WebAIM - Web Accessibility In Mind

E-mail List Archives

Re: Has anybody come across the "honeypot" technique with respect to accessibility?

for

From: Dejan Kozina
Date: Aug 15, 2016 4:08PM


I've been using this for 8 years or more and, as far as I (and my
customers) can tell, it just works great to deter spam without false
positives, easily beats any captcha from an accessibility point of view,
works without Javascript and is fairly easy to intenationalize.

I hide the paragraph containing the label and the input field thru CSS
aplied from an external stylesheet, mark the input field as name="url"
or something frequently used in contact forms, the label says 'Leave
this field empty' in the page language, and the fake fieks is cheched
server-side: if the field is not empty I redirect the client to
windowsupdate.com (because when I started doing this outdated Windows
was the main cause of all evil).

I'm curious to hear from the list what an appropriate response to a form
spammer would be today:
- ban the IP straight at the firewall?
- respond politely with 'Die a thousand painful deaths, robot, die!'?
- redirect to 127.0.0.1 to see if it manages to spam itself?
- redirect to a contact form on nsa.gov?
- respond with 'I'm a nigerian widow with couple millions to abscond'?
- send as response a curated collection of viruses?

:-)
djn


On 15/08/2016 19:58, Mike Barlow wrote:
> This technique was just pointed out to me in a separate forum as a way of
> preventing form spam:
> http://jennamolby.com/how-to-prevent-form-spam-by-using-the-honeypot-technique/
> So I was wondering if anyone on this forum has adopted this approach over
> the more common CAPTCHA (Completely Automated Public Turing test to tell
> Computers and Humans Apart) approach?
> *Mike Barlow*

--
-----------------------------------------
Dejan Kozina s.p.
Kunaverjeva ul. 9
1000 Ljubljana (SLO)
tel.: +386 (0) 4193 1419
tel.: +39 348 7355 225
http://www.kozina.com/
e-mail: <EMAIL REMOVED>