At 12:18 PM 1/11/2002 -0800, Scott Lutz wrote: >I am curious if anyone is familiar with a way to tighten security on >this script? >We am experiencing some sort of script that is exploiting this code, and >am looking for some previous experience here . . > >please
Is this the script available from Matt's Script Archive? The web site says there is an upgrade to fix a security problem. What problems are you having? The problem that I saw was that the script takes the email address that is embedded in the form and mails the form to that person. The problem is, someone off-site could create a form that points to the script and send via your mail program (can you say spam). One work around is to hack the code such that the recipient is hard-coded in the script, not the form. Roger -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
