Page 1 of 1
Hidding PHP scripts?
Posted: Sun May 08, 2011 3:59 am
by DoctorT
Hi!
I am using a formmail php script that includes my real email address. The script is stored in the public_html folder. Can "bots" harvest the address?
FYI, The HTML form that calls the script uses an alias email address instead of the real address.
Thank you.
Dr. T.
Re: Hidding PHP scripts?
Posted: Sun May 08, 2011 1:55 pm
by califdon
Only if they know or can guess the filename of the script.
Re: Hidding PHP scripts?
Posted: Sun May 08, 2011 4:46 pm
by DoctorT
Califdon,
Thank you for your reply.
Unfortunately, it's a third-party script (Tectite's) and the filename is FormMail.php.
Dr. T.
Re: Hidding PHP scripts?
Posted: Sun May 08, 2011 7:37 pm
by califdon
Personally, I wouldn't worry about it. If there were thousands of email addresses that somebody might want to harvest (or if it were your bank account PIN number or something), it might be worth changing the filename to something nonstandard and changing the script that calls it, but the risk that somebody will really go out of their way to harvest one email address is approaching the vanishing point. Those guys deal in millions of addresses, they don't waste their time on getting one.
Re: Hidding PHP scripts?
Posted: Tue May 10, 2011 10:05 am
by flying_circus
califdon wrote:Only if they know or can guess the filename of the script.
Hey Califdon,
Can you clarify what you're seeing that I'm not? If the email address is in a PHP file, how can a bot harvest it?