University Web Developers

University Web Developers

Recently we have begun to experience an increase in spam generated from some of our web (HTML) forms. How do you deal with this? I'm concerned that some solutions may be inaccessible (I.e. CAPTCHA).

Views: 138

Reply to This

Replies to This Discussion

Try this out: http://www.modernblue.com/web-design-blog/fighting-spam-with-css/

The trick is to add something to the filling out of the form that requires human level cognition, or give the bot a field that it will fill in that a human can't see.
I remember reading a few weeks ago that there is some body that says they can beat Yahoo's CAPTCHA...

Also there was the report about the Stripper software that was a creative way to beat CAPTCHA...

Personally we just delete the messages. It hasn't really gotten out of control, though. Maybe I'll get one a week.
I use a double pronged approach on some of my forms.

I have a field that must remain blank (or else it returns a message saying that we suspect you may be a machine). You have to be careful what you name those remain blank fields for a couple of reasons: 1) Google Toolbar autofill - it might stick a value in there unbeknownst to you and 2) It has to make sense to someone who might be seeing the field with a screen reader (maybe that's not an issue if you set the visibility off).

Secondarily I put a hidden field in my form that is populated when the onclick event fires on the submit button. I then check for that form value on the server side to make sure it's populated with the correct value. This should prevent bots from posting to my page. It basically requires the human interaction of clicking on the button to pass validation.

I'm not sure what the second option does to accessibility. I do not know how screen readers handle onclick events in JavaScript. I guess my assumption is that when you click enter on a button it fires that event so it should work just fine. Its also right in line with the kind of client-side validation that most people have on their forms anyways (like checking that required fields are filled in).

If you're interested in some code let me know.. I was going to blog about this, but have not gotten around to it.
Wouldn't the alternative of checking the referring script on the post page be better than your second technique since it doesn't rely on Javascript? Is there some reason why you wouldn't do it that way?
Checking the referrer is probably a better way. I wasn't really familiar with that approach until I started reading this thread. Thanks for suggesting it.
Oh, cool. Glad I said something.
If you are using asp.net at all, you could try the NoBot control that comes with their free ajax extender control toolkit. Here is a link to a demo: http://www.asp.net/AJAX/AjaxControlToolkit/Samples/NoBot/NoBot.aspx

If you are not using asp.net or some form of server side code, I'm not sure how you would stop spamming.
I have been using reCAPTCHA (http://recaptcha.net/) on some of our forms with success. I am sure it will only be a period of time before this is useless as well. It has an audio CAPTCHA built in for accessibility, and is fairly easy to implement.
Seconded. I have had great results on our blogs with reCAPTCHA. The only spam comments that have come through are obviously human. Before that they were getting hit so much I have to have registration on, which meant no one went through the effort required to comment.
I'm in the minority, but I refuse to put the onus on the user in any way. Instead, I do all the spam prevention on the backend. I use Akismet whenever possible, like this form.
The forms we were having problems with did not ask for any urls. So, I wrote a script that checks each item in the object. If any of them contain "http://" then the script stops and returns to the form page.

We haven't had any spam on those forms since.

RSS

Elsewhere

Latest Activity

Sara Arnold commented on Lynn Zawie's group OmniUpdate
"OmniUpdate is excited to be in the running for a People’s Choice Stevie Award for Favorite Customer Service! If you’d like to show your support, cast your vote now! You can vote as many times as you’d like."
22 hours ago
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Take a ½ hour out of your day to learn 4 important tips on keeping your website accessible! Join Ryan from Paskill Stapleton & Lord @PSandL as he shares the accessibility guidelines for your university website. http://bit.ly/2zhdcIt"
Jan 7
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Get up to speed on GDPR and how it affects your higher ed institution and student recruitment. http://bit.ly/2YZZtRQ"
Jan 7
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Web governance should not be an afterthought; when it’s done right, it can actually enhance your workflow and make your job easier. http://bit.ly/33vIZU0"
Nov 8, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Exciting news... OmniUpdate has merged with Destiny Solutions! Learn more on our blog. http://bit.ly/332KSr8"
Oct 30, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Switching to a new CMS? Join our next webcast with Briana Johnson from @OSUIT to learn how to convince decentralized web content authors to tolerate the switch, actively participate, and enjoy it! http://bit.ly/2zhdcIt"
Oct 29, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Your website is the front door to your college or university. Your website design has to accommodate for the way that students interact with and use the information your institution provides. http://bit.ly/2P8VldR"
Oct 24, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Learn how a new website design and CMS helped Florida Gulf Coast University increase new visits to the school’s website with improved SEO. http://bit.ly/2ByaQq4"
Oct 21, 2019
Profile IconJames Pollard and Michael Clarke joined University Web Developers
Oct 21, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Join our next webcast with Kelly Rushing from @uofsouthalabama to learn how to create accessible PDFs for your website by starting with your source documents. http://bit.ly/2zhdcIt"
Oct 18, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Learn why your college or university should choose SaaS across the board, especially for your next CMS. http://bit.ly/2Iy0SZE"
Oct 8, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Join us for our next webcast with OmniUpdate CEO Lance Merker, who will delve into key insights about Generation Z’s online search behaviors to help you refine your school's web marketing strategy. http://bit.ly/2zhdcIt"
Oct 3, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Our newest guide will help you learn what it means to be accessible, how to implement accessibility best practices, quick fixes to try as well as a long-term plan, plus tools to help you in your website accessibility efforts. Download it now!"
Oct 1, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Are online forms more efficient? Learn how El Camino College used Formstack to create online forms that expedited processing, improved communications, increased transparency, and promoted accountability across campus. http://bit.ly/2zhdcIt"
Sep 18, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"It's important to understand the science behind your web pages to better engage and ultimately attract prospective students to your site. http://bit.ly/2ZYK8FZ"
Sep 12, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"If you’re struggling with web challenges such as accessibility, SEO, design consistency, workflow, content governance, or how to start a website redesign, you’re not alone. Join our next webcast to learn how other higher ed institutions…"
Sep 5, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"eQAfy confirms that OU Campus is still the #1 commercial CMS for colleges and universities in the United States. http://bit.ly/2Lir9Mn"
Aug 28, 2019
Sara Arnold commented on Lynn Zawie's group OmniUpdate
"Here’s an outline of everything you need to know about OCR compliance, including what it is, what your college or university can do to stay compliant, and resources for OCR compliance. #accessibility http://bit.ly/2rcPDgG"
Aug 23, 2019
Linda Faciana commented on Lynn Zawie's group OmniUpdate
"Join us for our next webcast with April Buscher from Montana State University Billings to learn how blind readers and people with hearing impairment view and read your website and how you can make it accessible to them. http://bit.ly/2zhdcIt"
Aug 14, 2019
Amanda Lawson joined Lynn Zawie's group
Thumbnail

OmniUpdate

Share your experiences using OmniUpdate CMS
Aug 9, 2019

UWEBD has been in existence for more than 10 years and is the very best email discussion list on the Internet, in any industry, on any topic

About

© 2020   Created by Mark Greenfield.   Powered by

Badges  |  Report an Issue  |  Terms of Service