dflow Posted December 15, 2010 Share Posted December 15, 2010 im having some robots injecting gibberish i wnat to deny amy links in the requesttext of the form for some reason i tested it and it accepted a http link if (preg_match("/http/i","$RequestText")){ exit();} thanks Link to comment https://forums.phpfreaks.com/topic/221710-spam-injection-protection/ Share on other sites More sharing options...
scotmcc Posted December 15, 2010 Share Posted December 15, 2010 I looked at your code and tested it on my page and it correctly identified a URL. Here is your code in my test page... <?php if (preg_match("/http/i",$_REQUEST['test'])) { echo "Entered a link!"; exit(); } else { echo "Not a link!"; } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <title>form test</title> <meta http-equiv="content-type" content="text/html; charset=iso-8859-1"> </head> <body> <form action="<?php echo $PHP_SELF;?>" method="POST"> <input type="text" name="test" id="test" /> <input type="submit" value="submit" /> </form> </body> </html> Is it possible that there is another branch of the code that is being executed and the code you wrote (that seems to work for me) is never being executed? Link to comment https://forums.phpfreaks.com/topic/221710-spam-injection-protection/#findComment-1147558 Share on other sites More sharing options...
dflow Posted December 15, 2010 Author Share Posted December 15, 2010 $RequestText is actually a field in my form Link to comment https://forums.phpfreaks.com/topic/221710-spam-injection-protection/#findComment-1147712 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.