AndreD Posted April 2, 2014 Share Posted April 2, 2014 I am looking to disallow or block the string "http://" from the message box of a PHP form. I don't need an error message as it is purely to block spam that is flooding a clients site. Below is the code for the message section. I am really hoping for a simple fix to add to the existing code. <div id="row"><div id="input"><textarea id="comment" name="comment" class="mess" placeholder="Type your work description here." scrolling="no"><?php echo isset($_POST['comment'])? $_POST['comment'] : ''; ?></textarea><?php if(in_array('comment', $validation)): ?><span class="error"><?php echo $error_messages['comment']; ?></span><?php endif; ?></div><!-- end .input --></div><!-- end .row --> Quote Link to comment Share on other sites More sharing options...
jazzman1 Posted April 2, 2014 Share Posted April 2, 2014 Captcha and data sanitization. Quote Link to comment Share on other sites More sharing options...
cyberRobot Posted April 2, 2014 Share Posted April 2, 2014 You don't think your normal customers would ever type a website address? For example, would the form ever be used to report a broken link on the website? As for what you could use to see if a message contains a certain string, you could try strpos() or preg_match(). Quote Link to comment Share on other sites More sharing options...
AndreD Posted April 2, 2014 Author Share Posted April 2, 2014 Captcha isn't an option as the client doesn't want it. As far as broken links no, its a small Paving site that I maintain SEO on as well so I review the site weekly anyway. I will look into both strpos() and preg_match() suggestions as well. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.