Spam – Whose problem is it really?

Using captcha to prevent form spamSpam is still a huge problem for website owners. Whether through incessant comment spam in blogs and forums, or inane contact form entries, the amount of time wasted by business owners (or their webmasters) on processing and ignoring spam can be considerable.

Captcha came to the fore some years ago, and seemed to offer a way of cutting down on the amount of spam by forcing all form respondants to enter a cunningly constructed series of letters and characters (which, of course, spambots couldn’t easily do). This succeeded in reducing form spam, but it also deterred some genuine website visitors from completing and submitting forms because the captcha was too difficult to read or because the captcha was ‘a field too far‘…

How often have you decided against submitting a contact form because there were too many fields to complete or because the captcha was too difficult to read?

I also think that whilst spam is a pain for website owners it shouldn’t be a pain for your website visitors. Why offload the problem onto your potential customers?

Wouldn’t it be better to absorb that pain yourself, or better still put something in place that would not add an extra burden on your website visitors whilst at the same time reducing the amount of form spam you receive? But how?…


I’m gradually being converted to the idea of adding honeypots to my forms.

The basic idea is that you add one or more hidden fields to your form and then only allow the form to be submitted if those fields contain blanks (or some randomly chosen value). Your real human visitors will not see, and therefore not be bothered by, these fields, but spambots (the automated machines that hit your website and fill out your forms with spam) will try to fill these fields in, and if they do then the form submission will be rejected.

Another possibility, and something we’ve successfully used recently, is to add a hidden field to a form and fill it with the current time. Then, when the form gets submitted we check the form time against the current time. Spambots tend to fill forms out really quickly (a few seconds), so if the time gap is less than say 7 seconds you can be pretty sure that it is spam and can be rejected.

This solution won’t stop all spam on your site, but it should cut it down quite a bit. There is evidence to suggest that forms without Captcha fields to complete receive 20%-30% more conversions, so if you can live with a small increase in spam it might be worth investing in a little honeypot for your forms.

How can I add a spam honeypot to my site?

That depends on how your website has been built. There are plenty of plugins for WordPress and other content management systems, and you can generally find your solution by searching Google for it. Gravity Forms have an option you can check when setting up your forms that lets you switch honeypots on, for example.

Screenshot of Gravity Forms anti-spam honeypot checkbox

If you would prefer us to look at it for you and recommend a solution, just get in touch using our captcha-free form below…

  • If you'd like us to call
  • Don't forget to tell us your website name if you need us to look at it
  • This field is for validation purposes and should be left unchanged.
This iframe contains the logic required to handle Ajax powered Gravity Forms. jQuery(document).ready(function($){gformInitSpinner( 12, '' );jQuery('#gform_ajax_frame_12').on('load',function(){var contents = jQuery(this).contents().find('*').html();var is_postback = contents.indexOf('GF_AJAX_POSTBACK') >= 0;if(!is_postback){return;}var form_content = jQuery(this).contents().find('#gform_wrapper_12');var is_confirmation = jQuery(this).contents().find('#gform_confirmation_wrapper_12').length > 0;var is_redirect = contents.indexOf('gformRedirect(){') >= 0;var is_form = form_content.length > 0 && ! is_redirect && ! is_confirmation;var mt = parseInt(jQuery('html').css('margin-top'), 10) + parseInt(jQuery('body').css('margin-top'), 10) + 100;if(is_form){jQuery('#gform_wrapper_12').html(form_content.html());if(form_content.hasClass('gform_validation_error')){jQuery('#gform_wrapper_12').addClass('gform_validation_error');} else {jQuery('#gform_wrapper_12').removeClass('gform_validation_error');}setTimeout( function() { /* delay the scroll by 50 milliseconds to fix a bug in chrome */ jQuery(document).scrollTop(jQuery('#gform_wrapper_12').offset().top - mt); }, 50 );if(window['gformInitDatepicker']) {gformInitDatepicker();}if(window['gformInitPriceFields']) {gformInitPriceFields();}var current_page = jQuery('#gform_source_page_number_12').val();gformInitSpinner( 12, '' );jQuery(document).trigger('gform_page_loaded', [12, current_page]);window['gf_submitting_12'] = false;}else if(!is_redirect){var confirmation_content = jQuery(this).contents().find('.GF_AJAX_POSTBACK').html();if(!confirmation_content){confirmation_content = contents;}setTimeout(function(){jQuery('#gform_wrapper_12').replaceWith(confirmation_content);jQuery(document).scrollTop(jQuery('#gf_12').offset().top - mt);jQuery(document).trigger('gform_confirmation_loaded', [12]);window['gf_submitting_12'] = false;}, 50);}else{jQuery('#gform_12').append(contents);if(window['gformRedirect']) {gformRedirect();}}jQuery(document).trigger('gform_post_render', [12, current_page]);} );} ); jQuery(document).bind('gform_post_render', function(event, formId, currentPage){if(formId == 12) {} } );jQuery(document).bind('gform_post_conditional_logic', function(event, formId, fields, isInit){} ); jQuery(document).ready(function(){jQuery(document).trigger('gform_post_render', [12, 1]) } );

Tags: , ,

Categories: Newsletter Articles, What I have learned today

2 Responses to “Spam – Whose problem is it really?”

  1. I’ve just written a blog post about spam, scheduled for tomorrow. Hot topic! 🙂


  1. How to manage WordPress Comment Spam on your blog - January 22, 2013

    […] have a budget (and you don’t want to turn commenting off in your site and don’t want to add a captcha to your comment forms) there are a few plugins you could take a look at to help you reduce your spam. In my opinion they […]

Leave a Reply

Share This

Please share if you've liked reading this

Share this post with your friends! It really helps us, and lets us know which content visitors like best - so we can write more like that!