Spammers ruin everything: how do I stop them from abusing mailing list signups?
June 3, 2008 9:45 AM Subscribe
On our website, we've got a little one-field form where people can fill in their e-mail address and sign up for our mailing list. The form seems to now be the target of spammer-hacker bastards, and random people are complaining about being signed up for a list they've never heard of. What should we do, besides take down the form altogether? The only thing that comes to mind is a captcha (but that adds another step to what should be a one-step process).
posted by chrominance to Computers & Internet (7 answers total) 6 users marked this as a favorite
The list is administered by mailman, and it sends out confirmation e-mails before it signs anyone up. There's no way to add text to the automated mails so it shouldn't be the target of spammers. Nevertheless, it seems someone's using the form as a way to pester random people with (potentially lots of) confirmation e-mails. One of the goals with the very simple form was to make it easy for people to sign up; we'd rather not have to tell people to send arcane e-mail messages to a mailman address to sign up—and in any case, would that really solve the problem? Isn't that just as open to abuse? Captchas are at least a workable permanent solution, but I'd prefer something more accessible and easier to use. Nothing comes to mind.
Spammers ruin everything.