[drupal-devel] simple and effective comment spam prevention exists and works

Morbus Iff morbus at disobey.com
Sat Oct 1 17:43:38 UTC 2005

> On Saturday 01 October 2005 10:44 am, Theodore Serbinski wrote:
>> One method we may want to look into. When a session is created a for
>> user and they are on a page that allows comments, we come up with a
>> unique hash based on say the node ID and session ID. We store this in
>> the user's session. When the user goes to create a comment, we pass
>> this unique hash with a hidden input field and when they click "post
>> comment" we verify this input hidden hash against one stored in the
>> user's session. This should prevent most spam comments, IMO.

Anything you can think of, I can program
a bot for. The above isn't a solution.

Morbus Iff ( morbus == grumblestiltskin )
Technical: http://www.oreillynet.com/pub/au/779
Culture: http://www.disobey.com/ and http://www.gamegrene.com/
icq: 2927491 / aim: akaMorbus / yahoo: morbus_iff / jabber.org: morbus

More information about the drupal-devel mailing list