SitePoint Sponsor

User Tag List

Results 1 to 8 of 8
  1. #1
    SitePoint Zealot Tygger2512's Avatar
    Join Date
    Jul 2003
    Location
    Pittsburg, KS
    Posts
    191
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Question would this make e-mail address spamproof?

    I'm trying to devise a method for making my e-mail address spam proof without alienating people who either do not have JavaScript enabled, or are using a brower that does not support JavaScript:

    Code:
    <script type="text/javascript">
    <!--
    var linktext = "Report Broken Link";
    var subject = "Broken& #32;Link";
     var email1 = "webmaster";
     var email2 = "fictitiousdomain.com";
     document.write("<a href="+"mailto:"+email1+"@"+email2+"?subject="+subject+">"+linktext+"</a>")
    //-->
    </script>
    <noscript>
    Please report broken links by sending an e-mail to: webmaster& #64;fictitiousdomain& #46;com
    </noscript>
    
    (spaces within character entities are intentional, 
    to prevent them being converted to the values they represent.)
    Would this method work, or is a SPAMBOT liable to detect the webmaster& #64;fictitiousdomain& #46;com, even though it is not hyperlinked?


    Thanks for any advice you may have,
    Andy.
    Last edited by Tygger2512; Sep 8, 2003 at 10:48.

  2. #2
    Formerly known as RockNRollPig Shpigford's Avatar
    Join Date
    Dec 2002
    Location
    Denver, CO
    Posts
    2,877
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    how would you be able to use that if javascript was dissabled?

  3. #3
    SitePoint Zealot Tygger2512's Avatar
    Join Date
    Jul 2003
    Location
    Pittsburg, KS
    Posts
    191
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Arrow

    Quote Originally Posted by RockNRollPig
    how would you be able to use that if javascript was dissabled?
    Try it for yourself. The content between <noscript></noscript> is displayed. The user would have to cut and paste the e-mail address into their e-mail client, but this is a trade-off to avoid having my e-mail address displayed in a mailto link that could be harvested by spammers.

    (To try it for yourself, you will need to delete the space between '&' and '#', wherever they appear)

  4. #4
    SitePoint Wizard silver trophy Jeremy W.'s Avatar
    Join Date
    Jun 2001
    Location
    Toronto, Canada
    Posts
    9,123
    Mentioned
    2 Post(s)
    Tagged
    0 Thread(s)
    Bots can read between the no-script tags as well. It's not spam-proof either as many can read ampersand code.
    SVP Marketing, SoCast SRM
    Personal blog: Strategerize
    Twitter: @jeremywright

  5. #5
    SitePoint Evangelist Mr. Brownstone's Avatar
    Join Date
    May 2002
    Location
    Relative
    Posts
    452
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    There is no fool-proof way to show an email-address on a web-page and make it impervious to being harvested. At least no attractive and accessible way.

    What you need to do is have a method of emailing which doesn’t expose the address. Incorporate the ability to send an email into a page on your site, using a simple form. When submitted, the email is sent server-side without the client ever seeing the address in any form, encoded or not.

    EDIT - Here’s an example.
    Of course, that's just my opinion. I could be wrong.

  6. #6
    SitePoint Zealot Tygger2512's Avatar
    Join Date
    Jul 2003
    Location
    Pittsburg, KS
    Posts
    191
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thanks for the responses. I was hoping to find a method that would work without using forms because my web host disabled form mail for my site when someone was misusing the CGI scripts to send SPAM apparently from my domain. I will have to speak to them again and see if there is a way to allow me to use form mail without exposing my site to the risk of spammer attack again.

    Andy.

  7. #7
    Web-coding NINJA! silver trophy beetle's Avatar
    Join Date
    Jul 2002
    Location
    Dallas, TX
    Posts
    2,900
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Right - and the idea of obfuscating it with entities will do you no good. Not only can email harvesters read entities, it's usually a feature they list in their "advertising".
    beetle a.k.a. Peter Bailey
    blogs: php | prophp | security | design | zen | software
    refs: dhtml | gecko | prototype | phpdocs | unicode | charsets
    tools: ide | ftp | regex | ffdev




  8. #8
    Sidewalking anode's Avatar
    Join Date
    Mar 2001
    Location
    Philadelphia, US
    Posts
    2,205
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    TuitionFree — a free library for the self-taught
    Anode Says...Blogging For Your Pleasure


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •