how to protect the guest book of my site from hackers?
Sat, 06/28/2008 - 18:59 — jeanot
prevent hackers to use the guest book of my web site by writting stuff I don't want.
Looks like this group of hackers bypass the sign book because I do not get any info of them passing by the site from the software "statcounter", but I receive by e-mail the prof of they passage when a new log goes to the guest log.
Thank you for the help.
Jeanot
qLlHVr Hello!,
Hi Jean,
I personally recommend not to use Frontpage for online websites. The code created by it is very faulty as can also bee seen on your site. I haven't used Expression yet (and probably never will) but do not expect too much from Microsofts compliance to W3C standards. This is just my personal view, I would try a different website builder.
Your guestbook is wide open to spam robots. The page itself can be directly accessed, the POST values can be simulated by the robot and, thus, anything can be sent to your guestbook. Your guestbook code does not even check on empty values. What you need to add is a captcha feature. This is a random image of a string that the guest book user must enter before he can submit. A robot can not "read" that image, only people can. That's the strategy behind it. Try JCap: http://www.archreality.com/jcap/
Best regards,
George
Hi George,
Thank you for looking at my problem.
I'm kind of new in this field and I will try to improve it.
Thank you for your advises.
Best regards,
Jean
Hi cy,
my site is "marcellin.ws"
build with frontpage
will be soon with microsoft expression
thank's
What site? What software? Let us have some more info and we sure try :)
Post new comment