Page 2 of 2
Posted: Thu Sep 15, 2005 12:26 pm
by sheila
This code
Code: Select all
$test = " ";
echo "test = [$test]\n";
$test = trim($test);
echo "test = [$test]\n";
produces this output
Posted: Thu Sep 15, 2005 12:27 pm
by timvw
You need to strip \r and \n that are posted.. Otherwise, it's pretty easy to fake some headers

And you are wide open for spammers

Posted: Fri Sep 16, 2005 3:03 am
by hairyjim
I tested the form and put in spaces for everything other than email address and the form still threw the correct errors.
Posted: Fri Sep 16, 2005 7:02 am
by sheila
What does _getValue() do? Is it testing isset($message)?
As far as your original question about get 50+ messages a day you should post isEmailAddress and let us have a look. If it is properly testing for an invalid email address then you are probably not being used to send spam. There is nothing much you can do to stop repeated testing. You could look for a pattern in the tests, like $email always has the same address or you could rename the script and hope it takes them a while to find it again.