Results 1 to 2 of 2

Thread: derive_fields: unknown value specification ""

  1. #1
    Join Date
    Dec 2013
    Posts
    1

    Default derive_fields: unknown value specification ""

    derive_fields: unknown value specification ""
    Seems every time getting this, the IP address is from China

    Form works fine when filled out by a person.

    <input type="hidden" name="csvcolumns" value="email,realname,telephone,user_subject,comments,recipients,company,website,this_form,thedate,thetime,ipaddr,referer">

    <input type="hidden" name="derive_fields" value="subject = %'Contact <?php echo $servnodots; ?> '%.%if(realname;realname;%'No Name Given'%)%.%' <'%.%if(email;email;%'No Email Given'%)%.%'>'%, replyto = %if(realname;realname;%'No Name Given'%)%.%' <'%.%if(email;email;%'No Email Given'%)%.%'>'%, formpage = this_form, ipaddr = <?php echo $_SERVER['REMOTE_ADDR']?>, thedate = %fullyear%.%'-'%.%moy0%.%'-'%.%dom0%+%dayname%, thetime = %time%+%tz%">

    Valid CSV output (my filling out the form):
    "george@mydomain.com" "George Lerner" "" "test" "testing ttformmail.php version 8.36" "George" "Mountain Valley Center" "http://www.mountainvalleycenter.com" "/shared/contact.php" "2013-12-01 Sunday" "01:57:29 -0500" "myipaddress" "unknown"

    Spammer CSV output:
    "yyhhzhnhn@gmail.com" "canada goose jakker bergen" "http://fnmuseet.dk/canadagoose-no.html" "canada goose jakker bergen" "<a href='http://hotelwestertoren.nl/canadagoose-no.html'>canada goose mørkeblå</a> canada goose tilbud" "" "Mountain Valley Center" "http://www.mountainvalleycenter.com" "/biomat-faq.php" "" "" "" "unknown"

    With spammers, these fields are (at least sometimes) empty: thedate, thetime, ipaddr
    How can these be empty?

    (The recipients field is also empty, there are no empty options on the drop-down field, another sign the form was "filled out" by software. I have changed that field to "required".)

  2. #2
    Join Date
    Dec 2003
    Posts
    3,980

    Default Re: derive_fields: unknown value specification ""

    Hi,

    Spammers don't go through your form to submit it. Their software submits directly to FormMail.

    Sometimes they'll parse your HTML form to figure out field names.

    Spammers can trigger errors, and that's why you're seeing these alerts.

    When you're developing your form, you need these alerts so that you can find errors easily. But, in production, it's a fine line between getting notified of user and other problems, and being annoyed by spammers.

    FormMail will ignore most errors if you set ALERT_ON_USER_ERROR to false and ATTACK_DETECTION_IGNORE_ERRORS to true.

    Remember to set these back to their default when you're doing further development on your forms.
    Last edited by russellr; 03-Dec-2013 at 07:37 AM. Reason: typo
    Russell Robinson - Author of Tectite FormMail and FormMailDecoder
    http://www.tectite.com/

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Form is sent to email with "unknown date"
    By Reesa in forum Community Support
    Replies: 6
    Last Post: 26-May-2011, 10:40 PM
  2. Replies: 5
    Last Post: 06-Jan-2009, 02:52 AM
  3. emails have "Unknown Date"
    By schnapps in forum Community Support
    Replies: 0
    Last Post: 23-Sep-2007, 07:57 PM
  4. False Positive: The fields "zip" and "zip" contained duplicate data [M143]
    By BLynch in forum FormMail Subscription Support
    Replies: 2
    Last Post: 08-Aug-2007, 08:25 PM
  5. Error "derive_fields specifications are invalid "
    By Mystic_Bovine in forum FormMail Subscription Support
    Replies: 6
    Last Post: 29-Aug-2005, 08:50 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •