Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How can i take care of anti spam with subscription pages

Status
Not open for further replies.
TheCount

TheCount

Programmer
Oct 24, 2001
64
0
0
NL
Can someone tell me or give me an example how to preserve spamming my database.
I want to make an possibility to Subribe to an newsletter on my website.
The procedure is now:
You have to fill in your name and email adres on a form.
When they submit, they get an email message to confirm their subscription via an link. The subscribtion confirmation is going like:
nws_register_confirm.asp?email=someone@hotmail.com&activationkey=2a8cc769kl

But my problem is the te way of subscribing. If someone subscribe and click on SEND then the following is send.
nws_register.asp?name=mike&email=mike@hotmail.com
Now if someone make an script that generates by example
this line with several names and email adresses then they can spam my database and fill it with unusefull data within several minutes.

Is there a way someone can use the subscribtion only once within let's say 5 minutes or something??

Thanks in advance.
 
Sort by date Sort by votes
use POST rather than GET so the data is not in the URL for a start.
Depending how the form is set up you could have it so the form field names are changed each time the form is loaded. The field names can be stored in session variables. This makes it almost impossible to write an auto submit script.

and you store the users IP and a timestamp in the database and check this before adding a record.


Chris.

Indifference will be the downfall of mankind, but who cares?
A website that proves the cobblers kids adage.
Nightclub counting systems

So long, and thanks for all the fish.
 
Upvote 0 Downvote
Thanks Chris,

Very good idea to use POST instead of an GET.
Do you know where i can get a good example of a way to change the formfields on the fly and store them in session variables?

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

leifoet
  • Locked
  • Question
How to send HTML emails with ASP classic?
Replies
0
Views
93
leifoet
leifoet
leifoet
  • Locked
  • Question
First execute an input command and only then proceed with displaying the next record of the table
Replies
0
Views
59
leifoet
leifoet
JScannell
  • Locked
  • Question
Border issue with Google Chrome on an Android phone
Replies
0
Views
71
JScannell
JScannell
penguinspeaks
  • Locked
  • Question
iis woos (not displaying pages correctly)
Replies
1
Views
72
penguinspeaks
penguinspeaks
leifoet
  • Locked
  • Question
How to check if a datatable is empty ?
Replies
0
Views
74
leifoet
leifoet

Part and Inventory Search

Sponsor

Back
Top