[thelist] tracking spammers

Renoir Boulanger renoirb at gmail.com
Sat Jul 16 22:48:44 CDT 2011

I would suggest one thing.

The symfony framework has this auto gemerated hidden field implementing CSRF. It is in fact a string generated ising a shared secret and will accept posts coming with that field who gets validated.

I did not read about how exactly symfony implements it but it is a good starting point.

I doubt that you can accept posts coming from your own server because it is in the nature of a post to submit to a url from code... we just hooe its from our own and not for misleading reasons.

I am curious about how you can do that. Do you have a more concrete example?
> (...) You can get around this by coding your script so that it only takes form posts from your own IP. (...)



(envoyé de mon téléphone)

More information about the thelist mailing list