Welcome to WebmasterWorld Guest from

Forum Moderators: open

Message Too Old, No Replies

form validation in frontpage (restricting values)?



6:42 pm on Feb 16, 2006 (gmt 0)

Inactive Member
Account Expired


Hi gang! I've combed the past archives and could not find an answer to my question. So, like many of you, I'm now getting commenting spam bots and I'd like to be able to simply and easily add a keyword filter using FrontPage (form submission gets rejected if a keyword is in a form field). So far, the only thing I'm able to use is the "Field must be:" and "And must be:" areas under Data value (Form Field Properties--> Validate... --> Data value). I just set it to "Not equal to" and enter in the "badword" under Value.

The problem with this is that there is only room for two, and, not only is it case sensitive, but if the submission does not match exactly what I put in the filter, it lets it slip through (e.g. filter of "href=" won't stop "<A HREF=http://www.domain.com>"). I'm looking for a "contains" or something similar, and also a way to extend my filters to more than just two.

The inpout field looks like this:

<!--webbot bot="Validation" s-display-name="Name" b-value-required="TRUE" i-maximum-length="50" s-validation-constraint="Not equal to" s-validation-value="phentermine" s-validation-constraint="Not equal to" s-validation-value="Phentermine online" --><input type="text" name="Name" size="20" maxlength="50">

It's not exactly the most ideal or productive solution, but adding more (s-validation-constraint="Not equal to" s-validation-value="phentermine") statements will probably do the trick as far as increasing the number of badword filters, but it still doesn't solve the case sensitive issue or the "exact match" issue. Help! :(

11:14 am on Feb 18, 2006 (gmt 0)

Preferred Member

10+ Year Member

joined:Sept 21, 2005
votes: 0

It is not possible to filter spam bots using FP validation. FrontPage validation is javascript which can only function from a web page. Spam bots bypass your form on your page completely and go straight to the processing script - which, in the case of FrontPage forms, is extremely insecure and incapable of being made secure.

If you want to secure your forms against spam bots you will need to find a third party script, either php or perl ... or asp if you are hosted on windoze server.


Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members