Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

prevent $_POST bombing

Tags:

php

mysql

I have a contact form that sends to my email and I recently got attacked by some sort of spam attack... I received like 76k emails overnight from the same IP address. It made me really mad. What can I do to fix this? I know I can implement captcha but I don't want that. :\

What else can I do to prevent multiple form submit?

like image 222
Kyle Avatar asked Apr 25 '11 22:04

Kyle

People also ask

What are the three ways we should respond to a terror attack?

If you are caught up in an attack, “Run, Hide, Tell”. Excessive bleeding is the main cause of death in a terrorist attack. If you are caught in an attack, RUN. If you cannot run, HIDE.

Is Singapore safe from terrorism?

The terrorism threat to Singapore remains high. On the external front, Islamist terrorist groups like the Islamic State in Iraq and Syria (ISIS) pose a persistent threat with their ability to radicalise and inspire attacks among their followers.

What is HTTP request smuggling vulnerability?

An HTTP request smuggling vulnerability occurs when an attacker sends both headers in a single request. This can cause either the front-end or the back-end server to incorrectly interpret the request, passing through a malicious HTTP query.

What is HTTP response smuggling?

HTTP request smuggling is a web application attack that takes advantage of inconsistencies in how front-end servers (proxies) and back-end servers process requests from more than one sender.

1 Answers

You could try to stop this in a number of different ways:

  • CAPTCHA (you already said you didn't like it but it's possibly the easiest solution)
  • Answering some kind of question that it's easy for a person to answer but not a script
  • Making sure the user is signed in before they can submit (assuming they have to be registered)
  • Rate limit the form so that each IP address can only submit once every N period of time
like image 72
James C Avatar answered Oct 04 '22 17:10

James C
Sign in to Comment

Related questions

php classes extend
php find string
Can I get the current page URL from a PHP script envoked via AJAX?
problem with conditional switch
How to convert an array to a html table
How to send an email with attachment in wordpress?
How to make Video conference application in HTML 5? [closed]
Are there OAuth 2 server side PHP or Java implementations? [closed]
Using Zend_Auth to secure all controllers
What encoding does ZipArchive use to store file names inside the created archive?
Encrypting/Decrypting Passwords to and from a MySQL database
PHP/mysqli - prepared statement (in a loop) or multi_query
Multiple GETs in URL at the same time?
Right way to redirect after form submit
Echo with single and double quote in PHP [duplicate]
Uploading some specific features but not all developed features from development to live server
testing legacy codes with phpunit
Silly, can't figure out php round down :(
Caching variables in PHP
Integrate Hbase with PHP [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!