ALTS.NET Technical Support Virtual Private Server

ALTS.net Main Menu

Technical Support
Virtual Private Server
Virtual Private Server v2

PGP FormMail CGI

PGP FormMail combines the features of FormMail and PGP (Pretty Good Privacy), into a single, secure tool for sending encrypted E-Mail from web-based forms (such as an order form).

Installation

Connect to your Virtual Private Server via SSH or Telnet and do the following.

  1. Install PGP 5.0.

  2. Install the PGP FormMail software by running the following command:

    % vinstall pgp5formmail

    This command installs two files, pgp5formmail.pl and pgp5formmail.README.txt, into your ~/www/cgi-bin directory.

Configuration

Set the referer information such that only your server will have privileges to use the PGP FormMail CGI. Near the top of the pgp5formmail.pl file you will find the following line:

@referers = ('YOUR-DOMAIN.NAME','YOUR.IP.ADD.RESS');

Substitute your domain name and server IP address for the values YOUR-DOMAIN.NAME and YOUR.IP.ADD.RESS respectively.

Usage

Create a form that you would like the contents mailed to some address. The form should include the following fields (at the very least):

  • recipient = specifies who mail is sent to

  • pgpuserid = specifies your PGP user ID

Other optional fields can also be used to enhance the operation of PGP FormMail for you site, for example:

  • subject = specify the subject included in e-mail sent back to you

  • email = allow the user to specify a return e-mail address

  • realname = allow the user to input their real name

  • redirect = URL of page to redirect to instead of echoing form input

  • required = list of field names that are required input (comma delimited)

Several other fields are supported, please see the pgp5formmail.README document for a complete presentation of the supported fields.

The following is an example of what your HTML form source could look like:

<form method="POST" action="/cgi-bin/pgp5formmail.pl">
  <input type="hidden" name="recipient" value="order@yourdomain.com">
  <input type="hidden" name="pgpuserid" value="YOUR-USER-ID">
  <input type="hidden" name="subject" value="Order Request">
  <input type="hidden" name="required" value="realname,username,phone">
  
  <h3>Please Enter Your Name:</h3>
  <input name="realname" size="40">
  
  <h3>Please Enter Your Email Address:</h3>
  <input name="username" size="40">
  
  <h3>Please Enter Your Phone Number:</h3>
  <input name="phone" size="40">
.
.
.
  <input type="submit" value="Submit">
  <input type="reset" value="Reset">
</form>

YOUR-USER-ID is the user ID for your public key. If your user ID contains characters that could be misinterpreted by a web browser, such as '<' and '>', you will want to replace these characters with the proper escape sequences. For example if your user ID is:

John Q. Smith <12345.6789@compuserve.com>

Represent the user ID with the following string (note the &lt; and &gt; escape sequences):

John Q. Smith &lt;12345.6789@compuserve.com&gt;

Send mail to: mailto:webmaster@littletechshoppe.com with questions or comments about this web site.

Copyright © 1996-2004. A Little Technology Shoppe, LLC (alts.net®). All rights reserved. Netscape and the Netscape Logo are registered trademarks of Netscape Communications Corp. Microsoft is a registered trademark and the Microsoft Internet Explorer Logo is a trademark of Microsoft. All trademarks are owned by the respective company or A Little Technology Shoppe, LLC.