Welcome to WebmasterWorld Guest from 54.144.80.75

Forum Moderators: phranque

Message Too Old, No Replies

Image varification script issue

Bot still submitting sites.

     
7:13 pm on Nov 20, 2006 (gmt 0)

Junior Member

10+ Year Member

joined:Oct 1, 2004
posts:57
votes: 0


Hi,

i have a contact form on a site that uses captcha image verification script to stop automated submissions & spammers. But for reason i'm still get masses of submissions with the bot using the word <Default> to submit!

Can anybody advsie to why this is happerning and what would e the best prevention to stop these automaed bot- submitting info like a million times a day!

please advise

8:26 pm on Nov 21, 2006 (gmt 0)

Senior Member

WebmasterWorld Senior Member rocknbil is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Nov 28, 2004
posts:7999
votes: 0


I'll take a stab: I'm guessing that your captchka program was free or purchased, and there is a configuration setting that allows <Default> to override the verification input code? Check that out first.

I have not delved into captchkas because most of the sites I work with have many MANY forms and it presents too many extra steps for the end user, to many places to lose valuable leads. I mention this because you should use the same methods this forces me into: screen your input data.

Invariably you will find a pattern in this spam input that you can block, that is, a lot of them now are pharm links: [ url=whatever] and <url=whatever>. So unless you have a really good reason for allowing your users to enter html and forum style links, you can kill this data on input:

if ($yourdata =~ /$spamlink/) { &exit_without_satisfaction; }

That's perl, re-code in the language of your choice. Admittedly this is a short term solution, the real answer lies in logging all data input from your forms, looking for patterns, and at worst start banning IP's.

8:55 pm on Nov 21, 2006 (gmt 0)

Junior Member

10+ Year Member

joined:Oct 1, 2004
posts:57
votes: 0


Appreicate ur reply. I think i will go for a php form instead of using Javascript i have a feeling this is the reason why bots are able to pass the image script.

Thanks

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members