Forum: Your Suggestions

I would like to request adding logging of failed form submissions to FormMail. I know currently FormMail will send an e-mail alert in the event of a failed form submission but if that e-mail message isn't received, due to some delivery issue, there will be no other log of the failed form...

I *finally* managed to get logging working with FormMail. All of the info I needed was documented in the FormMail documentation but there is one connection that is currently missing. The "LOGDIR" documentation is here: http://www.tectite.com/fmdoc/logdir.php and describes how to setup the...

TL;DR: Image recognition software is becoming more prevalent with bots. Are there plans to integrate a more sophisticated Captcha-esque system, besides Reverse Captcha? The Whole Story: Even with Captcha on my forms, I'm still getting spam. I was trying to see if updating to reCaptcha would give...

1. When adding a new field, either allow it to be inserted at a selected position (e.g. after the currently selected field), or leave the cursor on the new field after adding it or moving it up. At present it is cumbersome to add a field early in the form, as it is initially placed at the end, and...

Maybe a too specific suggestion but could be a good thing to have an option to send data from disabled fields. There's a thread from 2007 (http://www.tectite.com/vbforums/showthread.php?p=6001#poststop) asking for help apparently with no solution. I'm wrong? Thanks a lot.

For increased ability to read the code and speed improvements: 1. http://stackoverflow.com/questions/482202/is-there-a-performance-benefit-single-quote-vs-double-quote-in-php 2. http://stackoverflow.com/questions/13620/speed-difference-in-using-inline-strings-vs-concatenation-in-php5

How about the option to request a "Read Receipt", aka MDN - Message Disposition Notification? I believe this would require the ability to insert one or more of the following headers:- X-Confirm-Reading-To: Disposition-Notification-To: or Return-Receipt-To:

Hi there, We are running the latest version of the script and to be honest couldn't do business without it. We love it including the ability to stop spam attacks. The one problem we have is from ad posters (Specially from India). Ad posters visit the form and physically type or copy and paste...

I suggest to pass on the user info message to the attack detection URL either as a POST or GET variable. Example see below. Currently I manually changed the formmail.php code (8.23) from: Redirect(ATTACK_DETECTION_URL,GetMessage(MSG_FORM_ERROR)); to: ...

Would you like integrate something like the patch as in: http://www.tectite.com/vbforums/showthread.php?p=16960 ? This would make formmail more usefull in websites that make use of multiple languages.

Reference my post HERE: http://www.tectite.com/vbforums/showthread.php?p=19782 I have partly resolved the problem, but without a sensible explanation - in my ini file I changed the order of $TARGET_EMAIL = array("^info@mysite\.org$"); $DEF_ALERT = "errors@mysite.org" to

Hi. I was using php form for a very long time and have changed it on your product. All works perfectly. Thanks for your work.

A big thank you for your formmail script. I've been using an old cgi formmail script previously and can't believe how great your php script is. Keep up the great work. Thanks again Ben

I updated to the new version 8.16 of formmail has junk email detection features. I have been subject to this kind of attack in the past and devised a solution of my own which works quite well and I have never been bothered by form spam since I implemented it. The form spammers look for input...

Hi Russell, We've recently come across an issue with the FMBadHandler script I hope you'll update in the next version. We noticed that the values of hidden fields aren't repopulated into the HTML that the FMBadHandler php file rebuilds after an error message. I can imagine why this...

I know that formmail.php contains this comment and this is technically correct: // Note that HTTP_REFERER is easily spoofed, so there's no point in // using it for security.But a lot of spammers don't bother spoofing it, so one can filter out some spam at least and filtering a HTTP_REFERER from...

Hi Russell, I searched and searched and finally found this mention of a Captcha problem I was having that can be fixed in the formmail.PHP file. You've used the $SESSION_NAME feature in FormMail. Verifyimg.php supports this too, but CaptchaCreator doesn't.Please add a warning to the php...

Have you given any thoughts to having an Attack Detection log that would log attacks rather than send e-mails? I like knowing what kinds of attacks are happening to my forms but it is annoying getting the individual e-mails. I know you can turn them off. Just an idea.