Results 1 to 2 of 2

Thread: Mail Function Spam Issues

Hybrid View

  1. #1
    Join Date
    Mar 2014

    Mail Function Spam Issues

    So, I'm using the mail(); function to send comments to my email address. I just made the site live about 4 days ago and yesterday I got what appears to be spam...

    Message 1 (Some Russian message about electric treadmills...)
    Phone: Technology
    E-Mail: robertsl@yandex.ru

    Купить беговые дорожки для дома и похудения. Выбрать механические... <br /> Электрические беговые дорожки для дома работают благодаря электромотору, поэтому их не нужно самостоятельно приводить в движение. <br /> Звоните 8 9152669903, консультации бесплатно.
    Message 2
    Phone: 123456
    E-Mail: ol@aol.com

    In this week's conversation keyed on online gambling simple, straightforward guy. casino online sverige http://kluhartem.com/ - online casino bonus casino online sverige casino online sverige Bob Kellie gambling $2, 603 150.
    It appears that they are legitimate messages from a visit to my site, but I just don't under stand how they found my site or why they would send it. Is it a person or some automated script doing it? would a captcha stop this?

  2. #2
    Join Date
    Mar 2007
    You can filter for spam and or email addresses.

    the russian one is easy, you just look for .ru in the email address, you can then still have those messages sent to you but your mail() routine could add [SPAM] to the subject line, your email client can then filter all messages with a subject line that contains [SPAM] to a separate folder so you can then later look at designing a filter for your web form to recognize Spam so the flow is truncated at the server.

    Your mail() function can parse the body for keywords like ...

    v.i.a.g.r.a and all its other permutations
    meds online

    etc., and do the same as previous, add [SPAM] to the subject line.


    Does your form have a captcha script? If not your form will be open to abuse.

    One way of finding contact forms is when google crawls the site, your contact form is found, you may want to have the contact page name changed or to require a further click to a form that issues a web form and your handler script checks to see if it issued a web form because SPAM can come from a PUSH method, most forms follow a standard format of


    Which could be

    <Email Address>

    some spam scripts will request the page, the format of the page is analysed for its fields and the names in the HTML to know what format the page is in to push a message.

    captcha will curb bots but the more sophisticated bots can mimic a human input, the flaw in captcha is in the audio, a bot can convert audio to words/letters/numbers if it has the capability to convert audio in to characters, the field validation can then be completed and spam gets through.

    Some devs may wonder why a spammer would go to such lengths, sometimes its like crackers, they do it because its a challenge to show just how clever they are and because they can.

    So the question is how far do you want to take this?
    --> JavaScript Frameworks like JQuery, Angular, Node <--
    ... and please remember to wrap code with forum BBCode tags:-

    [CODE]...[/CODE] [HTML]...[/HTML] [PHP]...[/PHP]

    If you can't think outside the box, you will be trapped forever with no escape...

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
HTML5 Development Center



X vBulletin 4.2.2 Debug Information

  • Page Generation 0.12175 seconds
  • Memory Usage 2,917KB
  • Queries Executed 13 (?)
More Information
Template Usage (30):
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_global_above_footer
  • (1)ad_global_below_navbar
  • (1)ad_global_header1
  • (1)ad_global_header2
  • (1)ad_navbar_below
  • (2)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)headinclude_bottom
  • (2)memberaction_dropdown
  • (1)navbar
  • (4)navbar_link
  • (1)navbar_moderation
  • (1)navbar_noticebit
  • (1)navbar_tabs
  • (2)option
  • (2)postbit
  • (2)postbit_onlinestatus
  • (2)postbit_wrapper
  • (1)showthread_list
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available (6):
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files (27):
  • ./showthread.php
  • ./global.php
  • ./includes/class_bootstrap.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/functions_navigation.php
  • ./includes/class_friendly_url.php
  • ./includes/class_hook.php
  • ./includes/class_bootstrap_framework.php
  • ./vb/vb.php
  • ./vb/phrase.php
  • ./includes/functions_facebook.php
  • ./includes/functions_calendar.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_notice.php
  • ./includes/functions_threadedmode.php
  • ./packages/vbattach/attach.php
  • ./vb/types.php
  • ./vb/cache.php
  • ./vb/cache/db.php
  • ./vb/cache/observer/db.php
  • ./vb/cache/observer.php 

Hooks Called (71):
  • init_startup
  • friendlyurl_resolve_class
  • init_startup_session_setup_start
  • database_pre_fetch_array
  • database_post_fetch_array
  • init_startup_session_setup_complete
  • global_bootstrap_init_start
  • global_bootstrap_init_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • load_show_variables
  • load_forum_show_variables
  • global_state_check
  • global_bootstrap_complete
  • global_start
  • style_fetch
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • strip_bbcode
  • friendlyurl_clean_fragment
  • friendlyurl_geturl
  • forumjump
  • cache_templates
  • cache_templates_process
  • template_register_var
  • template_render_output
  • fetch_template_start
  • fetch_template_complete
  • parse_templates
  • fetch_musername
  • notices_check_start
  • notices_noticebit
  • process_templates_complete
  • friendlyurl_redirect_canonical
  • showthread_post_start
  • showthread_query_postids_threaded
  • showthread_threaded_construct_link
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • memberaction_dropdown
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • build_navigation_data
  • build_navigation_array
  • check_navigation_permission
  • process_navigation_links_start
  • process_navigation_links_complete
  • set_navigation_menu_element
  • build_navigation_menudata
  • build_navigation_listdata
  • build_navigation_list
  • set_navigation_tab_main
  • set_navigation_tab_fallback
  • navigation_tab_complete
  • fb_like_button
  • showthread_complete
  • page_templates