"They" are the elected governments in multiple democratic countries.Charles256 wrote:they're taking away my right to ask for someone to hack me?:-D It should be my choice! that and i use the word communism whenever I am frustrated..
They aren't taking away your right to ask for someone to hack you, they are making the act of attacking computers ACROSS networks illegal. If you invited me to your house, and I could hook up my laptop to your LAN, which was disconnected from the internet, and told me I could hack your machine, then yes - you have that right.
You never had the right to volunteer the networks of companies, individuals, and other sovereign nations to your whims based on a weakly-authenticated forum post!
Lets get a little less sensational about our reaction to people trying to avoid prison (or simply doing the wrong thing), shall we?
We're simply trying to help people out, and not incite them to break the law. I'd say thats a far cry from communism, and much closer to reasonable.
Now, as to help..
Your email regex is not RFC compliant. Here is a GPL'd (free/opensource!) function that does validation that is based on the definitive regex for email compliance.
You mix get and post in your form, it's generally a better idea to make the get parameters into hidden fields in the post form. (That can be a matter of preference).
You are having users submit passwords in cleartext, which means they can be sniffed. Use a javascript md5, sha1, or better, sha256 implementation to hash the passwords before transmission.
As Jcart mentioned, you are also trusting user input (bad), also not escaping sufficiently, and other issues.
Hope that helps..