WebAIM - Web Accessibility In Mind

E-mail List Archives



From: Jared Smith
Date: Jun 1, 2012 12:09PM

On Fri, Jun 1, 2012 at 12:03 PM, J. B-Vincent wrote:
> Here's a longish article about strategies for CAPTCHA-free spambot protection from yesterday's Etre newsletter.

We have a list of similar and more extensive recommendations on our
site at http://webaim.org/blog/spam_free_accessible_forms/

For our forms, we do three simple things:
1. A short "naughty word" list. Form data containing these words are
not submitted.
2. A honeypot - a hidden (also to screen reader users) text field
after the submit button. If it contains content, the message is not
3. Basic time detection. We log the time the form is opened and the
time it is submitted. If the difference is less than 3 seconds or more
than 40 minutes, it is not submitted.

These three things have cut the automated spam on our online forms
from several thousand per month to 2-3 per month, most of which are
probably human spammers.