Hi friends,
I have created a feedback form. After submitting the form, next page (feedback.asp) writes all the form information into a text file(new text file).
And these feedbacks can be viewed only by the administrator (me). So its simple way of saving form information onto server.

But the problem occurs after a few weeks. When i open my inbox, it shows large numbers of spam type feedbacks. I cann't understand how it occurs, although i have validated form fields by javascript.
The code I m using to create text fles in asp is :

<%
dim open, fso, path, path1
dim email
email=Request.form("email")

path1= Server.MapPath("enquiry/" & email & ".txt")
Set fso=Server.CreateObject("Scripting.FileSystemObject")
Set open = fso.CreateTextFile(path1, True)

open.WriteLine Request.form("name")
open.WriteLine (email)
open.WriteLine Request.form("phone")
open.WriteLine Request.form("subject")
open.WriteLine Request.form("comment")

open.Close
Set open = Nothing
Set fso = Nothing


%>



What should I do now, how do I prevent from this type of spam. Please help...
:confused: :confused: :confused:

Hi,

What kind of spam are you getting? (Are there any similarities in the content for example?)

Also, I would recommend backing up your spam checking with .asp as well as JavaScript (as all they have to get around your JavaScript checking is turn it off)

Kessa

Hi,

What kind of spam are you getting? (Are there any similarities in the content for example?)

Also, I would recommend backing up your spam checking with .asp as well as JavaScript (as all they have to get around your JavaScript checking is turn it off)

Kessa
Yes, it seems that the form has been filled properly, before submitting, because all the fields shows some text matter(relating to porn sites).

on the server side, as kessa said, you'll need to do some filtering to disallow certain words and phrases (and just think how much fun making the list will be).

also, should check the referer of the page --if the post didn't come from your form page, reject it.