Big problems with spambots. Javascript useless?

jimrws · Joined: 05 Feb 2008 Posts: 18

Hi,

As soon as my website went live with my Xupload forms I've been getting fake forms posted. All required fields are filled out with rubbish spam, and they get through our spam filter as they look like ordinary inquiries apart from the obvious rubbish posted insdie the form.

I've played around with some Javascript code but nothing seems to work, I'm guess the bots are bypassing this and just posting directly to the cgi script.

I also have file uploads as optional in my webforms, so I can't rely on this to stop fake forms.

Is there anything I can add to the backend code or maybe some php I can add to the form, to stop these fake submissions?

I don't really want to use CAPTCHA or anything that involves user intervention, unless it's unavoidable.

Any help would be gratefully recieved.
Thanks.

PilgrimX182 · Posted: Jul 09, 2008 8:24 am Post subject:

Hmm...you can require file upload.
Don't you have this code in your upload.cgi?

jimrws · Joined: 05 Feb 2008 Posts: 18

As I mentioned above, I need to leave file upload as optional, as it's not mandatory for our users to upload files.

Any more ideas?

jimrws · Joined: 05 Feb 2008 Posts: 18

Using a similar method to the file upload check above, is it possible to check other form fields in the cgi?? What code could I use for this?

Maybe in upload.cgi it could check for a hidden field or a timestamp so it knows whether the form was submitted by a human and not a bot??

PilgrimX182 · Posted: Jul 10, 2008 6:18 am Post subject:

You can require JS on client side. Bots don't have JS I think Smile