u-nikos Posted February 27, 2013 Share Posted February 27, 2013 Hey all, Our website is targeted by a spambot, and now we're getting hundreds of CSRF Exception e-mails. I do like the Exception logging and the CSRF protection, so would it be possible to only disable the CSRF notifications? Greetings, Niek Link to comment Share on other sites More sharing options...
Pete Posted February 27, 2013 Share Posted February 27, 2013 I think you may have already read this, but just in case: http://processwire.com/talk/topic/1621-sudden-death Link to comment Share on other sites More sharing options...
ryan Posted February 28, 2013 Share Posted February 28, 2013 I do like the Exception logging and the CSRF protection, so would it be possible to only disable the CSRF notifications? Disabling CSRF protection like in the link Pete provided is one way to do it. But if you want to maintain CSRF protection, a better way to go might be to just setup an email filter so that those messages go to your trash automatically. But I will go ahead and add a CSRF specific Exception class to 2.3 so that you can use catch to modify the behavior. 1 Link to comment Share on other sites More sharing options...
u-nikos Posted March 1, 2013 Author Share Posted March 1, 2013 Disabling CSRF protection like in the link Pete provided is one way to do it. But if you want to maintain CSRF protection, a better way to go might be to just setup an email filter so that those messages go to your trash automatically. But I will go ahead and add a CSRF specific Exception class to 2.3 so that you can use catch to modify the behavior. Thanks Ryan, that sounds like a good solution! Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now