On 03/23/2018 01:06 AM, Viktor Dukhovni wrote:
Yes, but the right answer is turn off the webform until you can replace it
with something that is not open to abuse.
We will install a captcha tomorrow. (it's after midnight now)
It's also not *that* harmful: they s u b s c r i b e to a wordpress
blog, using russian email addresses. Actually: We don't understand
what's in it for them...
The system then sends a c o n f i r m a t i o n email, that 99% of the
time is not clicked. And this all happens to four different .ru domains.
Requiring a captcha to s u b s c r i b e will probably get rid of this.
MJ
