u-nikos Posted February 27, 2013 Posted February 27, 2013 Hey all, Our website is targeted by a spambot, and now we're getting hundreds of CSRF Exception e-mails. I do like the Exception logging and the CSRF protection, so would it be possible to only disable the CSRF notifications? Greetings, Niek
Pete Posted February 27, 2013 Posted February 27, 2013 I think you may have already read this, but just in case: http://processwire.com/talk/topic/1621-sudden-death
ryan Posted February 28, 2013 Posted February 28, 2013 I do like the Exception logging and the CSRF protection, so would it be possible to only disable the CSRF notifications? Disabling CSRF protection like in the link Pete provided is one way to do it. But if you want to maintain CSRF protection, a better way to go might be to just setup an email filter so that those messages go to your trash automatically. But I will go ahead and add a CSRF specific Exception class to 2.3 so that you can use catch to modify the behavior. 1
u-nikos Posted March 1, 2013 Author Posted March 1, 2013 Disabling CSRF protection like in the link Pete provided is one way to do it. But if you want to maintain CSRF protection, a better way to go might be to just setup an email filter so that those messages go to your trash automatically. But I will go ahead and add a CSRF specific Exception class to 2.3 so that you can use catch to modify the behavior. Thanks Ryan, that sounds like a good solution!
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now