??PHPNerds??: “Building a Secure Contact Form”:http://www.phpnerds.com/article/building-a-secure-contact-form. It appears that some jerk on the web has been blasting our “Contact form”:http://www.villagechurchnyc.com/contact at The Village Church in order to exploit a buffer overrun error and spam people from our website. How do you like that? I know the easiest way to take care of this is to provide some server-side validation of the information before it’s passed through to email–and it probably wouldn’t hurt to start tracking incoming IP addresses, either. This is just one more thing that I don’t need keeping me up nights. 😦
Anyone run into this issue before?
Mike got me thinking about a WP plugin and a quick Google turned up the “WordPress Contact Form plugin”:http://ryanduff.net/projects/wp-contactform/. Looks like they’ve had their own spam issues and are working on solutions to those. This might be helpful for our situation with The Village Church.
We’re using the plugin here. Feel free to do some “User Acceptance Testing”:/contact. 😉