I think its important to give the spammer no indication that you are onto them. If you give them any kind of feedback, they can use that to work a way through your maze. The filters i use (which are similar to yours on the client side, but I also use some tests on the server side, but the submitter sees the same result either way. Even if the submission is just discarded to the bitbucket in the sky. They have no way to know their submission has been discarded.
Cheers Mike Kear AFP Webworks Windsor, NSW, Australia http://afpwebworks.com From: [email protected] [mailto:[email protected]] On Behalf Of coder Sent: Wednesday, 22 August 2012 9:38 PM To: [email protected] Subject: [WSG] More on spam traps Hi All, I have recently attempted to 'trap' spammers who use autofilling tactics on the site at www.gwelanmor-internet.co.uk. This is written in html5 and uses a mixture of simple tests to validate the form. However, yesterday I recvd a mail thus: _____ . name * igmgrtasel . email * . hidden * -9 . comments * CaWePF <a href="http://ipdszgwutyvp.com/";>ipdszgwutyvp</a>, [url=http://fkpbtvpaxitv.com/]fkpbtvpaxitv[/url], [link=http://rtcdalwdjrkb.com/]rtcdalwdjrkb[/link], http://xsejahukjzdr.com/ . send * send message . _____ The script I used to validate the form is this: <script type="text/javascript"> function validateForm() { var x=document.forms["contact"]["email"].value; var atpos=x.indexOf("@"); var dotpos=x.lastIndexOf("."); if (atpos<1 || dotpos<atpos+2 || dotpos+2>=x.length) { alert("This is Not a valid e-mail address"); return false; } // var y=document.forms["contact"]["hidden"].value; if (y==null || y=="") { return true;} else { alert("I think you are a machine") return false; } } <!--// --> function check(node) { var re = new RegExp('[<>\[\\]]', 'g'); document.getElementById('send').disabled = re.test(node.value); } </script> and it works locally and online. However the mail I quote from above is completely unaffected. Does this mean I give up trying, or what? Any thing? Thanks, Bob No virus found in this message. Checked by AVG - www.avg.com Version: 2012.0.2197 / Virus Database: 2437/5212 - Release Date: 08/20/12 ******************************************************************* List Guidelines: http://webstandardsgroup.org/mail/guidelines.cfm Unsubscribe: http://webstandardsgroup.org/join/unsubscribe.cfm Help: [email protected] ******************************************************************* ******************************************************************* List Guidelines: http://webstandardsgroup.org/mail/guidelines.cfm Unsubscribe: http://webstandardsgroup.org/join/unsubscribe.cfm Help: [email protected] *******************************************************************
