nicholasjon.com : WordPress Cookie Spambot stopper
or forcing clients to do some sort of javascript calculation. Interesting comment on that page. I have been thinking about a javascript authenticator for some time.
About the Author
- Mark Ghosh
An avid fan of business, education, technology and finance. I lead a lean, highly focussed and capable team of Java Back End developers and Front End developers through a maze of complex software wizardry to fulfill the web maintenance needs of a large chemical manufacturer. As per Myers-Briggs Personality Types, I am an ESTJ. I pride in a project completed on time and according to plan. My hobbies include all kinds of technology, anything that I can taste and anything that goes fast or flies in the air. I like to read business books and comics in my spare time.
Categories
- bbpress
- Best of WordPress
- Blog Templates Blog Skins Blog Themes
- Blogging
- Blogging Essays
- Blogging News
- brainstorming
- buddypress
- Business of Blogging
- CMS
- Code
- Cold Fusion
- Community Interviews
- Cool Scripts
- General
- HOW-TO
- LinkyLoo
- Movable Type Plugins
- Photolog Script
- Podcasting
- QuickLinking
- Spam
- SXSW
- TLA
- Tutorials
- User Reviews
- Web Design
- Web Ethics
- Weblog Add-Ons
- Weblog tools blog tools blogging tools
- Weekly Plugin Review
- WLTC Community
- wordcamp
- WordPress
- WordPress Discussions
- WordPress FAQs
- Wordpress for Beginners
- WordPress Hack
- WordPress News
- WordPress Plugin Competition
- WordPress Plugins
- WordPress Polls
- WordPress Security
- WordPress Templates WordPress Skins WordPress Themes
- WordPress Tips
- WordPress Tools
- WordPress Troubleshooting
- WordPress Weekly
- WordPress Widgets
- WordPress WishList
- XHTML Tips
Obviously Powered by WordPress. © 2003-2013
The javascript “authenticator” is a great idea. I’ve implemented a rudimentary version over at my site — though I haven’t updated the walkthrough I posted early that you’ve linked to. If you view source on a page with a comment form on it you can see what I’ve done.
Personally, I’m a little nervous about the idea of forcing users to have JS turned on to leave a comment. Forcing them to have cookies enabled is probably a big enough hurdle. Though it occurs to me there might be a way to allow non-JS browsers to post comments to the “moderating” queue instead of to the site itself… at any rate, check out the update if you’re interested.
I’ve implemented this as a wordpress plugin, a few weeks earlier. Without the database muckery, this wp spam plugin computes an md5 using injected client side values, and the values on the server. No cookies, no sql, just a little bit of javascript and html.
So far 0 spam got through!!