Hello. I specialize in graphic design and development for web applications.

TylerM – Tyler Menezes \ Blog \ I do not like CAPTCHAs

I do not like CAPTCHAs

October 27, 2008 at 10:52 pm

I’m a web developer. The site tagline probably makes that clear. So, I’ve come across numerous situations where spam is a problem. Yet I refuse to use CAPTCHAs to prevent spam. Even as the owner of a site with absolutely no spam filtering at all, I’d sooner write a 10,000 line spam filter than a 100 line CAPTCHA.

Why? Because spam should not be the user’s problem. By using a CAPTCHA you are doing just that, making a spam problem on your site into something which is somehow the user’s fault. That has never seemed right to me. A better solution is just a spam filter.

Looking across all my sites, I can see that at least 90% of all spam is composed of at least half hyperlinks. It should be quite simple to filter out comments with such a low text-to-linked-text ratio. Further, a majority of them try to use both HTML hyperlinks and some sort of forum markup (in the form of [url=http://somesite.com]spam text[/url]). You can reduce the spam on your site by at least 50% by taking those few simple steps with no additional burden to the user.

For contact forms, just have it send the email to a Gmail account. Gmail has what I can only consider to be the best spam filter ever. I have had my tylermenezes@gmail.com address since 2003 or 2004, and I’ve posted the address in plain-text nearly everywhere on the web. Only one piece of spam has ever hit my inbox; only two legitimate emails have ever hit the spam folder. Just take advantage of the work done by Google and you’ll save yourself and your visitors some time.

This goes for the email obfusification techniques, too. Posting your email in the tylermenezes [at] gmail [dot] com form does not make it any harder to read. In fact, have a look at this Google search. If I wanted to send spam to people, there’s a really easy way to get 8 million addresses. On the other hand, if you try to search for regular addresses, Google won’t give you anything. Saving it in an image is bad, too. It makes it even harder to put in a “To” field (I can’t copy and paste anymore!) and how hard do you really think it is to do OCR on those?

Especially if you’re a business, don’t make it harder for people to contact you. It’s just stupid.

Say your words!

XHTML: You can use the tags <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your reply.

Comment Policy: Be nice. If you disagree, feel free to do so, but in a fact-supported manner. (E.g. "You are wrong. For example, the Wikipedia page for this subject says..." is okay, "You are a noob because you disagree with me!" is not.) Swearing is okay, provided it's not just there for the point of swearing and it's not excessive. Trolls aren't okay. This is not YouTube. By commenting you give me a perpetual, non-revokable license to publish your comments on my site. I can modify and delete them at will from this point.

* Your email will never be displayed, and I won't share it with anyone. If you have a Gravitar it will automatically be used.

Copyright © 2007 - 2009 Tyler Menezes.

All rights reserved. Y hallo thar, u is da admin?