蜜罐技术对付垃圾邮件的效果如何? [英] How effective is the honeypot technique against spam?

问题描述

通过蜜罐"，我的意思是这种做法或多或少:

By "honeypot", I mean more or less this practice:

#Register form
<style>
    .hideme{
        display:none;
        visibility: hidden;
    }
</style>
<form action="register.php">
    Your email: <input type="text" name="u-email" />
    Choose a password: <input type="text" name="passwd" />
    <div class="hideme">
        Please, leave this field blank: <input type="text" name="email" />  #the comment is for text-browser users
    </div>
    <input type="submit" value="Register" autocomplete=off />
</form>

//register.php
<?php
if($_POST['email'] != ''){
    die("You spammer!");
}
//otherwise, do the form validation and go on.
?>

更多信息此处.

很明显，真实字段是用随机散列命名的，蜜罐字段可以使用垃圾邮件程序通常填写的不同名称(电子邮件，用户，网站，主页等).

Obviously, the real fields are named with random hashes, and the honeypot fields can have different names (email, user, website, homepage, etc..) that a spambot usually fills in.

我喜欢这种技术，因为它不会使用户对CAPTCHA感到恼火.

你们中有人对这项技术有经验吗?有效吗?

Do any of you have some experience with this technique? Is it effective?

推荐答案

它工作得很好，但是，如果机器人创建者迎合您的页面，他们将会看到(甚至需要常规设置进行检查)，并且很有可能相应地修改其漫游器.

It works relatively well, however, if the bot creator caters to your page they will see that (or even have a routine setup to check) and will most likely modify their bot accordingly.

我的偏好是使用 reCaptcha .但是以上将阻止一些机器人.

My preference is to use reCaptcha. But the above will stop some bots.

这篇关于蜜罐技术对付垃圾邮件的效果如何?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！