How to prevent malicious submission and how to prevent malicious submission and use session verification. The verification code is too unfriendly. Or, after the submission is successful, the header () is directed to a new website ., The verification code can only be submitted from this site ., After the submission is successful, can the header () and CSDN be maliciously submitted ?, Verify it, but also SESSION... how to prevent malicious submission
How to prevent malicious submission
------ Solution --------------------
Use session verification. The verification code is too unfriendly.
Or, after the submission is successful, the header () is directed to a new URL.
------ Solution --------------------
The verification code can only be submitted from this site.
------ Solution --------------------
After the submission is successful, header ()
------ Solution --------------------
Can CSDN be maliciously submitted?
------ Solution --------------------
Verify it. you need to try SESSION... LS again.
------ Solution --------------------
Verification + session ~
------ Solution --------------------
There are several methods
1. Certification speech, hehe.
2. Refrence is used to determine whether a request from the site is sent.
3. Verification code.
1. what is the comparison between..., huh, and 2? which refrence can be forged? 3. Lack of human nature,
Each has its own advantages and disadvantages.
In this case, I add a system authentication, which is automatically changed every day. the content is the same and cannot be submitted. the continuous time interval is too short to be submitted. please wait and see if you have any good solutions.
------ Solution --------------------
Cookie + timestamp
------ Solution --------------------
The verification code can only be submitted from this site.
This is useless. Referer can be forged. And it's easy
------ Solution --------------------
Generally, it is a verification code.
------ Solution --------------------
The consecutive time interval is too short to be submitted. after clearing the cookie, you can submit it again. it is best to write the data to the database, log on first, and record the last submission time, so as to judge whether malicious submissions are required.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.