Hey guys,

there is a wordpress plugin which is doing a fantastic job under wordpress. It is called wp-spamfree.

http://www.polepositionmarketing.com/library/wp-spamfree/

The mechanism is to set a cookie to the client browser when opening the page. Only when this cookie is set the user is allowed to comment to the article. All this spambots do not accept cookies - they are just accessing the comment-fields. With this module I reduced my spam-comments from 100 a day to 0.
99,99% of the users won't have a problem because they are accepting cookies.

Ever heard of this concept? Any plans to make something similar?

greetings

Comments

espirates’s picture

espirates commented

Sounds like a great idea.

naught101’s picture

naught101 commented

That does sound like a reasonable idea, however, it's more or less completely unrelated to how the spam module works, so it would probably make sense to make a stand-alone module (there's no reason this would interfere with the spam module, and they would happily work on the same site together).

jeremy’s picture

jeremy commented

Actually, I think it would make a great spam module plug-in, and like the idea enough I hope to implement it myself. This would allow you to then weight how confident you are that the lack of accepting cookies makes someone a spammer, etc...

naught101’s picture

naught101 commented

Drupal already sets cookies for logged in and anonymous users, I think, so we could just re-use those. I think the assumption that spammers don't accept cookies is wrong though - I've seen plenty of logged-in-user spam.

AlexisWilke’s picture

AlexisWilke commented

naught101,

There are pros and cons to every method. However, I've noticed that automatic spamming robots will know of a generic such as Drupal, Joomla, Wordpress, but not of each 3rd party module. Thus, having an extra cookie that prevents users from spamming is not a bad idea. The automatic robots are likely to ignore those and only handle the normal Drupal cookie.

Thank you.
Alexis Wilke