Yup – spam still getting through

Have you tried renaming your “real” fields to be nondescript, assuring that spambots wouldn’t have any reason to suspect your honeypot field is any more or less important than other text fields? Perhaps also try putting the honeypot as the first field in the form, in case the bot is simply populating the first X number of fields with its spam content.

I will try those suggestions and let you know, thanks for the response and followup.

Hello
Update on this, there was no change unfortunately. Just overnight another 8 spam emails.

I am not sure why this doesn’t work out-of-the-box, sounds like others have had installed this successfully. I placed the honeypot field at the top, changed tag names, saved the new form, etc. Perhaps others are using another captcha in addition to this? Not sure.

Regards

Honeypots as a method of spam prevention have limits, the largest of which being it relies on bots being stupid. If bots aren’t stupid, or if it isn’t a spam bot, but a spam farm of actual people, they’ll not be caught by the honeypot.

If you want to send me a link to the page where the form is, I’ll take a quick look at the source HTML and confirm that it is at least rendering as expected. If you don’t want to share the link here, you can send it to ryan (at) nocean (dot) ca.

I’m having the same issue as Islo, but I wanted to come up and add that if it’s only 8 emails, the site is probably being farmed manually. I’ve gotten about 60 emails in 24 hours, but it’s erratic and inconsistent. Google Analytics shows a spike from a direct address. Additionally, I only have one form field- just for email to subscribe to a newsletter. Not sure what a spammer is going to get out of sending me their email database one at a time (If they are actual emails, which they seem to be).

This is a great idea and plug-in, and plan on writing a review next. Thanks, Ryan.