+2  A: 

I think you can read the basic concept from Captcha's website. Then, google for Captcha with classic ASP: http://bit.ly/dpFKgW

You may have to figure things out on your own after that, because we cannot see your ASP pages' source code.

publicRavi  2010-07-16 17:28:55
+8  A: 

Try putting an empty field in the page, hide it via CSS and check if it's filled in. (Perhaps with a note beside that says to leave it empty in case a user has CSS disabled.) Many bots will fill every field in, so you can check if this field is empty.

Michael Mior  2010-07-16 17:32:54
The effectiveness of this will go down as it becomes more widely known, I suppose. Classic cat and mouse. There's a lot of similar things you can do though to stay a step ahead of the spambots without resorting to captchas.
dreeves  2010-07-16 17:37:41
@dreeves: Cat and mouse indeed. But it works at the moment, that's really what matters. :) Some day, bots will be able to read captchas, but we can worry about that when it happens.
casablanca  2010-07-16 17:40:38
@casablanca I'm sure those bot's that read CAPTCHAS will be made in 2020 in Japan first and they will look like humanoids, and have biocameras (actually Jeff Atwood's eyeballs) that look at the 200 inch display. They will also be able to fill in the form in a smart way so you can't see it's done by a bot. Next to that, they will be able to switch SIM cards to change their IP address. And if a new native language has been invented, they can decode it immediately. That are the spambots of the future.
Time Machine  2010-07-16 17:53:31
I meant `3D display`, so they can fill in millions of forms at the same time.
Time Machine  2010-07-16 18:01:34
@Koning: LOL, made my day!
casablanca  2010-07-16 18:05:46
Yeah, sadly there will never be a perfect technique for fighting spam. The spammers keep up with technology just as well as developers do.
Michael Mior  2010-07-16 19:36:21
+7  A: 

CAPTCHA is the most well-known solution, but if you're looking for something simple, I've found that this works quite well: set your form's submit URL to blank (or something invalid) and introduce it via JavaScript. So far, I haven't seen a bot that executes JavaScript to get past forms. This does mean that users need to have JavaScript enabled, but most do anyway.

Example:

<form id="myform" action="" onsubmit="return doSubmit();">
...
</form>

<script type="text/javascript">
function doSubmit() {
  // You can also do any validation here if required
  document.getElementById('myform').action = 'real_submit_url';
  return true;
}
</script>
casablanca  2010-07-16 17:35:43
Don't forget about user experience: http://meta.stackoverflow.com/questions/48840/todays-captcha-wtf-closed
Time Machine  2010-07-16 18:05:43
That's true. It's however a workaround, not a solution. Usability-wise it's even a dealbreaker.
mario  2010-07-16 18:23:43
Personally I would never adopt a solution that hurts user experience. I'd rather suck it up and take the spam.
Michael Mior  2010-07-16 19:35:15

related questions

Autosizing Textarea
Regular expression for parsing links from a webpage?
What are good tools for creating compiled HTML help files (.chm)?
Looking for WYSIWYG HTML editor
Any reason not to start using the HTML 5 doctype?
HTML comments break down
HTML Comments Markup
Setting a div's height in HTML with CSS
Wrapping lists into columns
Is a "Confirm Email" input good practice when user changes email address?
<XMP> Tag
HTML version choice
Options for HTML scraping?
How do you disable browser Autocomplete on web form field / input tag?
How do I make a checkbox toggle from clicking on the text label as well?
Html CSS Editor
Wordpress theme development offline tools
How do I give my web sites an icon for iPhone?
In HTML, how to word-break on a dash?
Detecting font in JavaScript
How do you test layout design across multiple browsers/OSs?
How do I print an HTML document from a web service?
Multiple submit buttons on a HTML form
How can I determine a web user's time zone?
Why doesn't the percentage width child in absolutely positioned parent work in IE7?