Register

If this is your first visit, please click the Sign Up now button to begin the process of creating your account so you can begin posting on our forums! The Sign Up process will only take up about a minute of two of your time.

Results 1 to 10 of 10
  1. #1
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    I have recently been receiving emails from <name>@bluewolfwebdesign.co.uk or @wmphpp03.st2.lyceu.net, which is a Lycos php server address.

    I do have an email form on my site but it has a email validation script so it shouldn't be possible to just put a name in the senders address that isn't in this format 1-2 a-z @ 1-2 a-z.a-z (you get the picture)

    I have also checked my stats for the yesterday and the contact page had only been loaded once, which if the emails were originating from it there would be a numerous amount of page refreshes listed.

    Below is an example email.


    a
    Content-Type: text/plain; charset=\"us-ascii\"
    MIME-Version: 1.0
    Content-Transfer-Encoding: 7bit
    Subject: don t begin to vote till afther th polls close
    bcc: beacon5919@aol.com

    547e9c24d227007418206210f07e367e
    .
    Blue Wolf Web Design - Will always get better!

  2.  

  3. #2
    WDF Staff Wired's Avatar
    Join Date
    Apr 2003
    Posts
    7,656
    Member #
    1234
    Liked
    137 times
    It's easy to fake an email address. I could send you an email from billgats@microsoft.com in 2 seconds. Now granted, if you check the header info in the email it'll tell you the real email address.
    The Rules
    Was another WDF member's post helpful? Click the like button below the post.

    Admin at houseofhelp.com

  4. #3
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    I know but is there a way to stop these emails or at least find out where they're coming from?
    These emails are normally sent in groups of five and some just contain an email address @bluewolfwebdesign.co.uk ( which is my domain so it can't exist) and then a load of numbers and letters.
    Blue Wolf Web Design - Will always get better!

  5. #4
    WDF Staff Wired's Avatar
    Join Date
    Apr 2003
    Posts
    7,656
    Member #
    1234
    Liked
    137 times
    Read my previous post
    The Rules
    Was another WDF member's post helpful? Click the like button below the post.

    Admin at houseofhelp.com

  6. #5
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    Ahh I see the header :-)

    It appears that they are sending it from my contact page through my email form and have somehow got around the validation.
    These emails are coming at odd hours and range right through the 24 hr clock.
    I looked at the IP addresses of two identical emails I had been sent and they were different.

    I am going to look around for a validation script which will show a picture and the user has to type the code into a box in order to send an email.
    This should hopefully stop any bots.

    So if anyone knows any good sites for validation scripts please tell me :-)
    Blue Wolf Web Design - Will always get better!

  7. #6
    Senior Member
    Join Date
    Jul 2005
    Location
    S.Wales, UK
    Posts
    250
    Member #
    10742
    I get these to, to my domain. If you have a separate form and a separate emailing page then they are probably hitting the emailing page direct.
    Paul Creedy
    Visit my community site at: www.rhonddacynontaff.com
    My hosting: www.rcthosting.com
    My Content Management product: www.dynamiccontenteditor.com

  8. #7
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    I think it's a bot as I've started recieving wierd news flashes!

    Hopefully when I put a bot check on it there should be no more poblems.
    Blue Wolf Web Design - Will always get better!

  9. #8
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    It appears that someone has found a way to add a new line to my php email form allowing them to send a BCC: of the email.

    I have 56 undelivered mail messages to my webmaster address.

    Is there anyway short of disabling my contact form that I can stop this?
    Blue Wolf Web Design - Will always get better!

  10. #9
    WDF Staff Wired's Avatar
    Join Date
    Apr 2003
    Posts
    7,656
    Member #
    1234
    Liked
    137 times
    May want to upload the PHP file here for analysis, or ask the PHP security mailing list for help. Is it a generic form that's modified for your own purposes? Also, what processes the mail on the backend? Couldn't tell (not that I'm an expert on mail forms or anything).
    The Rules
    Was another WDF member's post helpful? Click the like button below the post.

    Admin at houseofhelp.com

  11. #10
    Senior Member peter77's Avatar
    Join Date
    Apr 2003
    Location
    England
    Posts
    222
    Member #
    1084
    I've added a captcha to hide the email form and so far I've only recieved one rather than the usual 5.

    I've posted a question in this thread which also contains my email script http://www.webdesignforums.net/php_a...orm_22245.html

    Thanks for the help btw
    Blue Wolf Web Design - Will always get better!


Remove Ads

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
All times are GMT -6. The time now is 11:06 AM.
Powered by vBulletin® Version 4.2.3
Copyright © 2019 vBulletin Solutions, Inc. All rights reserved.
vBulletin Skin By: PurevB.com