Thread: Need a good formmail script
View Single Post

  #4 (permalink)  
Old 22-03-2007, 02:26 PM
404 username not found's Avatar
404 username not found 404 username not found is offline
Undefined offset:
  
Join Date: Jan 2007
Location: localhost
Posts: 69
Nominated 0 Times in 0 Posts
TOTW/F/M Award(s): 0
404 username not found will become famous soon enough
Default
Ah good, so it's not just me then

I suppose it's a simple enough matter to put the functionality in place, but I'm extremely paranoid about writing exploitable code.
The last thing you want is to get your domain spam-listed because you overlooked something.
I think the good thing about using well known and widely used scripts is that they've already had months/years to get hammered on... but then a custom script can have everything hard-coded and has the benefit of obscurity.

@ziycon:
Thanks, I'd be interested in having a look at it.
I've already got a referer whitelist function written along with a few different input validation funtions, but I'd be interested in seeing how you're implementing mail() since I haven't used it before.
Reply With Quote