Is it okay to use dns_get_record to validate a url? That is, just to prove it exists if someone uses it in an email address or gives a link?
Thread: Dns_get_record
-
Plays with fireDevshed Novice (500 - 999 posts)
- Join Date
- Aug 2003
- Location
- Barsoom
- Posts
- 942
- Rep Power
- 96
Dns_get_record
“Be ashamed to die until you have won some victory for humanity.” -- Horace Mann
"...all men are created equal." -- US Declaration of Independence -
SarckyDevshed Supreme Being (6500+ posts)
- Join Date
- Oct 2006
- Location
- Pennsylvania, USA
- Posts
- 10,872
- Rep Power
- 6351
It's easier just to send an activation email to the account. Hotmail exists. sicunwe4cn2487vno48vn4@hotmail.com doesn't.
HEY! YOU! Read the New User Guide and Forum Rules
"They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin
"The greatest tragedy of this changing society is that people who never knew what it was like before will simply assume that this is the way things are supposed to be." -2600 Magazine, Fall 2002
Think we're being rude? Maybe you asked a bad question or you're a Help Vampire. Trying to argue intelligently? Please read this. -
Plays with fireDevshed Novice (500 - 999 posts)
- Join Date
- Aug 2003
- Location
- Barsoom
- Posts
- 942
- Rep Power
- 96
In this case I'd only look for hotmail.com and truncate anything before the @.
Just looking for ways to sniff out asldjfassdflj.com kind of addresses.“Be ashamed to die until you have won some victory for humanity.” -- Horace Mann
"...all men are created equal." -- US Declaration of Independence -
SarckyDevshed Supreme Being (6500+ posts)
- Join Date
- Oct 2006
- Location
- Pennsylvania, USA
- Posts
- 10,872
- Rep Power
- 6351
Why are you trying to sniff those out? If I can't make dan@sdcunwecwncvwjn.com, I'll just make dan-sdcunwecwncvwjn@hotmail.com
HEY! YOU! Read the New User Guide and Forum Rules
"They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin
"The greatest tragedy of this changing society is that people who never knew what it was like before will simply assume that this is the way things are supposed to be." -2600 Magazine, Fall 2002
Think we're being rude? Maybe you asked a bad question or you're a Help Vampire. Trying to argue intelligently? Please read this. -
Plays with fireDevshed Novice (500 - 999 posts)
- Join Date
- Aug 2003
- Location
- Barsoom
- Posts
- 942
- Rep Power
- 96
I'm not just looking for email addresses. I also need to find fake urls. This is for the forms on a site when people are asked to provide links to their facebook, twitter or other sites.
I want to trap bots and others from trying to enter asldjflajf.com as their facebook page.
I know PHP has a lot of functions for this, but I really like the info I get from this function vs checkdnsrr or something.“Be ashamed to die until you have won some victory for humanity.” -- Horace Mann
"...all men are created equal." -- US Declaration of Independence -
- Join Date
- Mar 2007
- Location
- Washington, USA
- Posts
- 14,007
- Rep Power
- 9398
Stupid bots you can filter out but, as pointed out, it's absolutely trivial to get around this.
First I'd do some research into what all qualifies you to receive mail. An MX record, obviously, but that's not required: I assume A, AAAA, and CNAME all work too, but are there others? Then dns_get_record for everything and make sure there's at least one of those records in the list returned. -
SarckyDevshed Supreme Being (6500+ posts)
- Join Date
- Oct 2006
- Location
- Pennsylvania, USA
- Posts
- 10,872
- Rep Power
- 6351
But what I'm saying is: You're going to do all this work just so that bot authors have to put www.facebook.com/asldjflajf instead of asldjflajf.com. The URL is still fake. You're wasting your effort. A captcha is ten times more effective (and ten times easier) than trying to do real-time validation of cname records.HEY! YOU! Read the New User Guide and Forum Rules
"They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin
"The greatest tragedy of this changing society is that people who never knew what it was like before will simply assume that this is the way things are supposed to be." -2600 Magazine, Fall 2002
Think we're being rude? Maybe you asked a bad question or you're a Help Vampire. Trying to argue intelligently? Please read this. -
No Profile PictureLost in codeDevshed Supreme Being (6500+ posts)
- Join Date
- Dec 2004
- Posts
- 8,317
- Rep Power
- 7170
Is it OK? Sure, but just keep in mind what the result actually means: it means that the domain is registered and DNS records exist for the host name. It doesn't mean the URL is syntactically valid, it doesn't mean any resource is hosted at that URL, it doesn't mean a web server is running on the host, it doesn't mean an email account is valid, and it doesn't mean a mail server is running on the host. So if your goal is to check whether DNS records exist for the host then it will accomplish what you want.
However, I agree that it's not worth the effort.
February 5th, 2013, 11:25 AM
Reply With Quote
February 5th, 2013, 12:52 PM
February 5th, 2013, 12:55 PM
February 5th, 2013, 01:14 PM
February 5th, 2013, 01:21 PM
February 5th, 2013, 02:10 PM
February 5th, 2013, 03:52 PM
February 5th, 2013, 05:52 PM
