In fact, today the sphere of computer crimes is a weak place in the legislation of the Russian Federation (and indeed in the world, by and large too) and so far not noticeable significant changes in this area.
At the moment we have three fundamental articles of the Criminal Code related directly to this area.
Chapter 28 of the Criminal Code of the Russian Federation .
Computer crimes
Article 272. Illegal access to computer information
Article 273. Creation, use and distribution of computer malware.
Article 274. Violation of the rules for operating a computer, computer system or their network
And an additional amendment to the federal law "On Advertising" dated March 13, 2006 No. 38-, introduced on July 1, 2007 :
Section 18. Advertising Distributed by Telecommunication Networks and Placed on Mailings
Thus, this action committed by a criminal falls under the effect of Article 274. Violation of the rules for operating a computer, computer system or their network, because with a sufficient number of requests, so-called DDoS-attack, entailing
(quote: the blocking of computer-protected information by law) and the POSSIBLE punishment, in the form of
(quote: deprivation of the right to occupy certain positions or engage in certain activities for up to five years, or compulsory work for a period of one hundred eighty to two hundred and forty hours, or restraint of liberty for up to two years.)
But in this particular case, the case will be terminated almost immediately, due to the actual absence of corpus delicti, since even if a suspect’s PC is withdrawn, it will be impossible to find traces of malicious actions that could not be described by the imperfections of this particular software installed on that PC.
Even if the injured party insists on continuing the investigation, it will be necessary with 100% accuracy to recreate a situation in which a similar situation may occur, as well as send a request to the software developer who most likely caused the crash and the software developers who directly interact with it. because the situation was not necessarily or can be caused only by one of the programs, and not by the error of their interaction. And this, in turn, may take more than one and not two years. Therefore, it is simply not possible to punish the criminal.
Ajax
Here are a few of them:
AJAX contact form - [ Description ] [ Demo ]
An AJAX contact form - [ Description ] [ Demo ]
Ajax.Form.Mootools - [ Description + Demo ]
Good: many ready-made examples; the message is sent without reloading the page;
Bad: if the user has javascript disabled, the form will not work.
Redirect.
After sending the message - instant redirect to any other page, for example, to a page with a form. Above the form you can display a message that the letter has been sent.
This can be done in several ways, the most clumsy is through META tags:
<meta http-equiv = "refresh" content = "0; url = index.html">
Good: works, and in most cases helps;
Bad: this solution has disgusting usability.
Work with the database.
The form sends the message not to the mailbox, but adds it to the database. Accordingly, it is possible to cut spam attempts simply and unpretentiously. For example, a record is not made to the database if the content completely matches the content of the previous message, provided that the senders have the same IP address, or from the same subnet. Here you can think of a lot of options. Messages from the feedback form can be integrated, for example, with CRM.
Good: in my opinion a very good defense;
It’s bad: the database is required, the script’s running time increases, the capacity requirements increase (if the site is popular, especially), you can still be deceived.
Cookie.
When you click on the "send" button, you can record a cookie to the browser, in the presence of which you can only send the message again after a while.
Well: the way works, the potential amount of spam decreases;
Bad: cookies can be disabled (specifically or not - but you will not prohibit sending a message just because cookies are disabled), cookies can be erased automatically.
Captcha.
Captcha (if it is not a curve) will save from spam through a feedback form.
Links will help you:
reCaptcha
CAPTCHA.ru
Cryptographp
w3captcha
Good: effective way;
The bad thing is that I personally am not comfortable with captcha, especially complex captcha can be recognized and circumvented.
Source: https://habr.com/ru/post/21934/