in reply to Re: A good way to prevent \"spam flooding\"?
in thread A good way to prevent "spam flooding"?

Hey, that thread helped me understanding the logic to prevent the refresh duplicates, but in the it still not bullet proof? Wouldn't it be really easy for someone to just add a random generated session id and tag it on the session_id parameter, and keep making form requests to your validation script. The validation script will always receive different generated sessions, thus making it really easy to flood your directory?

Perhaps, add a IP field and only allow 5 max request per? But then someone can trick the IP or perhaps connect to a list of proxies and take turns 1 by 1?

Theres really no reliable way is there?
  • Comment on Re^2: A good way to prevent \"spam flooding\"?

Replies are listed 'Best First'.
Re^3: A good way to prevent \\\\\\\"spam flooding\\\\\\\"?
by Anonymous Monk on May 27, 2007 at 19:26 UTC
    thanks for replies....that thread also helped me a bit better. I guess someone will have to build some bot to do what your talking about? Its doesn\\\'t concern me too much security wise and I\\\'m just over worrying about it. also what did you mean by flood your directory?
[reply]

In Section Seekers of Perl Wisdom