markus_omega
Gebruiker
- Lid geworden
- 23 apr 2007
- Berichten
- 56
sinds kort word mijn website belaagt door spamm. en heeft als gevolg dat mijn gasten boek vol komt te staan met spam. dit is zeer iritant. en ben all een paar weken bezig om van die spam af tekomen. maar dit is tot nu toe nog niet gelukt. heeft iemand misschien een idee hoe ik er van af kan komen?
hier is de code van het gastenboek.
hier is de code van het gastenboek.
PHP:
<link href="css/guestbook.css" rel="stylesheet" type="text/css" />
<style type="text/css">
<!--
body {
background-color: #CCCCCC;
}
-->
</style>
<script type="text/JavaScript">
<!--
function MM_findObj(n, d) { //v4.01
var p,i,x; if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);
if(!x && d.getElementById) x=d.getElementById(n); return x;
}
function MM_validateForm() { //v4.0
var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments;
for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=MM_findObj(args[i]);
if (val) { nm=val.name; if ((val=val.value)!="") {
if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
if (p<1 || p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n';
} else if (test!='R') { num = parseFloat(val);
if (isNaN(val)) errors+='- '+nm+' must contain a number.\n';
if (test.indexOf('inRange') != -1) { p=test.indexOf(':');
min=test.substring(8,p); max=test.substring(p+1);
if (num<min || max<num) errors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n';
} } } else if (test.charAt(0) == 'R') errors += '- '+nm+' is required.\n'; }
} if (errors) alert('The following error(s) occurred:\n'+errors);
document.MM_returnValue = (errors == '');
}
//-->
</script>
<div id="sign_guestbook">
<link href="css/guestbook.css" rel="stylesheet" type="text/css" />
<div id="header"></div>
<p> </p>
<table width="400" border="0" align="center" cellpadding="0" cellspacing="1" bgcolor="#CCCCCC">
<tr>
<form id="form1" name="form1" method="post" action="addguestbook_001.php">
<td>
<table width="400" border="0" cellpadding="3" cellspacing="1" bgcolor="#FFFFFF">
<tr>
<td width="117" bgcolor="#CCCCCC">Name</td>
<td width="14" bgcolor="#CCCCCC">:</td>
<td width="357" bgcolor="#CCCCCC"><input name="name" type="text" id="name" size="40" /></td>
</tr>
<tr>
<td bgcolor="#CCCCCC">Email</td>
<td bgcolor="#CCCCCC">:</td>
<td bgcolor="#CCCCCC"><input name="email" type="text" id="email" size="40" /></td>
</tr>
<tr>
<td valign="top" bgcolor="#CCCCCC">Comment</td>
<td valign="top" bgcolor="#CCCCCC">:</td>
<td bgcolor="#CCCCCC"><textarea name="comment" cols="40" rows="3" id="comment"></textarea></td>
</tr>
<tr>
<td bgcolor="#CCCCCC"> </td>
<td bgcolor="#CCCCCC"> </td>
<td bgcolor="#CCCCCC"><input name="Submit" type="submit" onclick="MM_validateForm('name','','R','email','','RisEmail','comment','','R');return document.MM_returnValue" value="Submit" />
<input type="reset" name="Submit2" value="Reset" /></td>
</tr>
</table>
</td>
</form>
</tr>
</table>
<table width="400" border="0" align="center" cellpadding="3" cellspacing="0">
<tr>
<td><strong><a href="viewguestbook_001.php"></a> </strong></td>
</tr>
</table> </div>
<div id="view_guestbook"><br>
<?php
$host="localhost"; // Host name
$username="soswe3_all"; // Mysql username
$password="allvisitors"; // Mysql password
$db_name="soswe3_guestbook"; // Database name
$tbl_name="guestbook"; // Table name
// Connect to server and select database.
$dbh=mysql_connect ("localhost", "soswe3_all", "allvisitors") or die ('I cannot connect to the database because: ' . mysql_error());
mysql_select_db ("soswe3_guestbook");
$sql="SELECT * FROM $tbl_name";
$result = mysql_query($sql) or die('ERROR! '.mysql_error()."<br>$sql<br>\n");
while($rows=mysql_fetch_array($result)){
?>
<table width="400" border="0" align="center" cellpadding="0" cellspacing="1" bgcolor="#CCCCCC">
<tr>
<td><table width="400" border="0" cellpadding="3" cellspacing="1" bgcolor="#FFFFFF">
<tr>
<td width="117" bgcolor="#CCCCCC">Name</td>
<td width="14" bgcolor="#CCCCCC">:</td>
<td width="357" bgcolor="#CCCCCC"><? echo $rows['name']; ?></td>
</tr>
<tr>
<td bgcolor="#CCCCCC">Email</td>
<td bgcolor="#CCCCCC">:</td>
<td bgcolor="#CCCCCC"><? echo $rows['email']; ?></td>
</tr>
<tr>
<td valign="top" bgcolor="#CCCCCC">Date/Time </td>
<td valign="top" bgcolor="#CCCCCC">:</td>
<td bgcolor="#CCCCCC"><? echo $rows['datetime']; ?></td>
</tr>
<tr>
<td valign="top" bgcolor="#CCCCCC">Comment</td>
<td valign="top" bgcolor="#CCCCCC">:</td>
<td bgcolor="#CCCCCC"><? echo $rows['comment']; ?></td>
</tr>
</table></td>
</tr>
</table>
<BR>
<?
}
mysql_close(); //close database
?> </div>
PHP:
<?php
$host="localhost"; // Host name
$username="soswe3_all"; // Mysql username
$password="allvisitors"; // Mysql password
$db_name="soswe3_guestbook"; // Database name
$tbl_name="guestbook"; // Table name
// Connect to server and select database.
$dbh=mysql_connect ("localhost", "soswe3_all", "allvisitors") or die ('I cannot connect to the database because: ' . mysql_error());
mysql_select_db ("soswe3_guestbook");
$datetime=date("y-m-d h:i:s"); //date time
$sql="INSERT INTO $tbl_name(name, email, comment, datetime, ip)VALUES('$_POST[name]', '$_POST[email]', '$_POST[comment]', '$datetime', '$_SERVER[REMOTE_ADDR]')";
$result = mysql_query($sql) or die('SQL error; '.mysql_error()."<br>$sql<br>");
//check if query successful
if($result){
echo "Successful";
echo "<BR>";
echo "<a href='guestbook_001.php'>View guestbook</a>"; // link to view guestbook page
}
else {
echo "ERROR";
}
mysql_close();
?>
<meta http-equiv="refresh"content="0;URL=http://www.sosweetsims.com/guestbook_001.php"><style type="text/css">
<!--
body {
background-color: #CCCCCC;
}
-->
</style>
