How do spammers get my .asp email?

Discussion in 'privacy problems' started by tonyseeking, Nov 25, 2008.

Thread Status:
Not open for further replies.
  1. tonyseeking

    tonyseeking Former Poster

    Joined:
    Nov 12, 2008
    Posts:
    406
    How do spammers get my email address that is in .asp and only written on my server hardrive and not seen in the pages code?
     
  2. kC_

    kC_ Registered Member

    Joined:
    Apr 6, 2007
    Posts:
    452
    maybe its just been used/sold by some company that have your email address for marketing purposes
     
  3. tonyseeking

    tonyseeking Former Poster

    Joined:
    Nov 12, 2008
    Posts:
    406
    Everytime I change the email address, I immediately get spammed again.
     
  4. tesk

    tesk Registered Member

    Joined:
    Aug 9, 2007
    Posts:
    100
    It is funny. I have 5 emails adresses.

    1 for spam - and various free offers - I recieve 3000 spam-mails pr month.
    The 4 other is personal and I use them all. But they are not receiving spam.

    One of my emailadresses are even posted on public forums and you can search on google for it. That is funny that someone is getting spammed all the time and others are not receiving anything. :)
     
  5. tonyseeking

    tonyseeking Former Poster

    Joined:
    Nov 12, 2008
    Posts:
    406
    What is the solution?
     
  6. tonyseeking

    tonyseeking Former Poster

    Joined:
    Nov 12, 2008
    Posts:
    406
    What's funny about it? :doubt:
     
  7. mizar

    mizar Registered Member

    Joined:
    Jul 26, 2006
    Posts:
    31
    You should protect your form from automatic submissions via a Captcha, e.g. http://recaptcha.net/whyrecaptcha.html

    And also sanitize/validate the user input otherwise spammers may use your form to insert their own email message and send it to many other addresses via your script.
     
  8. vijayind

    vijayind Registered Member

    Joined:
    Aug 9, 2008
    Posts:
    1,413
    If you got it in code and they still manage to find it, it probably means that they somehow are able to peer into your server-side code.

    I suggest running some web vulnerability scanner to check for common loopholes, which may have been used to compromise your code.

    In the past I have used, Acunetix when I was still active in coding. But now there are many more choices:
    http://sectools.org/web-scanners.html
     
  9. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,918
    Location:
    U.S.A.
    If that .asp page is called to action by a form on an HTML page, anyone can find the name of the page (usually at the start of the form coding) via Source view and using a Web editor, can download it and see the embedded email address.

    If the .asp page has no connection whatsoever to an existing HTML page, residing alone inside the server, then the server has been compromised. Change the server's User ID and password immediately.
     
Loading...
Thread Status:
Not open for further replies.