Interesting Spam Question
Hi Everyone,
Is it valid to have forms on a site where visitors can actively inquire to receive free information and in turn, automatically add these visitors to a subscribers list without having a specific line in the form stating "Do you want to subscribe to our newsletter?"
In our terms of service it states:
"Any/all active inquiries to receive free information from our website through the use of our forms will have their contact email address placed on our subscribers email list automatically. We include specific instructions on how to unsubscribe in each newsletter for anyone who does not want to continue to receive information."
Is this valid per the spam act rules or do we need to have a specific area in each form where the visitor has to "click" to signup to receive the newsletters?
Thanks!
Busy posted this at 22:40 — 17th October 2006.
He has: 6,151 posts
Joined: May 2001
If the person is unaware they are signing up for a newsletter and receive one then they have been spammed.
Spamming is basically getting something you did not ask for.
When I make up a form that includes a newsletter option I set it to yes as default, but make it very clear there is a no option if they dont want it.
A lot of people wont unsubscribe because this is a method of being added to spam lists, instead they wil just report your spammings to spamcop etc which will get your hosts server blacklisted which doesn't usually go down well.
cpsitesaver.com posted this at 18:37 — 18th October 2006.
He has: 20 posts
Joined: Sep 2006
I think the key factor here is the "act of signup retention" on the subscribers memory. Sometimes, people do signup on subscription form, forget it after some time and when you email, they are surprised and might even get angry they will report you to Spamcop or similar blacklisting sites.
Its better to have a follow through email within 3 days after signup to remind that person that they signed up for newsletter or whatever and that they can expect emails from you anytime from that day.
Otherwise, people will forget and they will blame you for that.
shobuz99 posted this at 21:34 — 18th October 2006.
They have: 42 posts
Joined: Oct 2006
I have a question about how to STOP SPAM from coming from forms.
I maintain a site that has "comments sections. They're not blogs; but we offer the opportunity to visitors to comment on the content of the site, as well as, respond to other commentors. The comment forms are simple cgi-perl that return the comments, from the submitter, to an email address. This email address gets about 10-20 SPAM per day. The SPAM doesn't look like 'bot' SPAM, but it's possible tha it is since I don't have any special blocking features coded in the cgi-perl form. I don't know how to quite do that...
I have heard of a function called "Captcha" or something like that; where an image comes up with letters that have to be typed in. This disallows 'bots'. My concern is, what do I do about the SPAM if it's NOT 'bots'??
Any ideas on SPAM-proofing the cgi-perl forms?
Tell me what you think.
Here's an example of the SPAM that's coming from one of the forms:
"Comments : Great site!! My pages Ephedra or Ephedra bye!
Name : Doctor
Name : Doctor
Email : [email protected]
Submit : Submit"
Greg K posted this at 22:02 — 18th October 2006.
He has: 2,145 posts
Joined: Nov 2003
Fact: People sign up to receive things and then forget. Without making them go to extreme which would prevent most people from signing up in the first place, people will still forget.
Where I worked before, I have received emails from very upset people who are complaining that they have no idea about us, and don't want to be involved. What was the e-mail they were receiving that led to this? A monthly invoice from their credit card being billed (as it had been done for several months).
After calling them, talking to them, and asking them to visit the site, they suddenly remember actually signing up for the service (especially when they logged in and saw their private company data they had entered).
So it isn't just a small e-mail subscription people forget, they will even forget something they came to PURCHASE and continue to get billed for....
My advise, log as much info as you can about the signup (time/date, their ip address), do confirmation e-mails with a link that they need to visit to activate the subscription, prepare to have people complain, and when they do, give them the benfit of the doubt that they just forgot, and be as polite as possible in removing them, and offer to see log of the signup process so they "can investigate someone submitting their information". (this comes across better than a "hey, I here's proof you just forgot" message to offer them the proof).
-Greg
pcmedicplus posted this at 23:39 — 18th October 2006.
He has: 49 posts
Joined: Mar 2006
shobuz99 check this site out. I use this for my contact us page and it has stopped all the email header injection. It can easily be edited for you needs.
http://www.dagondesign.com/articles/secure-php-form-mailer-script
Aleister is currently working on the next version, but his original has worked wonder at my site.
portafire.net | spoogenet.com
shobuz99 posted this at 13:34 — 19th October 2006.
They have: 42 posts
Joined: Oct 2006
pcmedicplus,
Thanks for this! I will try it as soon as possible.
I appreciate your help.
I think this might just do the trick!
Shobuz99
shobuz99 posted this at 21:53 — 19th October 2006.
They have: 42 posts
Joined: Oct 2006
pcmedicplus
I need a little more debug help.
I got it working this p.m., after a bit.
I had to remove the HTML tags from the formmailer_verify.php file
and I did the same with the formmailer.php file.
It worked once, while I was at my desk at work.
It displayed the image number and I typed it in, submitted it,
and it sent me the email correctly. I went home.
When I got home I went to the page again, and the image nums would not display...
I did a right click on it (in Firefox 1.5.0.7) and clicked a 'View image' and
the image nums appeared. Refreshed the page and they disappeared!
I tried it again and typed in the new nums that I saw in 'View image' and
sent an email and the error message said that "No verification code generated!":confused:
What went wrong? Any debug suggestions?
I'm sure it's something I'm doing wrong. I confess I'm a bit lost.
Shobuz99
pcmedicplus posted this at 01:27 — 21st October 2006.
He has: 49 posts
Joined: Mar 2006
You have to make sure that the "VERY" first line includes the session_start code otherwise it will not work. Also check the link to the site, they have a tool to check that server supports the GD library, which I would assume your server does, seeing how you saw the image once. Leave your question on the site and Aleister will offer all the help you need. Also tell him where your hosted, as that may help him help you. Im not sure what you removed, make sure when you leave a comment for Aleister you leave a link to the page so he may look at the code. Hope this helps.
portafire.net | spoogenet.com
shobuz99 posted this at 20:51 — 21st October 2006.
They have: 42 posts
Joined: Oct 2006
Thank you.
I did put the session_start code in the first line.
I think I got messed up from Dreamweaver MX 2004.
I asked it to create a new php file and then pasted the code
into that new file, in DW edit mode.
That's what I meant when I said I removed html tags from those files.
Apparently, DW inserted them when I created a new php file. I don't know why.
I've sent a reply to Aleister, on his site's forum, with the links to each file.
Hopefully he can see what I've done wrong. It still doesn't work.
Thanks for yor help
Rick (Shobuz99)
shobuz99 posted this at 21:06 — 21st October 2006.
They have: 42 posts
Joined: Oct 2006
pcmedicplus
Update..
Ok.. Aleister figured it out.
I had my cookies disabled in my firewall settings.
(what a dumbass I am!)
That's why it would not work in either IE or FF...
Once I enabled, everything works fine.
Thanks again for all your help!
Rick (shobuz99)
pcmedicplus posted this at 21:50 — 21st October 2006.
He has: 49 posts
Joined: Mar 2006
Glad to hear you got it working.
Want to join the discussion? Create an account or log in if you already have one. Joining is fast, free and painless! We’ll even whisk you back here when you’ve finished.