securing your mail form

pixelsoul

I wanted to get some opinions from some others on a good way to secure a mail form so it can not be spammed through.

Here is what I thought would be a good way:

1) put all form data into a string and use stripslashes() so they can not change the email headers
2) check the refering URL to make sure it is only coming from the page that it is supposed to

I had gotten information before from some other that this would be fine unless the spammer new that I was using these two tactics to try to circumvent anyone from exploiting my mail form.

What do you think? Are there some better ways that I can do this? Are there any secure forms that someone has written that I might save time by using?

Thanks!

_theworks

a form a visual authentication such as a dynamic image could help read this thread..

http://phpbuilder.com/board/showthread.php?t=10313166&highlight=hijacked

pixelsoul

hey thanks,

Ya that had sort of crossed my mind also, but was not sure if that was really needed or if there were other forms of security that would not require any extra user interaction. This would however be truly a secure mail form to make someone put in a string of characters from an image.

thanks again.