Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
LMagnus20578yIt's a fairly standard tactic to filter out lesser bots called a Honey Pot.
However they should make the input hidden so it can only possibly be completed by a bot and not a user in error. -
A modification to this can be random chances of the input field to be filled or not. So only a human will understand if it is to be filled or not.
And a bit of assistance through placeholder -
jackdh158y@LynxMagnus That used to work but bots are smart enough now to check if a field is hidden. So if anything this approach as bad as it looks is possibly better.
-
RTRMS36908yThat works well, although you normally hide it. The idea is a bot cannot read the placeholder text, so a bot will fill it in based on its type, the form submits successfully from the front end, but is thrown out by the api if the field is not blank.
-
LMagnus20578y@jackdh You're right that a Honey Pot, even when used correctly won't stop all bots, but will certainly catch a few.
You're security approach should be composed of many different approaches.
Hopefully these guys have implemented the others rather more successfully than this one. -
It's called a honeypot, you normally hide the field with CSS, so only bots will fill it making the form fail.
Related Rants
This is gold. This developer has a bold captcha solution.
undefined
genius
lazy
captcha