jasonc310771 Posted July 14, 2023 Share Posted July 14, 2023 I have a feeling someone is sending their spam to me using other means and not via the websites contact page form. What other checks should I use to ensure it came from my website and not somewhere else ? Quote Link to comment https://forums.phpfreaks.com/topic/317081-prevent-someone-submitting-to-my-contact-page-from-another-website/ Share on other sites More sharing options...
ginerjm Posted July 14, 2023 Share Posted July 14, 2023 Maybe have a hidden element in your site's form that your code has to see. Quote Link to comment https://forums.phpfreaks.com/topic/317081-prevent-someone-submitting-to-my-contact-page-from-another-website/#findComment-1610483 Share on other sites More sharing options...
requinix Posted July 14, 2023 Share Posted July 14, 2023 Use XSRF tokens to prevent people from submitting forms unless they are the user themselves, and use a reputable CAPTCHA service to (try to) prevent bots from using your form. Quote Link to comment https://forums.phpfreaks.com/topic/317081-prevent-someone-submitting-to-my-contact-page-from-another-website/#findComment-1610484 Share on other sites More sharing options...
LeonLatex Posted July 14, 2023 Share Posted July 14, 2023 If you suspect that someone is sending spam to you through means other than your website's contact form, there are several things you can do to investigate: Check the email headers: Email headers contain information about the sender, including the IP address and the originating server. You can use an email header analyzer tool to decode the headers and check if the email was sent from your website's server or from a different one. Verify the sender's email address: Check the sender's email address to see if it matches the email address used on your website's contact form. If the email address is different, it is likely that the email was sent from a different source. Use CAPTCHA: Implement a CAPTCHA on your website's contact form to prevent automated spam bots from submitting the form. Implement email authentication protocols: Implement email authentication protocols such as SPF, DKIM, and DMARC to verify that emails sent from your domain are legitimate. Monitor your website's traffic: Use website analytics tools to monitor your website's traffic and look for unusual spikes in traffic or suspicious activity. By taking these steps, you can help ensure that the emails you receive through your website's contact form are legitimate and have been sent from your website's server. Quote Link to comment https://forums.phpfreaks.com/topic/317081-prevent-someone-submitting-to-my-contact-page-from-another-website/#findComment-1610492 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.