单个表单提交网页的安全性 [英] Security for single form submission web page

问题描述

大家好，

我有一个表单提交页面，需要发布到我们公司的公共网站。表单本身很简单，基本上收集信息，并在提交时发送确认电子邮件给两个公司电子邮件地址和CC的发件人。我需要建议如何最好地保证它的安全性？我有一个简单的代码来处理垃圾邮件程序，但想检查是否有办法使其更安全（用户身份验证不一定需要...但如果这是使系统安全的唯一选项，则会实现它）。 。任何想法，欢迎提出建议。谢谢。

Hi all,
I have a form submission page that needs to be posted on to our company's public website.The form itself is simple, basically gathers info and on submission sends a confirmation email to both company email address and the CC's sender. I need suggestions as to how best I can make it secure? I have a simple piece of code that handles spambots, but wanted to check if there is a way to make it more secure (User authentication is not necessarily reqd..but would implement it if that the only option to make the system secure)..Any thoughts, suggestions are welcome. Thanks.

推荐答案

如评论中所述，您可以使用验证码来防范垃圾邮件发送者，然后为了防止SQL注入，请确保在编写时使用sql参数信息到数据库。

As mentioned in the comments, you can use captcha for protection against spammers and then for protection against SQL injection make sure to use sql parameters when you write the information to the database.

这篇关于单个表单提交网页的安全性的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！