My simple strategy to spam from a website’s contact form

Came across this interesting article. But what do you all think?

  • mark@programming.devOP
    6·
    7 months ago

    Wouldn’t this effectively mark all messages from a user who isn’t using JavaScript as spam? 🙃

      • mark@programming.devOP
        1·
        7 months ago

        Yeah, it’s definitely a very unique approach I haven’t seen before. I’ve been using the “honeypot” method for years, which has been working surprisingly well.

    • Blisterexe@lemmy.zip
      1·
      7 months ago

      they could add a little text box thats hidden by javascript tby default informing them of that

    • rebelsimile@sh.itjust.works
      0·
      7 months ago

      Apparently the rate of users not using JS is about 0.2% (and has been that way for 10 years), so just applying this solution the the large margins as he’s doing, I’d probably just make an alternate message saying “please enable javascript to contact me” and let that be that.

      • mark@programming.devOP
        1·
        7 months ago

        Eh. These sorts of metrics aren’t always accurate. And the source company did the study in 2016, which was a very very different internet, and doesn’t go into detail about how they were able to determine this number. I would take that with a grain of salt. I agree that just having a notice somewhere is better than not, though.

  • cosmicrose@lemmy.worldEnglish
    2·
    7 months ago

    Speaking of a “black hole” email address, are there any addresses set up for the purpose of catching spam? Like if Gmail had an address for spam that contributed to its spam detection.

    • jadero@programming.dev
      5·
      7 months ago

      The Stalwart mail server allows for that. They call them “spam traps”.

      Basically, it’s a real email address that literally never gets used or referenced anywhere, thus assuring any email received is unsolicited by definition. Stalwart’s spam engine uses any such email to help train the spam filter.

      I can’t imagine that Stalwart is only one implementing such a system.

      I’ve never used Stalwart, but it’s the email server I’ve selected should I decide to do what everyone tells me I shouldn’t: run my own server for me, my wife, and the two domains we control. Their documentation is basically a master class in email.

      • cosmicrose@lemmy.worldEnglish
        3·
        7 months ago

        “Spam trap” and “spam honeypot” are exactly the keywords to search for. I found a bunch of info about some services you can use to set them up. I’d recommend adding “-avoid” to your search filters because every email marketer has their own article titled “About Spam Traps and How to Avoid Them” which just pollutes search results if you’re actually looking to set up your own.