Block or Dissallow http string in Contact Form Message Box

[AndreD]

I am looking to disallow or block the string "http://" from the message box of a PHP form.  I don't need an error message as it is purely to block spam that is flooding a clients site.  Below is the code for the message section.  I am really hoping for a simple fix to add to the existing code.

 

<div id="row">
<div id="input">
<textarea id="comment" name="comment" class="mess" placeholder="Type your work description here." scrolling="no">
<?php echo isset($_POST['comment'])? $_POST['comment'] : ''; ?></textarea><?php if(in_array('comment', $validation)): ?><span class="error"><?php echo $error_messages['comment']; ?></span><?php endif; ?>
</div><!-- end .input -->
</div><!-- end .row -->
 

[jazzman1]

Captcha and data sanitization.

[cyberRobot]

You don't think your normal customers would ever type a website address? For example, would the form ever be used to report a broken link on the website?

 

As for what you could use to see if a message contains a certain string, you could try strpos() or preg_match().

[AndreD]

Captcha isn't an option as the client doesn't want it.  As far as broken links no, its a small Paving site that I maintain SEO on as well so I review the site weekly anyway. 

 

I will look into both  strpos() and preg_match() suggestions as well.