Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Attached is a patch to include an additional default rule which explicitly requires a textfield to be empty.
Spambots routinely fill in all blanks on forms to satisfy requirements that most forms have of being completely filled out. By filling out all fields on a form, the spambots are able to get their wares to the end user more reliably. This filter attempts to derail that by allowing the user to include a field that cannot have anything in it. Users can hide the field from humans by using a simple display: none !important; CSS code on the ID or Class of the input field div.
The error message is equally vague, telling of "missing data" in the field if content exists in it on submission.
This patch includes the improvements from comment #2 found in this issue: http://drupal.org/node/688848
(I didn't include the email validator additions from comment #3)
| Comment | File | Size | Author |
|---|---|---|---|
| #4 | webform_antispambot_rule_20100331a.patch | 1.6 KB | gregarios |
| #1 | webform_antispambot_rule_20100127a.patch | 3.62 KB | gregarios |
| webform_antispambot_rule_20100122a.patch | 2.49 KB | gregarios |
Comments
Comment #1
gregarios commentedAnother rule is in this attachment, paired with the previous attachment 20100122a, that adds a validator that will invalidate based on user-entered terms that will not be allowed in text fields. So you can effectively put in a comma-delimited list of "bad words" that will trigger the validator to deny the message.
Comment #2
gregarios commentedWill you be putting this in the next release? I've been working it hard for a few weeks now and they work very well. :-)
Comment #3
gregarios commentedComment #4
gregarios commentedAttached is an updated patch to be applied to 6.x-1.1. Can we get these two validators in the next new release, then? :-)
Comment #5
svendecabootercommitted to HEAD