Link to home
Start Free TrialLog in
Avatar of dory550 lambert
dory550 lambertFlag for United States of America

asked on

Emailing with CDOSYS

Hi Guys
I am using Microsoft platform / Classic ASP /cdosys
I have a contact-form on my website
The contact-form enables a visitor to email us a comment or a question
I am using CDOSYS / classic ASP to send messages
some hackers keep sending us hundreds of messages in batches  using our contact-form with remote access
What can i do to prevent this?
Avatar of Ryan Chong
Ryan Chong
Flag of Singapore image

if your contact form is opened publicly, technically everyone has the access can submit the messages. hackers can mimic the actions easily to trigger the form submission.

think there have few things you can consider:

* disable or limit the CORS setting (Allow-Control-Allow-Origin) in your web server
* perhaps to prepare a "black list" of IP addresses that disallow to execute the asp codes. so that the hacker's IP could possibly be booked. OR similarly, you can build an IP "white list" as well.
Avatar of David Favor
David Favor
Flag of United States of America image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of dory550 lambert


David Favor
Your suggestion about  using reCAPTCHA v3
Was just what I needed
You're welcome!