Menu Close

How to Prevent Spam Submissions on Your Web form.

If you feel you are drowning in spam every day, you are not alone.

According to research, spam accounts for 17.5 billion messages globally per day. That figure accounts for 45% of all emails, with some estimates hitting a staggering 73%.

Companies are under the burden of spam, report shows that 60% of companies polled said minimizing spam is a top priority.

But can you stop web form spam? Can you ever achieve a zero-spam box? The chances are slim to none but there are ways to drastically reduce the burden.

Here are 5 tips on how to protect your web form from spam


1. Use reCAPTCHA on all web forms

CAPTCHA is an effective way to block spambots, you’ve certainly encountered a recaptcha form before.

With CAPTCHA, you’re putting intelligent programming in place to allow people to check a box that confirms they are a living, breathing person. This is easy for humans, but difficult for bots to do. You can implement this protective step for free.

2. Use a double opt-in form

Another means of protecting your form as well as building a solid list of quality emails is using a double opt-in process for confirming sign-ups. How does this work? When someone enters an email address into your form, a double opt-in process ensures that a confirmation link is sent to that email address. This would require the user to confirm they are humans by clicking the link that would be sent to them. A human user will be able to go through this process but a robot won’t. Any signup that doesn’t complete this process should not be added to the email list.

3. Record data from form submission like IP address and use that to block spammers

This is another way of blocking spam form submit, by collecting the IP address of users who respond to your webforms. With this, you can easily detect patterns. For example, if you receive 15 submissions from the same IP in a very short period of time, that IP is certainly spam.

You can collect Ip using PHP

$ip = getenv(“REMOTE_ADDR”) ;

4. Don’t use standard URLs for forms 

Most comments from spam are automated, so spammers go to your blog or websites to attack the form directly.

If comment files (usually comments.php) exist on your site, spammers can and will use it to post spam comments to your blog. Changing the file name to something else can block automated spambots.

5. Move form URL periodically

Spammers can find your form URL if they are linked to your website, and there are many spam businesses where all they do is sell lists of URLs to forms where spammers can write their posts.

Move your form pages periodically and periodically change the name of any scripts you point to in the attribute of your form. Some spammers bypass the form and submit directly to the script.


Leave a Reply

Your email address will not be published. Required fields are marked *