cope Posted December 12, 2005 Posted December 12, 2005 Hi there, this apprantly has been a ongoing issue with some stores. I've applied the fix for the Contact Us with the new release update that was issue a few weeks back (Update 051113) but unfortunately i think it hasnt worked for me. This is what im getting emailed to be from the Contact Us Page Still: My Domain is www.lagifterie.com Can anyone shed some light on the situation. Thx From: [email protected] (This email is not alsways the same but its from my domainname but these email addresses do not actually exist) Subject: Enquiry from Domain to Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: advantage. hey d surrindhered ninety or a hundherd bcc: [email protected] 1f3867dc346f02a8735bdd497dde809c
Kornie Posted December 12, 2005 Posted December 12, 2005 i don?t use the origin contact_us.php, but i had the same problems, i solved it with a "die" if someone uses the input fields with my own webadress
cope Posted December 12, 2005 Author Posted December 12, 2005 i don?t use the origin contact_us.php, but i had the same problems, i solved it with a "die" if someone uses the input fields with my own webadress Not sure what you mean by that. Can you elaborate more? Thx
♥Vger Posted December 12, 2005 Posted December 12, 2005 Save yourself a lot of hassle. Remove the dynamic 'contact' script links from the root level contact_us.php, and then replace it with a simple <a href="mailto:[email protected]">Text link here</a> in your includes/languages/english/contact_us.php (and any other contact_us.php files in the german and spanish folders at that level). This simple form of e-mail link cannot be abused. If you wish to keep using the contact us script that comes with osCommerce thn make sure that you also apply the E-mail Header Injection fixes for the two email.php files. Vger
AlanR Posted December 13, 2005 Posted December 13, 2005 Save yourself a lot of hassle. Remove the dynamic 'contact' script links from the root level contact_us.php, and then replace it with a simple <a href="mailto:[email protected]">Text link here</a> in your includes/languages/english/contact_us.php (and any other contact_us.php files in the german and spanish folders at that level). This simple form of e-mail link cannot be abused. That's not really a very complete solution. Check this Google Search: http://www.google.com/search?hl=en&q=catal...G=Google+Search I didn't even bother to post the search for contact_us.php So unless you remove contact_us.php or rename it it's stlll there. Bots don't come knocking on the front door, they zero in on the target file. Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)
user99999999 Posted December 13, 2005 Posted December 13, 2005 The bots post every field on the form. The header injection fix stops mail getting sent to other people via bcc when the bot posts its mess in the name or subject field but doesnt do anything when the bot posts its mess in the text field so you still get a spam to admin. To stop it you can add some filters like below //Block header injection bots if (eregi('Content-Type:', $email_text)) return false; //Block Viagra sales if (eregi('Viagra', $email_text)) return false; //Block Nigerian scams if (eregi('Nigeria', $email_text)) return false; Its just spam to admin. If you look at this page you can see the bot posted and has nothing to do with contact_us.php so the bot is looking deeper like any page with email field. http://articles.poetryx.com/talkback/100/
cope Posted December 13, 2005 Author Posted December 13, 2005 Remove the dynamic 'contact' script links from the root level contact_us.php, and then replace it with a simple <a href="mailto:[email protected]">Text link here</a> in your includes/languages/english/contact_us.php (and any other contact_us.php files in the german and spanish folders at that level). How would I go about removing it? Is it the best course of action? The thing is, why after changing the files from the recent update am i stil lgetting these? I get sometimes 3 in a day, then not 1 for 2-5 days, then 2-3 one day... Are they actually doing something bad from my site or contact_us page? Thx
cope Posted December 13, 2005 Author Posted December 13, 2005 Its Just spam to adminThx Well if thats all it is, and not a indication that my site is spamming people or has a security hole i feel a little relieved. So all in all im ok right?
user99999999 Posted December 13, 2005 Posted December 13, 2005 Before the update you would get mail in your catch all account with To: [email protected] after that update you will still get mail To: [email protected]
cope Posted December 13, 2005 Author Posted December 13, 2005 Before the update you would get mail in your catch all account with To: [email protected] after that update you will still get mail To: [email protected] icic... someone just posted a contribution http://www.oscommerce.com/community/contributions,3848 too bad I don't read German ): any ideas?
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.