Ave, Curt, thanks for your response. > Is this a common guestbook, like a 3rd party tool you got and added > to the web site? If so, do they already have a solution in place > with an add-on or such. No, actually it's a script I have written myself from scratch. And unfortunately (or fortunately perhaps), I haven't ever run into this problem before. > You really want to use $_SERVER['REMOTE_ADDR']; That is should, I agree! > A common method (now adays) is have the form that is being posted > provide a challange/response method (like CAPTCHA) to verify that > someone is actually sitting there filling out the form instead of a > script doing the work. > > One of the problems with this method is well it limits your > "visually" impared audience from being able to add to the > guestbook, since it requires a visual response to the challenge. > > Another method is to require javascript for a challenge response > method, this of course limits your audience to those who have > javascript enabled, and I'm not sure if it really 'visually > impared' friendly. I have implemented both those methods in different scripts I have written and maintain across different websites. Visual Confirmation using Image Verification and JavaScript Confirmation. However, I honestly don't want to add such an 'extra' step in my Guestbook for users who simply wish to put in a nice comment about the site, at least not at this point, which is why I do want to stay away from these methods for the Guestbook for now. Let me try a few other suggestions first and see how it goes, and then I'll decide if I need to add more capabilities/security to the Guestbook. Thanks for your insight, always brain-enhancing. Rahul S. Johari Coordinator, Internet & Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: rahul@xxxxxxxxxxxxxxxxxxxx http://www.informed-sources.com
