-
- 25 Posts
Hello,
My company's website uses MODx 1.0.2 as its backend. On the site, the emails are place as text which is very easy for bots to scan and send spam mail. As web developer now on this company, I believe that the correct way is to implement a contact form where the emails are invisible and can be sent directly from the site without bots being able to scan for emails.
Thank you
-
- 24,544 Posts
You might take a look at SPForm. It has a number of anti-spam measures as options.
-
- 25 Posts
Well, in your personal opinions, which should I use SPForm or the emo package?
SPForm takes a minute or two to implement while with the emo package I really basically do nothing excpet extract and copy/paste configuration.
Would use both: Contact Form for direct spam protection and emo for javascript email obfuscation (not the often suggested hexadecimal or unicode encoding obfuscation) for the mail addresses that have to stay in the code.
-
- 24,544 Posts
FYI, with SPForm, there are no email addresses in the source code, though I don't think it would hurt to obfuscate them.
That version of MODx has known security issues that are being exploited. You should upgrade, or at least patch your version.
http://forums.modx.com/board/8/security-notices
It's a good idea to subscribe to the security notices mailing list.
http://forums.modx.com/thread/251/security-notice-subscription-options#dis-post-1649