RSS feed links
Hijack-proof forms. Surveys. List building.
Solid, safe website tools.
Whatever your need, Will Bontrager builds powerful software solutions.
Solid, safe website tools.
Whatever your need, Will Bontrager builds powerful software solutions.
RSS feed links
Blog Article Categories |
(Get Attention Ticker for your web site)
How Master Recommend Pro V4 Blocks Automated Form SubmissionBy Will Bontrager When the Master Recommend Pro V4 "recommend this web site" form is loaded, a unique value is generated for a hidden field with JavaScript and a cookie is set with encoded information. When the form is submitted, the cookie contents must decode into the unique value provided with the hidden field. Each unique value may be used only once. And it must be used within a certain time limit. To use the form again, the form must be reloaded in order to generate another set of unique information. There is no limit to how often a real person can use the form (you can ban certain email addresses and words/phrases if someone starts to misuse it). And there is no challenge-response system built in. The JavaScript and cookie requirements block all but the most sophisticated auto-submission robots (spammers' robots tend to be simple, according to my admittedly little experience with them). The "new form for each submission" requirement would entail building an additional feature into the robot — provided the submission rate would be considered fast enough to be cost effective. The auto-submission prevention code can be circumvented if someone is persistent enough. But it's unlikely while so many vulnerable forms are available on the Internet. November 30, 2005 Please note: Articles on this website are presented "as is". However - If you have a question about a CGI script, HTML, CSS, PHP, or JavaScript
Rate this blog post.
No page reload! |
|
© 1998-2001 William and Mari Bontrager |
|