当机器人攻击！ [英] When the bots attack!

问题描述

除了CAPTCHA以外，还有哪些流行的垃圾邮件预防方法?

What are some popular spam prevention methods besides CAPTCHA?

推荐答案

我尝试过在"honeypots"中放置字段，然后使用CSS隐藏该字段(对于任何禁用了样式表的人，将其标记为留空")，但是我发现很多机器人都能很快克服它.还有一些技术，例如将字段设置为某个值并使用JS进行更改，计算加载时间和提交时间之间的时间，检查引荐来源网址，以及上百万种其他操作.他们都有自己的陷阱，几乎所有您所希望的就是与他们尽可能多地进行过滤，同时又不疏远您在这里的用户:

I have tried doing 'honeypots' where you put a field and then hide it with CSS (marking it as 'leave blank' for anyone with stylesheets disabled) but I have found that a lot of bots are able to get past it very quickly. There are also techniques like setting fields to a certain value and changing them with JS, calculating times between load time and submit time, checking the referer URL, and a million other things. They all have their pitfalls and pretty much all you can hope for is to filter as much as you can with them while not alienating who you're here for: the users.

但是，到最后，如果您真的，真的不想让机器人通过您的表单发送邮件，您将想要在上面放一个验证码-我见过的最好的一个负责的大部分工作都是 reCAPTCHA -但要感谢印度的验证码解决方案市场以及遍布各地的垃圾邮件发送者的独创性，但它们并没有成功时间.我会提防使用令人发指"但有点麻烦"的东西，因为对于那些至少习惯于您通常的验证码的用户来说，它更像是"wtf".

At the end of the day, though, if you really, really, don't want bots to be sending things through your form you're going to want to put a CAPTCHA on it - best one I've seen that takes care of mostly everything is reCAPTCHA - but thanks to India's CAPTCHA solving market and the ingenuity of spammers everywhere that's not even successful all of the time. I would beware using something that is 'ingenious' but kind of 'out there' as it would be more of a 'wtf' for users that are at least somewhat used to your usual CAPTCHAs.

这篇关于当机器人攻击！的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！