[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: FormMail.pl
SoundSelecta wrote:
>
> Does anyone put their IP into the Referers array. The way FromMail
> is set up you can enter you domain and your IP.
Let me try to explain how it works with an example. The normal URL to
the page from where you can submit your Ringlink installation to the
Systems Directory is:
http://www.ringlink.org/directory/ringlinksubmit.htm
But it's possible to access the very same page via these URLs as well:
http://ringlink.org/directory/ringlinksubmit.htm
http://ringlink.sourceforge.net/directory/ringlinksubmit.htm
The referers array in the Ringlink copy of FormMail.pl includes only
'www.ringlink.org'. For that reason, the form will work only if you
accessed the submit page via the first URL.
Certain sites can be accessed via URLs that start with the IP address
instead of a host name. Consequently, if you put an IP address in the
referers array AND access a page with an URL that includes the same IP
address, you can successfully execute FormMail.pl from that page.
> Im not sure how much that will help.
As you should understand from the above, it wouldn't make a difference
as regards protecting the script from spammers.
/ Gunnar
- References to:
- Bill Wilson
- Sage Telecommunications
- Gunnar Hjalmarsson
- > Admin <
- SoundSelecta
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]