Send mail using PHP and the mail() function is easy enough, but you still need to make sure that user input is “screened” before it is used to actually send the email. Don’t get caught in the trap on simply grabbing user input and feeding it to the mail() function, because as I said, if a user knows a combination of Unix shell meta-characters then they can easily compromise the security of your web server -– and you will be liable for it. Not your web host!
| DISCLAIMER: The content provided in this article is not warranted or guaranteed by Developer Shed, Inc. The content provided is intended for entertainment and/or educational purposes in order to introduce to the reader key ideas, concepts, and/or product reviews. As such it is incumbent upon the reader to employ real-world tactics for security and implementation of best practices. We are not liable for any negative consequences that may result from implementing any information covered in our articles or tutorials. If this is a hardware review, it is not recommended to open and/or modify your hardware. |