Re: [Wonder-cvs] SF.net SVN: wonder:[8702] trunk/Wonder/Frameworks/Core/ERExtensions/ Components/Nonlocalized.lproj/ERXSimpleSpamCheck.wo/ERXSimpleSpamCheck.html
Re: [Wonder-cvs] SF.net SVN: wonder:[8702] trunk/Wonder/Frameworks/Core/ERExtensions/ Components/Nonlocalized.lproj/ERXSimpleSpamCheck.wo/ERXSimpleSpamCheck.html
- Subject: Re: [Wonder-cvs] SF.net SVN: wonder:[8702] trunk/Wonder/Frameworks/Core/ERExtensions/ Components/Nonlocalized.lproj/ERXSimpleSpamCheck.wo/ERXSimpleSpamCheck.html
- From: Mike Schrag <email@hidden>
- Date: Wed, 3 Dec 2008 17:23:42 -0500
Having read that article, wasn't the whole point centered around using
a textfield with css display none and not a hidden field since gthe
spam bots don't mess with the hidden fields, but will mess with text
fields? .... or did I read that wrong?
http://nedbatchelder.com/text/stopbots.html
I didn't implement that, I implemented Hugi's. The component
generates a hidden field, computes an expected value and sets the
value of the hidden field with a javascript call (so it's not the
value="..", it's assigned with javascript, which the bots won't eval
most likely). When you submit the form, if the expected value doesn't
match the submitted value, it will validationFailed. So if the bot
skips the hidden field, WO will get a null value in takeValues and it
won't match the expected and it will die. Clever and simple.
ms
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden