The javascript “authenticator” is a great idea. I’ve implemented a rudimentary version over at my site — though I haven’t updated the walkthrough I posted early that you’ve linked to. If you view source on a page with a comment form on it you can see what I’ve done.
Personally, I’m a little nervous about the idea of forcing users to have JS turned on to leave a comment. Forcing them to have cookies enabled is probably a big enough hurdle. Though it occurs to me there might be a way to allow non-JS browsers to post comments to the “moderating” queue instead of to the site itself… at any rate, check out the update if you’re interested.
I’ve implemented this as a wordpress plugin, a few weeks earlier. Without the database muckery, this wp spam plugin computes an md5 using injected client side values, and the values on the server. No cookies, no sql, just a little bit of javascript and html.
An avid fan of business, education, technology and finance. I lead a lean, highly focussed and capable team of Java Back End developers and Front End developers through a maze of complex software wizardry to fulfill the web maintenance needs of a large chemical manufacturer. As per Myers-Briggs Personality Types, I am an ESTJ. I pride in a project completed on time and according to plan. My hobbies include all kinds of technology, anything that I can taste and anything that goes fast or flies in the air. I like to read business books and comics in my spare time.
The javascript “authenticator” is a great idea. I’ve implemented a rudimentary version over at my site — though I haven’t updated the walkthrough I posted early that you’ve linked to. If you view source on a page with a comment form on it you can see what I’ve done.
Personally, I’m a little nervous about the idea of forcing users to have JS turned on to leave a comment. Forcing them to have cookies enabled is probably a big enough hurdle. Though it occurs to me there might be a way to allow non-JS browsers to post comments to the “moderating” queue instead of to the site itself… at any rate, check out the update if you’re interested.
I’ve implemented this as a wordpress plugin, a few weeks earlier. Without the database muckery, this wp spam plugin computes an md5 using injected client side values, and the values on the server. No cookies, no sql, just a little bit of javascript and html.
So far 0 spam got through!!