Form Spam

[dataferret]

For the past two days some **&**cker (Insert your own expletive here) has been trying to hijack my forms and registering support tickets. Below is an example of the crap they are trying to send. Clearly they are looking for ways to breach the system.

 

I doubt there is a way to stop them but is there a way to protect the forms any more than already built into the system?

 

Example of one of five tickets created in past few minutes:

 

Client: jiffy lube houston. tx

Department: Hosting Support

Subject: vlXFmGugFSKcYCI

Priority: Medium

 

[this actually helps them by posting all the links in a forum that receives attention from Google, so removed]

 

----------------------------

IP Address: 24.201.132.58

 

You can respond to this ticket by simply replying to this email or by logging into the administration area.

[Shaun]

This could also just be spam coming in via your email parser.

[chickendippers]

Have you enabled captcha?

[dataferret]

This is definitely being done via the form and it is being done manually due to the low volume of tickets being created. I have not enabled captcha because I wanted to make it easy for people to submit tickets. I hate Hackers and Spammers I really do!!!!

[ckh]

I had the same problem so I enabled the captcha for people that weren't logged in and problem went away. I don't think it's too much of an inconvenience to have people log in if they want to avoid the captcha.

[dataferret]

Thanks for the tips. I have enabled captcha as suggested. Hopefully this will solve the problem.

[merlinpa1969]

talking to our clients captcha is expected anymore