Checking authenticity of form submissions without reCaptcha?

IndigoIdentity

Expert Member
Joined
May 10, 2010
Messages
1,964
Reaction score
1,304
As the title suggests, I am looking for some options for reducing spam submissions in publicly accessible forms.

Google's reCaptcha is one solution which can be used to alleviate this issue.

I am essentially looking for some alternatives to reCaptcha, so my question is what would you deal with this aspect of things?
 
honey pot?

pretty easy to implement.

  • text field, with a legitimate sounding "id", hidden with CSS (maybe a hidden input would work too)
  • on the server side, if that field has a value, it was probably populated by a bot.
 
Yea, a honey pot is the way to go, also CSRF token.

Then also more smart checks, if the data what is expected, does the mail work, check mx records etc, is the name legit, etc etc.

Can also add Cloudflare and restrict IPs outside the countries you expect or block CN and RU
 
Top
Sign up to the MyBroadband newsletter
X