[UPHPU] spam v CSS in no holds barred action
Walt Haas
haas at xmission.com
Wed Jun 27 08:51:03 MDT 2007
On Wed, 2007-06-27 at 06:52 -0600, Dave Smith wrote:
> Dave Smith wrote:
> Or an even better idea. Make a hidden field that will be submitted with
> the form. The value is populated by some onsubmit() javascript code that
> computes the MD5 sum of the comment text. On the server side, the MD5 is
> validated to allow submission.
How about this idea: Instead of giving input fields mnemonic names like
"email", "comments" etc. assign random strings as the names of the real
input fields and use the names that bots might look for as the honeypot
fields.
-- Walt
More information about the UPHPU
mailing list