Is there anything like a reasonably working local antispam solution for web contact forms? It appears the popular one is akismet, but that essentially means "sent the whole message to someone else", and that feels really inacceptable privacy wise.
-
Is there anything like a reasonably working local antispam solution for web contact forms? It appears the popular one is akismet, but that essentially means "sent the whole message to someone else", and that feels really inacceptable privacy wise.
-
@hanno adding some kind of captcha often works reasonably (like a silly math question, where you can have the right answer base64-encoded in a hidden field etc), at least for a time until you need to tweak it, depending a little on how much attention the bots give your service
-
@bagder I don't understand the "where you can have the right answer base64-encoded in a hidden field" part. why would you need that? Check the answer client side?
-
Jan Wildeboer 😷:krulorange:replied to hanno last edited by
-
@hanno the server end that receives the submission would check that the "user says" field contains the same number as the base64 decoded "answer" field does. Then you can generate quite flexible problems and yet verify them. But there are other ways you can do it as well.
-
@hanno the hidden field method in combination with timer that starts when when the page is loaded is already protecting massive against most bots.
