I've recently had my ASP site attacked by these stupid bots and have tried a captcha protection, but it doesn't help.
Here's the problem:
I have a form where people send an enquiry to a client from my database (over 5000). After hitting the submit button, an email is posted to the client, a copy is sent to us and the info is published to a database for record / stat keeping.
I have put the captcha protection in the form, but although the tests show that the captcha form works, the emails are still sent off, therefore allowing the bot attacks.
There must be a gap I can plug with the captcha before the email is posted off or info sent to the database.
I have a formchecker running which forces required fields, and that works fine. I'd like the captcha to work the same. Before the form goes to the confirmation page, it must validate the captcha.
Someone probably have asked this question already about this topic earlier but i am just unable find it or otherwise i am being lazy to dig into this forum. how to avoid spam while sending bulk of emails, i am trying to create a tool which would send emails to multiple recipients at one given time, It would nice to have your expertise comments on this topic. I just want to Avoid Email Filters that prevent responsible emails. is there any workable solution to this problem ?
I am having a problem formatting an email message which comes from a form.
I am currently having difficulty with the <br> tag which I am using for line spaces within my email. I am getting an expected statement error message which is pointing to the line which is underlined below. I can't think what is causing this.
Just starting to play with scripts, and need a little guidance. I want to check to make sure that the email addresses users enter in a form are identical before it will allow them to submit. here's what i have:
the variable for the second email address is EmailFrom2
'validation Dim validationOK validationOK=true If (Trim(EmailFrom)="") Then validationOK=false If (validationOK=false) Then Response.Redirect("emailerror.htm?" & EmailFrom) If (Trim(Name)="") Then validationOK=false If (validationOK=false) Then Response.Redirect("nameerror.htm?") If (Trim(CityState)="") Then validationOK=false If (validationOK=false) Then Response.Redirect("citystateerror.htm?") If (Trim(SchoolName)="") Then validationOK=false If (validationOK=false) Then Response.Redirect("schoolnameerror.htm?")
Set myMail=server.CreateObject("CDO.Message") myMail.Subject="subject" myMail.From="me" myMail.To=request.form("email") myMail.TextBody="hello" myMail.Send set myMail=nothing
this script sends emails to some addresses but not others--and its based on the email service it's sending to. for instance, hotmail email addresses get the email, but mail.com email addresses dont get the email. i have tried sending it to other email hosts, too, and still, some work, some don't. what is going on here?
The spam I am getting has a bunch of bogus links for viagra and other meds.The bot just fills out a questionnaire and send it.They're all filtered to my trash folder and I'm going to try to stop it with a server side asp validation but I wonder what they are trying to accomplish in the first place.
We have many forms on our site that users can fill out and ask questions, request information etc. but somehow, we receive a lot of junk mails (more than two hundreds) within two weeks through these forms. I don't know hot to stop these junk emails.
I am using cdonts in my asp scripts to send emails to the users of my website.But every mail to i send to an hotmail account gets in de hotmail spam folder.is there anyway to prevent this from happening?
Im having problems with my form, separately both forms work perfectly, but having problem sending the email once submitted, however the upload fuction is working fine. The message im getting is,
Request object error 'ASP 0207 : 80004005'
Cannot use Request.Form
/forminfo.asp, line 42
Cannot use Request.Form collection after calling BinaryRead.
Would anyone be able to give some guideance in ASP code as to how I would repeat a section of input fields in a form based upon the number of guests that are attending an event?
Basically, what needs to happen is if 3 guests are attending, I need the Name, address, city, state fields to repeat so they can be filled in with information.
Then all of the information from the whole form is submitted which returns an email to the administrator of the event.
I have a website with a Guessbook section. Lately I noticed someone copy and pasted a long http address to promote viagra.. I believe he simply copy and paste the whole link into the text input field and submit several times. It created multiple entries in my guessbook.
How can I prevent this? I was thinking if it is possible for me to write some code to disable people using the control-p to paste text in my text input field.. Can I really do that? What other options do I have?
I have a site that currently is password protected, using a combination of ldap authentication and asp session management. So for every asp page, I check the session to make sure they're authenticated, if not I send them to the login page. BUT.... there is a robohelp componenet that is almost a website within this website. All these robohelp files are htm or html based, so I'm unable to put asp scripting (to check for session authentication). So, my problem is, how do i protect these pages using my existing framework?
I have a locally hosted (via an executable) asp application. Does anyone know what would be the best (cheapest) way to add copy protection in it?
The application is an exe web server with the asp pages embedded in the executable. No one can copy the asp pages, but they can copy the executable and distribute it that way. I don't want them to do that.
If there is some sort of wrapper or asp code I could add to it for licensing or registration, please let me know.
I have allways validated user input to pieces prior to integrating it into a SQL statement, in order to avoid SQL Injection attacs. A colleague of mine told me that binding my vars would make them SQL scalar, but I have been left in the dark as to HOW... The web left me none the wiser, as well, so here goes: Anyone got a brief example of binding vars in ASP to get me started?
After trying out 3/4 password scripts which I've used before and won't work today.I've come to the end of my tether! I need a ready made script asap to password protect a set of webpages, something simple with login and p/w for one user.
I have a webpage. However I only want people to access it if they are members of a certain group. When I say group I mean Active Directory group. The log into windows with their Active Directory username and PW, and lets say they are members of 'employee1' group in Active Directory. I'm pretty sure I use ASP, to restrict access to a webpage depending on the users group. how I would go about doing this?
Can anyone find fault with this code? I wrote in in hopes of preventing users from "breaking" SQL queries and getting places they shouldn't by using SQL Injections.
I have been using two forms of password protection:
A) On working web sites I use an ASP script that is included in every page requiring protection: uses session - works fine
B) On quick test sites or temporary stuff I use the Windows Network Authentication provided by my web host. A whole folder is protected at once which is very convenient but it has a problem. If a user types the wrong password and is denied access, the next time they go to type the password, their browser sometimes remembers the wrong password as so they go straight to the 'access denied' 401 page.
How to proceed?
1) Does anyone know of a way of preventing all browsers from cacheing the login info.
2) Is there any way of using ASP to protect whole folders?
I need to be able to secure files on my web server. I am using asp to secure access to links and pages, for example:
<%If Session("manager")=FALSE Then%> You are not authorized to view this page <%Else%> <<<Page Code>>> <%End If%>
The place I'm running into problems is with files. I have a lot of charts and such in PDF version. I kind of doubt there is a way to secure these files with asp, but I thought it would be worth a try.
My biggest issue is that PDFs are stored in the browser's history, so once the page has been accessed, anyone using the browser can get to thatunsecured PDF. As a brute force fix, is there some way to simply erase the site from the browser history? If not, is there a way to secure the PDF, or does someone know of a better group to post on?
