views:

93

answers:

6

Hi,

i have a blog and the only user input is the commenting system, now i want to avoid the spam totally, which method will be wise to adopt? akismet way or captcha method..

my client doesnt mind his user entering few verification string to post comment, if i adopt it will i be able to completely control the spam if yes then could you please suggest few good and easy plugin like 4 digit , not the complex one.

thank you

+4  A: 

The captchas seem to be fooled by adept people. The Akismet is better option in my view. Having said that you should still use captch along with Akismet :)

Sarfraz
agreed. Jinx. ;)
livingtech
I would agree with your point sarfaraz, i guess that is how i could block the maximum spam. though i cannot avoid it. another question is , is it wise to direct the spam to another table in database if detected from Akismet?
Ibrahim Azhar Armar
A: 

No, captchas are not foolproof, so I would definitely recommend you ALWAYS use akismet when allowing comments in WordPress. Akismet will not catch everything either, so the only REAL solution is to moderate your comments. I've found Akismet + moderation to be a nice combo, however. Akismet catches almost everything, and when it doesn't, I usually only have to click the "check for spam" button again when I reach my comments page, and it's been marked as spam in the time between getting my moderation email and getting to the WP comments page.

livingtech
i had been using it lately in my WP blog, it is the best antispam out there, if i use akismet then will it be wise to redirect the spam in different table in database?
Ibrahim Azhar Armar
A: 

You'll never be able to completely avoid spam, but most fully automated spambots can be stopped by something like ReCaptcha.

leoluk
not true, Recaptcha actually is not so secure anymore, got cracked this year: http://www.teleread.com/2010/08/08/recaptcha-now-vulnerable-to-computer-cracking/
Jakub
see my comment on youssef azari's post above.
livingtech
A: 

Best captcha solution i know so far is Recaptcha (same used in stackoverflow).

if you want more security, you can build your own verification system.

youssef azari
Re-captcha actually is not so secure anymore, got cracked this year: http://www.teleread.com/2010/08/08/recaptcha-now-vulnerable-to-computer-cracking/
Jakub
ReCaptcha has been "cracked" (http://n3on.org/projects/reCAPTCHA/ -- also be sure to watch it in action: http://n3on.org/projects/reCAPTCHA/docs/recap.swf). Anyway, I definitely wouldn't trust it for anything super critical. That having been said, it's a fine solution for low traffic sites as long as you don't mind some spam getting through. Nothing is as good as moderation though.
livingtech
great information guys !!
youssef azari
+2  A: 

no captcha aren't failure proof. I also heard that people from for example India solve captchas for a little bit cash. The best way to stop spam is a multitude of:

  • captcha: proof that user is human(some bots are able to crack them. The harder the captcha the harder to crack)
  • akismet: test text for spam. I believe sometimes message get through(The call it ham or something)
  • authentication: when you authenticate that user is legitimate, I think you can stop spam completely. For example say a user is trusted when he has posted 5 spam-free posts.
Alfred
A: 

Never cracked and definitely the cutest captcha out there: http://thepcspy.com/kittenauth/

schuilr