you have all these computers connected to the Internet through a Router, you already have all the cabling in place for File Sharing. The software for File Sharing is already in place in all your Macs. All you need to do is enable Personal File Sharing in:
System Preferences > Sharing
and use the Finder's:
Go > Connect to Server
Log in with a username and password that is valid on the computer that is holding the files to be shared. If your access is too limited, you can either move the files to be shared to the Public folder, or log in with an administrator's username and password for broader access.
As Niel has pointed out, if you have a Mac OS X Server on your network, a much more elegant mechanism is available. The Server automatically checks and downloads, and stores the packages in a tamper-proof form on the Server. Each Mac then asks the local Server for any updates, and they are supplied automatically without a new Internet download.
Edited by: Grant Bennet-Alder |||| -
How to open .pdf in Illustrator, and not the pdf compatible half of file.
We first get a digital proof form printers as .pdf. Sometiems they save them with PDF compatible on. This makes my job harder because will get ilustrator asking for all the links when opening the .pdf.
What we do is open the .pdf form the printere, adn paste this on topof our orignal .ai file. Thi sis to proof what theyt changed. Adding in theri product numbers, adn updating the UPCS is about all we want to see. What we look for is shifting type, or missing elelements.
Mas OS 10.8.4, AI CS5Sorry for posting figured this out.
-
XPRA_EXECUTION error in SAPKB70014: CALL_FUNCTION_NOT_FOUND
Hi,
Could anyone give me a hint, please?
Now I'm apllying support packages to ERP 600.
In the XPRA_EXECUTION process of SAPKB70014, an error happens: CALL_FUNCTION_NOT_FOUND.
The current OCS Queue consists of:
001: SAPKIPYM01
002: SAPKIPYM02
003: SAPKIPYM03
004: SAPKIPYM04
005: SAPKB70014
006: SAPKA70014
007: SAPKW70016
008: SAPK-60012INFINBASIS
009: SAPKIPYM05
010: SAPKB70015
011: SAPKA70015
012: SAPKW70017
013: SAPK-60013INFINBASIS
014: SAPKIPYM06
015: SAPKB70016
016: SAPKA70016
017: SAPKW70018
018: SAPK-60014INFINBASIS
Action log:
Import phase 'XPRA_EXECUTION' (2009/12/06, 20:31:13)
Error during executing the tp command 'tp XPA ALL R1S ...'
tp return code: '0012' , tp message: 'A tool used by tp aborted' , tp output:
This is tp version 372.04.40 (release 700, unicode enabled)
standard output from tp and from tools called by tp:
Details of the error situation can also be found in the import logs
Interrupt the import due to an error situation (2009/12/06, 20:32:19)
Display detailed informations concerning the error in phase 'XPRA_EXECUTION'
Abort the import due to an error situation (2009/12/06, 20:42:22)
Import log: SAPKB70014 -> Method Execution
Date Time Message
2009/12/06 20:31:14 Job started
2009/12/06 20:31:14 Step 001 started (program RDDEXECL, variant , user ID DDIC)
2009/12/06 20:31:14 All DB buffers of application server ecc60 were synchronized
2009/12/06 20:31:14 ABAP/4 processor: CALL_FUNCTION_NOT_FOUND
2009/12/06 20:31:14 Job cancelled
regards,
KatsumiHi, Sunny
As you say, not so many SP should be applied in a time.
I checked these notes.
1101487 - Import of NetWeaver 2004S SP10 fails in XPRA execution phase
1162379 - After Support Package imp: Syntax errors due to ENQUEUE FMs
1381257 - Runtime error CX_SY_DYN_CALL_ILLEGAL_FUNC in transport
However, I did SPAM-update form 700/034 to 700/37 and retried.
The same error did'nt happen somehow...
regards,
Katsumi
Maybe you are looking for
-
Right way to get Mobile's TIME ?? problem...
Hi, I need to display the mobiles system time in my application. I'm getting the time using System.currentTimeMillis() and then using it in the Calendar class to get individual values of hours, minutes, secs, etc... But whats happening is the time I'
-
Hi Experts, Could you please tell me, how to create new OSS Id, license and developer key for PI 7.0 with ECC 6.0 installation? Currently we don't have BASIS ppl for my project, so please help us out. Regards Sara
-
Access to Yellow Pages service from IP phone
Hi, Does anyone know of a Yellow Pages service that can be accessed from the XML browser on a 7941/7961 IP phone. I have a customer that wants to be able to find taxis, pizzas etc. from their phones. Any advice on how to do this is most welcome. I am
-
HT5577 PROBLEM WITH ID VERIFICATION
HOW CAN I DOWBLOAD WHATSAPP ON MI APPLE PHONE? MY APPLEW SAYS THAT APPLE ID is not verified what should i do coz i received message saying that it had be verified?
-
Mailing 2000+ email addresses
Hi i'm about to do a huge mail-out (2000+) for a client and was wondering if the default settings in the mail server will allow this or will it bounce back, they plan to send via my SMTP, as their current ISP apparently has set a limit on their SMTP