Kelly Thompson wrote:
> So if I don't use captchas (having tons of trouble with all of them, due
> to dependencies, and being on a shared host) what is a good "text" method?
> Or any method actually that will help with spam, and DOS attacks...
Another approach is to put a honeypot field in the form. You add a field
that is hidden from users using CSS, along with a helpful label just in case
they're not using CSS for some reason (e.g a screen reader or time traveller
from the dark ages).
<div style="display:none">
<label for="honey">Enter text in this field if you are a spammer</label>
<input name="honey" type="text" name="">
</div>
Spambots will typically fill in all the fields in a form as a matter of
course, so your web application just needs to reject any submissions with a
value set for that field.
Cheers
A
_______________________________________________
templates mailing list
[email protected]
http://mail.template-toolkit.org/mailman/listinfo/templates
