Bob, I'm not sure how hard your Captcha code is to programatically recognise, but make sure that your not relying on sessions like this:
if($_SESSION['captcha_code'] == $_POST['user_code']) because a robot spammer won't create a session, so its like comparing "" to "" if they enter nothing in the "user_code" You should do something like this: if($_SESSION['captcha_code'] && ($_SESSION['captcha_code'] == $_POST['user_code']) Failing that, try doing this little trick... 1) When the user first loads the form, set a cookie 2) When the form is submitted, check the cookie is there 3) If the cookie isn't there, its a robot (or someone with cookies disabled) James On 2/13/07, Designer <[EMAIL PROTECTED]> wrote:
I seem to be going through a spate of getting spam in a form on one of my sites (the one in the link, below, actually.) So I tried using PHP to randomly display an image and getting the form user to input what it says. I still get spam! I'm presuming that this is because the spammer will work with javascript turned off, making the js checkform routine useless? Sorry if this is OT - can anyone point me to a solution? Thanks for any help . . . -- Bob www.gwelanmor-internet.co.uk ******************************************************************* List Guidelines: http://webstandardsgroup.org/mail/guidelines.cfm Unsubscribe: http://webstandardsgroup.org/join/unsubscribe.cfm Help: [EMAIL PROTECTED] *******************************************************************
-- James ******************************************************************* List Guidelines: http://webstandardsgroup.org/mail/guidelines.cfm Unsubscribe: http://webstandardsgroup.org/join/unsubscribe.cfm Help: [EMAIL PROTECTED] *******************************************************************