Support » Plugin: Contact Form 7 Honeypot » Yup – spam still getting through

  • Resolved Islo

    (@nuytun)


    I thought this plugin would work but seems not.

    Yes I tried changing the name to honeypot email-XXX or honeypot url-xxxx.

    When I had the email-xxx name more spam was coming through for urls, so I changed it and now it’s about 10 per day.

    Before I review this plugin any ideas on what the issue is?

    Is it possible to use 2 forms fields, one for url and one for email – so they both are used as traps?

    THanks

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Ryan

    (@daobydesign)

    Have you tried renaming your “real” fields to be nondescript, assuring that spambots wouldn’t have any reason to suspect your honeypot field is any more or less important than other text fields? Perhaps also try putting the honeypot as the first field in the form, in case the bot is simply populating the first X number of fields with its spam content.

    Islo

    (@nuytun)

    I will try those suggestions and let you know, thanks for the response and followup.

    Islo

    (@nuytun)

    Hello
    Update on this, there was no change unfortunately. Just overnight another 8 spam emails.

    I am not sure why this doesn’t work out-of-the-box, sounds like others have had installed this successfully. I placed the honeypot field at the top, changed tag names, saved the new form, etc. Perhaps others are using another captcha in addition to this? Not sure.

    Regards

    Plugin Author Ryan

    (@daobydesign)

    Honeypots as a method of spam prevention have limits, the largest of which being it relies on bots being stupid. If bots aren’t stupid, or if it isn’t a spam bot, but a spam farm of actual people, they’ll not be caught by the honeypot.

    If you want to send me a link to the page where the form is, I’ll take a quick look at the source HTML and confirm that it is at least rendering as expected. If you don’t want to share the link here, you can send it to ryan (at) nocean (dot) ca.

    I’m having the same issue as Islo, but I wanted to come up and add that if it’s only 8 emails, the site is probably being farmed manually. I’ve gotten about 60 emails in 24 hours, but it’s erratic and inconsistent. Google Analytics shows a spike from a direct address. Additionally, I only have one form field- just for email to subscribe to a newsletter. Not sure what a spammer is going to get out of sending me their email database one at a time (If they are actual emails, which they seem to be).

    This is a great idea and plug-in, and plan on writing a review next. Thanks, Ryan.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Yup – spam still getting through’ is closed to new replies.