Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
Unfortunately there are too many modules that provide CAPTCHA-free spam protection. Some of them look like deprecated, some - have even more than BOTCHA number of installations. It would be nice if we could join the forces - and work together on a single project. "Collaboration, not competition", as you know.
Here you are a list of similar projects, that I am going to merge into BOTCHA:
- JS Validate Forms (http://drupal.org/project/js_validate_forms): #1073836: Offering to maintain JS Validate Forms
- Uncaptchalous (http://drupal.org/project/uncaptchalous): #1847614: Offering to maintain Uncaptchalous
- Captcha-free (http://drupal.org/project/captcha-free): #1847620: Offering to maintain Captcha-free
- Honeypot (http://drupal.org/project/honeypot): #1880300: Consider consolidating Honeypot into BOTCHA
- Spamicide (http://drupal.org/project/spamicide): #1880334: Offering to maintain Spamicide (for merge it with BOTCHA)
- Hidden Captcha (http://drupal.org/project/hidden_captcha): #1881314: Merge with BOTCHA
- Badbot (https://drupal.org/project/badbot): #2072405: Merge Badbot with BOTCHA
I also liked (as ideas for new recipes and new functionality to implement):
- Bad Behavior (http://drupal.org/project/badbehavior)
- Invisimail (http://drupal.org/project/invisimail)
- Hashcash (http://drupal.org/project/hashcash)
- Honeytrap (http://drupal.org/project/honeytrap)
- Report Spam (http://drupal.org/project/report_spam)
Comments
Comment #0.0
PatchRanger CreditAttribution: PatchRanger commentedAdded Honeypot issue.
Comment #1
iva2k CreditAttribution: iva2k commentedI reviewed Hashcash module code. It implements one recipe that fits exactly into what Botcha does. I think Botcha will benefit if Hashcash recipe is added. The advantage of Hashcash recipe is in straining CPU of client PC for each form submission. Normal users won't notice the time it takes (a second or so of hashcash computation time), but spambots will be hit hard and will reduce their submissions by 100x.
One interesting idea of Hashcash (besides the recipe) is a fallback on Captcha module if client does not have javascript. But we know Captcha's today are completely broken by spambots, so I'm questioning value of that feature.
Comment #1.0
iva2k CreditAttribution: iva2k commentedAdded Spamicide issue.
Comment #2
DanZ CreditAttribution: DanZ commentedSomething to think about:
See https://drupal.org/node/1959310.
I've proposed an anti-spam module framework. Instead of merging a lot of anti-spam techniques and services into a single monolithic module, I propose that there be a pluggable/hookable framework that allows independently-developed modules to register, then they can all work together.
So, you could select from your favorite detection modules, your favorite blocking modules, your favorite reporting modules, and your favorite cleanup modules, and they'd all automatically work together via the same API.
That way, the different anti-spam modules don't have to keep re-inventing the wheel, where each one has it's own different detection, blocking, reporting, and cleanup subsystems. Just plug in to the anti-spam framework, and you get all the features from the other modules.
Comment #2.0
DanZ CreditAttribution: DanZ commentedAdded Hidden Captcha issue.
Comment #3
PatchRanger CreditAttribution: PatchRanger commented@DanZ Sorry for answering so late - I hope not too late. :)
I like the approach. It is definitely the way to move on.
- ha, looks nice! Could be just "Censor" or "Advisor" or "Validator". Under consideration.
So, as you described in https://drupal.org/node/1959310 there should be several parts, that are going to play together, each of them simultaneously could be extended by any other contributed module:
Am I missing something? I think the level of abstraction fits. This is the way to become "Huston" for all of the diversity of spam-and-other-bad-things-protection modules, isn't it?
Comment #3.0
PatchRanger CreditAttribution: PatchRanger commentedAdded Badbot
Comment #4
izmeez CreditAttribution: izmeez commentedIs there anything wrong with using both badbehavior and botcha modules on sites? They don't seem to conflict on sites.