form spam, not header spoofing

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

   I have a client that is getting a variety of spam through one of his
forms. This is not spam meant to be redirected by forging a header as
that is detected and deleted by looking for line feeds in the header
lines, it appears to be and can only be sent to the intended recipient.
Getting about 20-30/day. Oddly many of the form questions are answered

   Something new to me. Anyone else seen this?

   So what to do. I don't see any fixed patterns to trap on.

   Perhaps one of those distorted images you have to decypher? Something
less annoying?

   I'm going to collect UA info and see what may be in there.


Re: form spam, not header spoofing

Jeff wrote:
Quoted text here. Click to load it
An update on this. I've checked to sniff if javascript is enabled and as
one would think for a server bot, it is not. I've keyed on this then and
am tossing out non JS user agents. Since only a handfull of typical
surfers (I'm sure this group is non-typical!) turn off javascript, this
seems like a reasonable trade off.


Site Timeline