Whole Network Most Recent TOP10 Anti-Spam Tools Malware Spam Spam News

« CAN-SPAM - a big bag of... | Main | Stop spam but don't hurt... »

Stop form spam - When CAPTCHA is not enough

Filed in archive Anti-Spam Tools by Ivy on November 09, 2006

We all have this problem, don't we? CAPTCHAs are simply not enough anymore to stop spammers from seeding your comment fields and various contact forms. Only last week we suffered a spam flood, leaving us with a sour taste in our mouths and searching for the ultimate answer.

Luckily, Internet Storm Center and its Johannes Ullrich also had similar problems, and that lot solved the problem by employing the use of invisible form fields:

"one or more fake form fields are added to the form. But style sheets are used to make them "invisible". To further confuse the attacker, the fake form fields are given names like "subject" and such suggesting to the bot that these are the form fields they are looking for. However, whenever a form is submitted with content in a "hidden" field, it is discarded. I am not talking about the classic hidden form fields that are not user changeable, but form fields that are marked with "display: none"

Smart isn't it?

Internet Storm Center cut its response form spam to a bare minimum, so I think this would be a great solution for many blogs, websites and online shops.

Permalink: Stop form spam - When CAPTCHA is not enough
Tags: spam+fight anti+spam captcha form+spam comment+spam response+spam

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/41983

Related Entries:

Stop spam in Movable Type blogs - 20 September 2006

Stop spam but don't hurt your visitors - 13 November 2006

Anti-anti-spam spam: Spam is becoming plain silly - 11 January 2007

Wish spam would just die - 27 February 2007

Sponsored Post: Spikes In Spam Put Your Business at Risk - 19 December 2007

Researcher Cracks Yahoo's CAPTCHA Software - 19 January 2008

Have an Anti Spam Strategy? - 04 March 2008

Vote for Stop form spam - When CAPTCHA is not enough:

Currently 8.25/10
1
2
3
4
5
6
7
8
9
10

Rating: 8.3 out of 8 vote(s) cast.

Add your response to Stop form spam - When CAPTCHA is not enough:

Response from: no image Anthony (Check me out!)

I have been reading up on several ways to prevent spambots from spamming web forms. I came up with a simple technique that doesn't use image validation but simple number validation. Each time a user enters my form, I generate a unique ID and a 5-7 digit number code. I save this unique ID to a database along with its associated number code. When the form is submitted, if hidden field unique ID is the same and number code you typed is correct it submits the info and deletes the record, otherwise it will assume spam and not submit info. Again, it can be broken but that come into how complex I display the 5-7 digit code. Visit: http://www.atksolutions.com/contact.php
..for an example.
So far it has worked
Anthony
http://www.atksolutions.com

Rate This:

2.5

Response from: no image Clips (Check me out!)

I have been reading up on several ways to prevent spambots from spamming web forms. I came up with a simple technique

Rate This:

2.5

Response from: no image Mark (Check me out!)

Be careful when selecting the names for fake fields. "Subject" might be ok, but "Name" will be populated by the AutoFill feature of the Google Toolbar if used and thus cause real entries to be blocked as SPAM. Web Development by Innovative Technology Solutions, Inc.
http://www.innovativetechsolutions.net

Rate This:

2.5

Response from: no image wagner (Check me out!)

Just added it to my site, let see how it goes, it is also good practice to have a form validation checking if telephone numbers are actual numbers, and email addresses are email addresses, but i personally don't like CHAPTCHA as it can cause frustration to the user.

Rate This:

2.5

Name: *

Email: (will never be shown)*

URL:

(* marked fields are required)

Notify me if more comments appear?

Subscribe to I got Spam?! newsletter? (Newsletters are sent out weekly).

Remember me

Security Code: * (Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)

We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

CW Toolbar
RSS	\| See all blog subscribe options
Google	\| What is RSS?
Yahoo!
Addthis
Bloglines
Newsletter

Advertisement - Book yours here.

Check out our Sponsored Blogs!
The Mobile Technology Weblog

You can contact Sue here!

Advertisement -
Book yours here..

Contributors (Last 90 days)
Sue Walsh (25)
This site has 418 entries and is powered by Creative Weblogging since January 2006.
Do you want to start or edit an existing blog for us and get paid? More info.
Do you want to advertise on this blog? We have great ideas!
Do you have tips for us? Send them!

Advertise with us
Learn more about our advertising options, visit our shop or give Luis a call at +1 (650) 331 8047.
NEW you can also chat with us.

Would you like to have a new interactive marketing channel for your company? Learn more about Sponsored Blogs with Creative Weblogging. See how we helped istockphoto.com and others.
Do you have a blog with more than 50k page views from the US? Let us market your blog.

Advertisement
Book yours here.

Other blogs in the same channel in the Creative Weblogging Network

Advertisement -
Book yours here..

Disclaimer
Some of the contents of this site are protected Creative Weblogging Ltd. 2004-2008.

Advertisement - Book yours here..

Tell a friend about Stop form spam - When CAPTCHA is not enough
Recipient email:*	Your email:*

(* Both email addresses are required for sending this article. They will never be shown or used for any marketing purposes)
Please enter a message which will be shown together with the article:

Security Code: (Please help us to sort out spam.)

Stop form spam - When CAPTCHA is not enough

Filed in archive Anti-Spam Tools by Ivy on November 09, 2006

Related Entries:

Vote for Stop form spam - When CAPTCHA is not enough:

Add your response to Stop form spam - When CAPTCHA is not enough:

Tell a friend about Stop form spam - When CAPTCHA is not enough

Check out our Sponsored Blogs!

Our Editors recommend

Contributors (Last 90 days)

Categories

Archives

Advertise with us

Most popular

Recent Comments

Other blogs in the same channel in the Creative Weblogging Network

Ecommerce & Internet

Disclaimer

Find more recent entries from our other publications:

The Search Engine Weblog

The Social Networking Weblog

Web 2.0

The Dating Weblog

The Hedge Funds Weblog

Networking for Pros