Not much in ye olde SDMB database on this. Anyhoo, enough is enough, I’ve got to deal with this.
Two problem areas:
Contact details (normally in the footer) on regular web sites
The only options that come immediately to mind here are;
1 – Using a Javscript programme that allegedly thwarts harvesting programmes – never used one so I don’t know how well they work and any input would be helpful, or
2 – Putting the e-mail address on a graphic and requiring that people wanting to contact you cut and paste from that graphic (obviously, it would look like a normal e-mail address. I guess you just add 'C&P as a hint) E-mail details in profiles on boards such as the SDMB
All I can think of at the moment is putting something like: Whoever AT Whatever Dot com but that’s so obvious I’m sure it won’t belong before that kind of construction is also harvested.
Not ideal solutions – any ideas, experiences, recommendations to deal with this bloody nuisance once and for all ?
If you’re worried about e-mail on a website you run (i.e. the webmaster link) you could just do one of those ‘Contact Us’ forms. I’ve seen a few that don’t have the e-mail on the page (or in the source) anywhere – it depends what your ISP allows.
For profiles either hide your e-mail or use a generic hotmail (or similar) one. This may involve you changing your e-mail on a regular basis.
You could request that anyone who e-mails you includes something specific in the subject line so you can find important e-mails easily.
Those are just my ideas, what Mangetout suggests is popular on newsgroups and similar. A friend told me of a similar variation something like …
**someknickersoneATsomebraplace.com (please remove underware before using) **
However: YourantispamnameATyourantispamdomain.com, which I’ve seen all over the place, is quite ulikely to be foolproof anymore; anything popular like that will be something that at least some of the bots will have been programmed to edit out
I’ve tried using an image to display the email address on my site, and I’m currently using a halfway-effective method which involves converting the address to the ASCII codes – the HTML source doesn’t look like an email address, but the browser renders it properly. This fools less sophisticated harvesters while still allowing people to copy-and-paste the address (but doesn’t fool sophisticated harvesters).
There’s a fairly in-depth discussion of email encoding techniques for webmasters here –
If you use an email address you will get spam because any server through which the packets pass can harvest the address. So there is no way of absolutely preventing your address from getting on spam lists. By removing it from web pages you will diminish some of the incidence but not eliminate it.
There are several ways to go about this. The safest is to just place the email address in graphic form but this means the user must key it in again and can make mistakes.
Most address harvesters are just looking for the “@” character and if in the source code you use @ instead the harvester will not recognize it and it will still work. You can use the same technique on the entire address if you are so inclined.
This is how I have it:
<a href=“mailto:alfgon@
hotmail.
com?subject=Website%20visitor&body=Hi,”>
<img src=“email1.gif”></a>
as you can see the display is a graphic and the link is encoded. It could be that some harvesters can recognise the mailto tag or the encoded @ but it is better than nothing.
In any case, if you use an email account, you will get spam, so I don’t take too much trouble and just to filter out a good chunk before I even see it.
well, shoot! the html interprets my codes so you can see the characters but not the source code I posted. OK, let’s see if putting spaces between the characters preserves the codes:
@ = & # 064 ; (six char from & to
So my email is displayed correctly (as you can see above) and the mail link works fine but the source code looks like this:
<a href=“mailto: & #097;& #108;& #102;& #103;& #111;& #110;& #064;& #104;& #111;& #116;& #109;& #097;& #105;& #108;& #046;& #099;& #111;& #109;?subject=Website%20visitor&body=Hi,”> <img src=“email1.gif”> </a>
and I expect many harvesters would not recognise it. The main character to hide is the @.
Sailor – that’s the ASCII (I think) conversion I was talking about. Apparently it doesn’t fool the latest generation of harvesters. but in the meantime I haven’t noticed an increase in spam.
If the bots now pull the words “nospam” or “spam” out of your address, would it work to make those words part of your address? something like “spamnospambob342@whatever.com”?
JC
DO the bots remove the words nospam? are we suppose to when contacting that person. I have a real address that has nospam in it - am I missing emails because people are deleting it?
There is an obvious problem (I think) regarding the e-mail addresses in our board profiles. Without a valid (and harvestable) e-mail address, how would we get e-mail notifications of responses to threads ?
…does this make the banana/apple/knickers/bra ideas less helpful or have I got the wrong end of the fruit/underwear ?
It’s actually not that bad because you only get one notification per thread until you respond again in that thread (I think that’s how it works…at the moment I don’t know if I’m coming or going…).
Having tried the notification in ‘off’ and ‘on’ mode, it seems the only sane way of keep abreast of everything…probably a bit late for the sanity now though…where was I…
I have my own mail server and can create nonce addresses at will. I actually tried this a couple years ago: spam***@… as a real address. I have even posted to Usenet using this. I had assumed that I would have to kill it after a couple months and start a new one but it is still almost completely spam free! I have almost never gotten 2 spams from the same source. Until recently… Some genealogy scam site started sending me HUGE files, 1 per day. I quickly blocked that site completely.
It really does appear to work well. But nonce addresses are also good.
Not actually a problem. The board software knows your address, and can use it to send you notifications, but if you have your settings set to “don’t display e-mail address”, then no person or harvester visiting the site can get at it. If the site is cracked open completely somehow, the address is there in the database, but should that happen, we’ve got some big problems anyway.
Even if you have you address visible here, there are still some measures the board software takes to protect against spammers. You’ve noticed that the e-mail link under a post doesn’t actually contain the person’s address directly? A harvester would need to access 50 different pages to get 50 e-mail addresses. Of course, with the number of vB boards out there now, it’s possible that some harvisters are programmed to do this now. If you want to be completely safe, hide your address.
You can send ICQ pager messages by email in the form of XXXXXXX@pager.icq.com and they will pop up in your ICQ.
I have had that address up on my webpage for years and have not received a single spam. Nobody uses it and it was never found on the web page.
Yesterday my girlfriend was having problems with her computer and could not use ICQ but she could use another computer to send me an email so I told her she could send me a short message by email to my ICQ pager address and I would phone her. She used that address a couple of times yesterday and I have already received a couple of spams there which just goes to show you that email addresses are easily harvested as packets pass through servers and there’s nothing you can do about it but filter spam as it arrives.
As in yourmypantsname@yourmypantsdomain.com - Remove my pants to reply. This is such a commonly used attempt to thwart the Spambots that they now filter out the words mypants.
Just a helpful hint Don’t know if knickers, etc has the same problem.
Don’t know if knickers, etc has the same problem.