are these email addresses visible to bots in this code?

Forum Moderators: coopster

Message Too Old, No Replies

are these email addresses visible to bots in this code?

leafgreen

8:21 pm on Jan 15, 2008 (gmt 0)

Are these email addresses visible to email address harvesters in this code? The following is the first seven lines in one of the .php files of my website.


<?php
include_once("includes/db_connect.php");
include_once("includes/mk_common.php");
//include_once("includes/phpmailer/class.phpmailer.php");//$contactEmail = 'zzz@z.com';
$contactEmail = 'yyy@yyy.com';

My project manager says:

Since all php files are processed by server when opened, spam bots will not be able to access the php source - instead they will see only the HTML code which is generated by php script. For example, you can view the HTML source of this .php file - it doesn't contain any e-mail addresses.

Is he correct? If not, in this code is the following compatible


&#121;&#x79;&#121;&#64;&#x79;&#121;&#x79;&#46;&#x63;&#111;&#x6D;

to use in place of yyy@yyy.com?

surrealillusions

8:40 pm on Jan 15, 2008 (gmt 0)

If the email address is in the html code that is out putted by the browser, then surely the bots will be able to read it?

Do the email address's appear in the source code?

leafgreen

8:53 pm on Jan 15, 2008 (gmt 0)

If the email address is in the html code that is out putted by the browser, then surely the bots will be able to read it? Do the email address's appear in the source code?

sorry I wasn't clear: The code I quoted above is in the .php file. The email addresses are not visible nor outputted by the browser. The email address are only visible in the .php file source code quoted above.

surrealillusions

9:31 pm on Jan 15, 2008 (gmt 0)

ahh..they should be ok then.

Thats how email forms work, the email is in the file that process's the form but is never outputted by the browser, and so un-readable by bots.

leafgreen

9:40 pm on Jan 15, 2008 (gmt 0)

Great Thank you for the confirmation!

PHP_Chimp

10:14 pm on Jan 15, 2008 (gmt 0)

If you are ever unsure just run the page through a browser and view source.
As sometimes we dont mean to put things in html, but they slip through (an unintentional echo, or putting them in hidden form fields,that are not so hidden when you look at the source). So it is always worth checking.

leafgreen

10:38 pm on Jan 15, 2008 (gmt 0)

php_chimp, after I got finished chuckling at your nick, I just wanted to Thank you for the simple heads-up. ;)

I guess I could also do a site search with google