Email Injection Protection


#1

Does anyone have any suggestions for protecting against email injection
attacks in Rails?

Thanks,
Jeff


#2

Specifically, I’m referring to attacks where someone injects form input
with additional headers (such as %0Abcc:) that allow them to use the
targeted server to send spam.


#3

Check out the ‘validate_request’ plugin.

_Kevin