keep up to date - With the latest web design, development & technology news

Follow wiliam

7Oct2011

Tags : Web Development User Experience

7Oct2011

Stopping form spam without compromising UX

Tags : Web Development User Experience

Stopping spam on website forms can be very important for Wiliam’s clients, but they often do not want to compromise the user experience using a captcha. There are many alternatives that can be very effective against spam but invisible to the user!

A very common method to generating form spam is using a playback bot which will record the post data of a real submission and then repeat that with its spam appended to the submitted data. The other is a form filling bot which simply finds a form in the page and fills out the fields with spam and submits it.

Here are some clever techniques we can use to protect against such bots submitting spam to your website without the use of a captcha:

Honeypot: This is a field we make invisible (using CSS, HTML, or JavaScript) and when the form is submitted we check it was left blank – whilst users will not see the field and therefore leave it blank most bots will not process the CSS/HTML/JS rendering rules and therefore will blindly fill out the honeypot field.

Unique hash: Create a hash based on facts that are unique to the request – for example make a hash of the timestamp, client IP address, and a random secret and then when receiving the form submission recreate the hash using the timestamp, client IP address, and the secret and validate that the hashes match – if they don’t, it has been tampered with or is not from the same client.

Timestamp: Encrypt the current timestamp and hide this in the form – then, when a form post is received, decrypt and check the timestamp is valid, within a certain threshold of time into the past, and not in the future. The timestamp doesn’t even need to be encrypted if a “unique hash” (previously mentioned) including the timestamp is made as any tampering with the timestamp would fail that test.

With the quality of user experience our clients expect, it is understandable that the mentioned techniques are sometimes appropriate. For more information and further depth on this topic, check out Ned Batchelder’s page

keep up to date - With the latest web design, development & technology news

Follow wiliam

About wiliam blog

Wiliam is a leading Australian digital agency. We design and develop websites and a few things in-between. The Wiliam blog is the thoughts and opinions of our people.

more blogs

People who
read this
also read
Latest

Top picks from around the web #3

Sandra Stepien 21Mar2018

Ecommerce features to improve UX and redesigns to check out this week.
Sprint Zero: Kicking off a Scrum project the right way

Tom Nason 31Jul2018

The goal of this initial preparatory Sprint is to front-load any work necessary to allow the teams to commence Sprint 1 effectively and without impediments. This includes preparing the Project Roadmap, creating the basic skeleton and plumbing for the project and readying the team for feature development.
Creating a Nuget Package

Simon Miller 6Aug2018

As part of a Wiliam learning project, I needed to find a way to make a reusable component that could be used for the rest of our developers as a starting point on future projects.
Advanced JIRA tips and tricks

Matej Stolfa 8Aug2018

So you’ve grasped the Jira basics and know to steer clear of the 7 Deadly Sins of Using JIRA? It’s time to put your big boy pants, level up and start using JIRA like a PRO. Here are some tips and tricks you will save you a lot of time and impress your colleagues.
What drives a successful Website Services business

Wiliam 15Aug2018

Despite being generated in a time when heavy manufacturing was more predominate, the competitive framework developed by Michael Porter (Harvard Business Review, 1977) is valuable for Website Services businesses.
Driving quality through Non-Functional Requirements

Tom Nason 17Aug2018

It’s common for NFRs to take a back seat in requirement gathering sessions. Topics like scalability and security are rarely met with the same excitement or urgency as customer facing features, yet they are critical to a development project’s success.

Driving quality through Non-Functional Requirements

Tom Nason 17Aug2018

It’s common for NFRs to take a back seat in requirement gathering sessions. Topics like scalability and security are rarely met with the same excitement or urgency as customer facing features, yet they are critical to a development project’s success.
What drives a successful Website Services business

Wiliam 15Aug2018

Despite being generated in a time when heavy manufacturing was more predominate, the competitive framework developed by Michael Porter (Harvard Business Review, 1977) is valuable for Website Services businesses.
Advanced JIRA tips and tricks

Matej Stolfa 8Aug2018

So you’ve grasped the Jira basics and know to steer clear of the 7 Deadly Sins of Using JIRA? It’s time to put your big boy pants, level up and start using JIRA like a PRO. Here are some tips and tricks you will save you a lot of time and impress your colleagues.
Creating a Nuget Package

Simon Miller 6Aug2018

As part of a Wiliam learning project, I needed to find a way to make a reusable component that could be used for the rest of our developers as a starting point on future projects.
Sprint Zero: Kicking off a Scrum project the right way

Tom Nason 31Jul2018

The goal of this initial preparatory Sprint is to front-load any work necessary to allow the teams to commence Sprint 1 effectively and without impediments. This includes preparing the Project Roadmap, creating the basic skeleton and plumbing for the project and readying the team for feature development.
Top picks from around the web #3

Sandra Stepien 21Mar2018

Ecommerce features to improve UX and redesigns to check out this week.
How to design better forms

Sandra Stepien 6Mar2018

Whether we’re buying something online or signing up to an email list, forms are a part of our everyday lives. Use these 4 simple tips to help make forms user-friendly and frictionless.
Case Study: Improving Performance in Entity Framework with Stored Procedures

Andrea James 27Nov2017

A step by step look at improving application performance in a custom .NET MVC website using Entity Framework.
Top 5 web development songs

29Aug2017

Yes, it’s that time of the year. Time to list the top web development themed songs. Prepare to be entertained and inspired. Your brain will never be the same.
Implementing pages from design files

25Aug2017

There are a lot of tutorials on the web on how to use HTML, CSS and Javascript. But it’s difficult to find one that teaches you the big picture, or the steps involved in a real task. This article will address the general work flow, as well as how to approach your code, to produce an accurate recreation of a design.

wiliam.com.au

Featured clients

clients

talk to us0420 521 870orcontact us online

Connect with us

We deliver our promise to clients through 2 focuses:

Online Success and Project Success. Over 15 years, we have delivered hundreds of substantial and complex projects on time, on budget and to the highest of standards.

Sydney 0420 521 870

Level 7, 140 Arthur Street, North Sydney, NSW Australia 2060

© 2024 Wiliam Pty Limited - Website Design Sydney - Web Development Sydney | Privacy