What about the REFERER HTTP header? That too can be forged though.<BR><BR><BR>In what respect "spamming" - are they sending YOU lots of junk data, or are they using it to send lots of junk data to other people?<BR><BR>Craig.<BR>
Hi craig not quite sure what you mean by the REFERER HTTP header how does this work? is there an FAQ on it as i can't find one. <BR><BR>looks like soem script kiddy has created his own page and is posting to our form page, so the DB is filling you with junk. <BR>AlBear<BR>
Well, it's not an exact science.<BR><BR>Some browsers (and some people behind some types of hardware) don't send the REFERER HTTP header, so you may end up not receiving some "valid" submissions. That's just something you're going to have to live with.<BR><BR>Also, a HTTP request is just text at the end of the day. Would take me maybe 10 minutes to write a VB program that let you add your own HTTP headers to a request, and then request a page.<BR>You could use the same theory to make a VB program to spam your site very very easily.<BR><BR>Craig.