How to prevent malicious submission

Source: Internet
Author: User
How to prevent malicious submission and how to prevent malicious submission and use session verification. The verification code is too unfriendly. Or, after the submission is successful, the header () is directed to a new website ., The verification code can only be submitted from this site ., After the submission is successful, can the header () and CSDN be maliciously submitted ?, Verify it, but also SESSION... how to prevent malicious submission
How to prevent malicious submission

------ Solution --------------------
Use session verification. The verification code is too unfriendly.

Or, after the submission is successful, the header () is directed to a new URL.
------ Solution --------------------
The verification code can only be submitted from this site.
------ Solution --------------------
After the submission is successful, header ()
------ Solution --------------------
Can CSDN be maliciously submitted?
------ Solution --------------------
Verify it. you need to try SESSION... LS again.
------ Solution --------------------
Verification + session ~
------ Solution --------------------
There are several methods

1. Certification speech, hehe.
2. Refrence is used to determine whether a request from the site is sent.
3. Verification code.
1. what is the comparison between..., huh, and 2? which refrence can be forged? 3. Lack of human nature,
Each has its own advantages and disadvantages.

In this case, I add a system authentication, which is automatically changed every day. the content is the same and cannot be submitted. the continuous time interval is too short to be submitted. please wait and see if you have any good solutions.
------ Solution --------------------
Cookie + timestamp
------ Solution --------------------
The verification code can only be submitted from this site.

This is useless. Referer can be forged. And it's easy
------ Solution --------------------
Generally, it is a verification code.
------ Solution --------------------
The consecutive time interval is too short to be submitted. after clearing the cookie, you can submit it again. it is best to write the data to the database, log on first, and record the last submission time, so as to judge whether malicious submissions are required.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.