Comments on: Guilty Until Proven Innocent https://j11y.io/general/guilty-until-proven-innocent/ Sun, 22 Mar 2015 15:39:22 +0000 hourly 1 https://wordpress.org/?v=5.0.13 By: Usman Bashir https://j11y.io/general/guilty-until-proven-innocent/#comment-426 Mon, 12 Jan 2009 12:53:27 +0000 https://j11y.io/?p=393#comment-426 Instead of hiding the fields using css we can use JavaScript that way it will at least buy us some time to find some new solutions to it.

]]>
By: James https://j11y.io/general/guilty-until-proven-innocent/#comment-425 Sun, 11 Jan 2009 11:35:56 +0000 https://j11y.io/?p=393#comment-425 @Alex, I can see the logic in what you’re saying but spammers and criminals are getting wiser and will soon exploit your logic.

@Shane, you’re right, it’s just annoying because in the end we’re all quite powerless to do anything. Google Mail is awesome at blocking spam so email spam isn’t much of a problem for me but my dad receives upwards of 1000 spam messages in just one day. I’ve told him to start using a different email address but he says the hassle involved in changing it doesn’t outweigh the benefit… It’ll only get worse for him.

@Daniel, I think comment spam only becomes a real problem with really big sites – moderators don’t have time to review every comment in detail so many of the spam comments (like the seemingly innocent one in the example) end up getting through. LOL @ me being a robot! 😀

@Corey, I’ve heard of that method before and I’m sure it works really well but eventually (like all other methods) the spammers are going to be able to detect those fields which are hidden.

]]>
By: Corey https://j11y.io/general/guilty-until-proven-innocent/#comment-424 Sat, 10 Jan 2009 23:43:37 +0000 https://j11y.io/?p=393#comment-424 I’ve found that sticking a hidden field with a blank value in the form stops pretty much all spam in comment and contact forms, or any form actually.

by hidden though, i mean “display:none”, not an “.
for example:

<input type="text" name="check" value="" style="display:none" />

Bots usually fill in all fields of a form with fake values. If someone submits a comment and the “check” field has a value, then you know it was a bot. If your worried about users w/out css enabled, then just place something before it saying “don’t enter anything”.

]]>
By: Daniel https://j11y.io/general/guilty-until-proven-innocent/#comment-423 Sat, 10 Jan 2009 23:20:25 +0000 https://j11y.io/?p=393#comment-423 I had bot that visited my site a couple of times and re-posted all the all existing comments of a post.. but it shuffled all the words first, and then sneaked in some sneaky urls (: twas a laugh none the less.

I always review my comments before publishing, so a part from spam, nothing offensive get’s published.

Ps. Judging from your level of productivity James, I’m starting to think that you are some kind of robot too 😉

]]>
By: Shane https://j11y.io/general/guilty-until-proven-innocent/#comment-422 Sat, 10 Jan 2009 22:08:35 +0000 https://j11y.io/?p=393#comment-422 I always check the URLs that are left; I wouldn’t want my site linking to anything illegal or pornographic.

There are some spam e-mails that are more difficult to recognise than your typical ‘go larger’, particularly for users not familiar with phishing and so on.

You’re absolutely right that education is the key – but it’s an ongoing concern. Spammers are always developing new methods to trick the unsuspecting.

]]>
By: Ibrahim https://j11y.io/general/guilty-until-proven-innocent/#comment-421 Sat, 10 Jan 2009 22:02:46 +0000 https://j11y.io/?p=393#comment-421 Thanks James 🙂

]]>
By: Alex Denning https://j11y.io/general/guilty-until-proven-innocent/#comment-420 Sat, 10 Jan 2009 21:50:35 +0000 https://j11y.io/?p=393#comment-420 I take the opposite view – if its not malicious, then publish it, otherwise let Akismet deal with it. I don’t have the website field on my site, so its a big give away when comments have urls on them!

]]>