For several weeks now, one of the forms on my Web site has been used by spammers to send me spam. Their spiders fill out the “address” field of the form, which is a large multi-line field, with urls and other glurge and send it to me.
Here is a recent sample:
AFAITC, they are not hijacking my Web server to send their e-mail to other people, which is one form of Web form spamming I learned about while looking for a solution. They just seem to be sending me their junk. It all seems to be coming from Italy, for some reason.
The problem is that I use this form to take orders for a product I sell, and the spam is now swamping the actual orders by an order of magnitude. I can’t afford to just disregard all replies from this form, or I wouldn’t have created it in the first place. But oddly, the spammers are only using one of several forms on the site (so far), even though the others have similar fields that could be misappropriated to this purpose.
So does anyone have any suggestions for how I can prevent this? I’ve just tried renaming the “Address” field and will see how that works. I may also try creating a new page for this product, and turn the old page that the spammers are using into a dead page that I can safely ignore. But I’d rather find a method that prevents their using the form in the first place, but without forcing real customers to jump through hoops like using a CAPTCHA image.
(FYI, the site is hosted on a commercial server, not one in my direct control.)
Any ideas? Thanks.