I just moved my website to bluehost, and I'm still trying to tweak all the bugs from the move. I made my form mail pages ages ago. I uploaded the pages I've used, and they worked perfectly. My problem is that I have a spammer, spamming via my form mail. This is always the same spam. I've tried finding this person's IP address and excluding that address from my site. This has been difficult to say the least. Is there some input tag or code that I could add to the form that will include the senders IP address when bluehost sends it to me?

From reading this forum, I've noticed that spammers can get our email addresses from our forms. Grrrr.....I guess I better research solutions for this. :(

Thanks for any help given in advance, cybergata

Rather than replying to myself, I'll add here....I figured it. Just in case anyone would like the script, somewhere after <form name=email method=post action="http://mysite.com/cgi-sys/FormMail.cgi'> add the tag:

<INPUT name="env_report" type="hidden" value="REMOTE_ADDR,HTTP_USER_AGENT">

hi there,

I have received some great replies from members of this forum regarding my issues with form mail, and while I have it up and running, I have not put it into practice yet on my web site. The program that was recommended to me was TFmail http://nms-cgi.sourceforge.net/scripts.shtml. And although I am happy with the program I still wanted a bit more protection against my form being hijacked and receiving a bunch of spam.

Another measure that I incorporated into the form is via a company called protectwebform.com http://www.protectwebform.com. This site enables your form with CAPTCHA technology, meaning that in order for a person on your web site to submit their form data, they must first type in what they see in a box on your screen. I am sure you've come across this type of thing in your web travels, many sites will use something similar when getting users to create blog or other types of accounts for their site. This prevents bots from just going to your site filling in your form and hitting submit.

Can't hurt to give it a try. It's free. =)

Another thing you may want to do in the interim is change the url for your form, as well as the email address that you are using for your submission destination. Most of these bots will just remember where they found your form and keep attacking it, change it up and they will have to track you down all over again.

hope this helps

I joined the protectwebform.com. I'm about brain dead at the moment, so I'll try setting it up tomorrow. I'm not sure about the first link. I'm looking for something to keep spammers from finding my email address in my formmail coding. I noted above that I had figured out the code needed to send the IP address along with the email.

BTW, you might want to edit your post. When a person clicks on the URLs you posted the ) at the end of the address shows up and leads a person to error message. Of course people reading this can also just remove the ) once the get the error message.

Thanks again for the help, cybergata
http://img.photobucket.com/albums/v395/cybergata/computing.gif