> Can't you add a form field hidden with CSS, labeled "do not fill this out", > that Trac checks for and discards the post if it has value? Spambots almost > always fill out every field they can find, and this sort of spam confirms > it. Most of the users will not even see the field, while non-sighted users > will be warned against it by its label. > > Also, no human will ever post a comment with tens of links inside with the > same text (or href). I don't see why this spam pattern is not checked for > and blocked.
We used to do exactly that. But the thing is, patches *do* contain heaps of links, especially when they include an html document: <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";> <html xmlns="http://www.w3.org/1999/xhtml"; xml:lang="en-US" lang="en-US"> <head profile="http://www.w3.org/2000/08/w3c-synd/#";><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> We do have filters in place which blocks a bunch of spam. The reality is, everything you do to block spam increases the number of false positives. We're going to have to require logins, there's no way around it. -- Cheers Koz --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/rubyonrails-core -~----------~----~----~----~------~----~------~--~---
