: Can spambots access pages available to only registered, authenticated users? I have a web application where users register and are activated via an email sent to the email address they supplied.
I have a web application where users register and are activated via an email sent to the email address they supplied.
Then there are pages that are only visible to registered users (non-user access is restricted by checking for a User Object in the session).
On these restricted pages I would like to display a listing that includes the email addresses of other users.
Do I still need to take precautions to obfuscate the email addresses so that they are protected from spam bots and the like? Or is it enough that the page isn't accessible to non-authenticated users?
Edit: The emails on my site are not particularly valuable and it is not a site with very sensitive material. I just don't want the users to be bothered with spam.
More posts by @Murray155
1 Comments
Sorted by latest first Latest Oldest Best
When handling user data, especially in a format where it will subsequently be visible to others, you are better off taking more precautions against spam. Spambots are getting better and better at harvesting data, and if they identify an easy way to access such data via your site, you're likely to become a target.
Not only is this bad for your users but it's also bad for your site, as frequent bot traffic can put a load on your servers and slow the site down.
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.