Hi, everyone! I'm developing a small blog application for a client. Trying to minimize spam whithout using a CAPTCHA (to keep matters simple), I came up with this idea (similar to Cragilist's post verification):
Require email verification the first time only. It would work like this: 1. Create an "emails" table in the database (email_id, email, active). 2. Whenever someone posts (email required), "emails" table is accessed to verify that email address is in the database and is also active. If it isn't, email address is added to the database (in "inactive' status) and an email is sent to the posted email asking for confirmation. Clicking on link provided in email message will set email address to "active" and publish post automatically. If user doesn't "activate" email address (because the email address was bogus or any other reason) within, say, 1 day, post and email address are deleted. After that initial "verification' process, all posts by this person will be published instaneously as long as the email provided matches one in the database (email addresses will not be made public, for obvious reasons). My questions: 1. Will this be effective in REASONABLY minimizing spam? 2. Is it too cumbersome? (it's way shorter and easier than registering for a forum, for example) Thanks in advance for any opinions on this. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:250750 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
