SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Addict svcghost's Avatar
    Join Date
    Oct 2010
    Posts
    288
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    PHP form security help

    Hey guys,

    Just wondering, what's stopping someone from creating an identical form to add a comment for example on your site? If your form uses three inputs (a hidden one with a value "iscomment", a text input named "content" and a submit input named "postcomment"), what's stopping someone from just mimicking that form on their server and being able to post comments to your site via their own script?

    What do you use to counter this from happening? Thanks so much guys.

  2. #2
    . shoooo... silver trophy logic_earth's Avatar
    Join Date
    Oct 2005
    Location
    CA
    Posts
    9,013
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    Do you mean bypassing your web application? Not possible. While they can clone the form they won't be able to bypass the application that handles the form underneath. Is that the answer you are wanting? As for how I counter it, I do nothing. It is not an issue as long as the input is valid and not spam. I don't care where it comes from because that implementation detail does not matter.
    Logic without the fatal effects.
    All code snippets are licensed under WTFPL.


  3. #3
    SitePoint Addict svcghost's Avatar
    Join Date
    Oct 2010
    Posts
    288
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Ah good point good point. Thank you!


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •