Verification Code-contact form

Just wondering, is there a way to add a verification code in the freeway contact form in backdraft?


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

Have you tried the Validate Suite of actions - available at the Forge.

But the fact that it is BackDraft shouldn’t make any difference as these are generally a JavaScript solution.

What are you trying to validate specifically.

David


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

Just to block bots. I am about to work on a site for a professional athlete and I was thinking about that to prevent bots and so forth


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

I was thinking about that to prevent bots and so forth

Then I would use the PHP Feedback Form action and in the Advanced settings enable the spam trap.

Generally bots wont be running javascript so javascript validation methods wont work.

But the biggest source of spam via forms is very poorly paid folk in Asia/India who fill in forms manually - there is not much you can do to stop them.

D


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

So, like Captcha.


Ernie Simpson

On Aug 16, 2014, at 7:27 PM, “Howard Spaeth” email@hidden wrote:

Just to block bots. I am about to work on a site for a professional athlete and I was thinking about that to prevent bots and so forth


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

The poorly-paid folk put the Capthca down, so there['s nothing you can do about them. The bots will fall prey to the honeypot trap in PHP Feedback form. That’s the most effective way to keep out the bots, because it doesn’t piss off the actual humans.

Walter

On Aug 16, 2014, at 8:20 PM, Ernie Simpson wrote:

So, like Captcha.


Ernie Simpson

On Aug 16, 2014, at 7:27 PM, “Howard Spaeth” email@hidden wrote:

Just to block bots. I am about to work on a site for a professional athlete and I was thinking about that to prevent bots and so forth


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

Howard - The PHP Feedback Form Action (from http://www.freewayactions.com/product.php?id=019 has a Spam Trap (open the Advanced panel to see it where you can switch it on).

However, the Send Form Action also has a Spam Trap that works exactly the same way - and that is switched on by default, so just use the Action and you’re covered. Read about how to set up the Action at http://www.softpress.com/kb/questions/416/


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

Hi Guys

I came up with a really simple solution to the spam issue with contact forms without the need to use any kind of verification code or security question.

I’m not sure if this is possible in Freeway as I haven’t used it for a few years although I’ve always upgraded (I’m looking to start playing with it again).

Anyway the solution is to name the email field something other than email, so just name it postcode, fred, funklovinghamster or anything really as long as its not called email. You just need to make sure that the script that sends the form knows its an email address field.

Not sure if thats any help or not but it works so I thought it was worth a mention, the Spam bots just don’t know what to do with it.

Cheers

Gary


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

I was brushing up on some of the techniques Walter suggested, and enjoyed
this reading - http://tinyurl.com/384qbn

It covers several techniques with some depth - I think this author said
field renaming had some limited value but more as a speed bump. I’m
thinking of building a honeypot solution for my next form - but honestly do
not like FWP forms or form actions as I do not think the whole goddam page
should be a form - unless it is.


Ernie Simpson

Anyway the solution is to name the email field something other than email,

so just name it postcode, fred, funklovinghamster or anything really as
long as its not called email. You just need to make sure that the script
that sends the form knows its an email address field.


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

Yeah I agree with the whole form thing. I noticed that a few years ago and couldn’t quite get my head round the reason why it was good practice. Anyway the field naming thing has worked for me, its not a perfect solution but its a quick one.

I am included on a lot of our clients form submissions so periodically I was getting so much spam it was unreal. I didn’t have time to go through hundreds of sites, get a recaptcha key and set the whole thing up so I just tried the naming thing and it worked, no more spam.

Another way I got the issue sorted was to get ask for todays date and ask for it to be formatted a certain way 00/00/0000. We put the security question text in as a graphic called something random with a random Alt tag (just in case) and that did the job too.

I think the honey pot idea is a great solution. I’m guessing that can be done in FW. I really need to get in to this again so I know what I am banging on about ;).

Cheers

Gary


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

However, the Send Form Action also has a Spam Trap that works exactly the same way - and that is switched on by default,

Now I didn’t know that and it is one of the reasons I have been sticking with the PHPFF action.

Might be useful to include that info in that Knowledgbase article at http://www.softpress.com/kb/questions/416/Send+Form+Action

Note that the SendForm allows you to call your email address field anything you like and it will still verify it whereas when using the PHPFF action you had to name it ‘email’.

D


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options

In that case it will work at treat for people wanting to sort the spam issue out Dave.

I’m not saying this is the ultimate solution for protecting our clients from Spam but I am saying it stopped the spam on loads of sites we look after 100%.

For less advanced users (Not the guys who help on here, I may need you guys one day myself)
When a form is used to generate spam it not a human being doing it, its a robot script that is running against a site or a server.

The script does not analyse the relationship between the form and the script, it simply populates the form based on the naming values given to that form. So if you call your form field ‘email’ it know it needs to put a random email address in there, the same way your web browser auto fills a web form.

The simple solution to this is instead of calling the field ‘email’ call it something random, anything other than email or anything that suggests email (just to be sure).

I’m just coming back to Freeway (after many years of hardcore coding I’m looking to make my life a bit easier) so I’m not an expert with the software but I do know that this works, trust me I’ve done the leg work.

Hope that helps some of you guys out and thanks to Ernie and Dave for the feedback.

Cheers

Gary


freewaytalk mailing list
email@hidden
Update your subscriptions at:
http://freewaytalk.net/person/options