Re^2: CGI Honeypot?

Thanks Corion, for your concern and thoughts. I am working with old forms/scripts that were here for years before I came on the scene...and I am still very much a newbie figuring out how programming works. As I've struggled trying to find solutions for this, I've come across the dire warnings about Formmail.pl, and vow to rewrite these cgi scripts using a safer template - however, for now I just need to get this working.

re: your update comment - if I am looking for an empty field in order to allow the form to validate, and the bot fills the field in, how is that going to be useless? I'm not following you.

*Thanks for the nms link. :-)

Comment on Re^2: CGI Honeypot?

Replies are listed 'Best First'.
Re^3: CGI Honeypot? by Corion (Patriarch) on Jul 18, 2014 at 19:03 UTC
If you leave the field empty and expect it to be empty, most bots will do just that. But there are also bots that will fill arbitrary values into fields. In both cases, your form will be used to send spam.	[reply]
Re^4: CGI Honeypot? by Hans Castorp (Sexton) on Jul 18, 2014 at 19:07 UTC
Hmm. But how will the bot know I want it empty? It looks like any other field on the form.	[reply]
Re^5: CGI Honeypot? by Anonymous Monk on Jul 18, 2014 at 19:09 UTC
Hmm. But how will the bot know* I want it empty? It looks like any other field on the form.* It doesn't have to know, its a bot, it will just try things -- if it works, great -- if it doesn't work, great -- its a robot	[reply]