tags:

views:

139

answers:

3
+1  Q: 

Providing a feature only once to each unique visitor

I have written a message board as my first ASP.NET project. It seems to work well so far. However, one of the features I have is that each message has a spam rating. It is simply the number of times that viewers have marked the message as spam divided by the total number of times the message has been viewed. The idea is to allow users to ignore messages with high spam ratings if they choose to do so.

However, the whole system can be foiled by a spammer simply viewing his own message and refreshing it a bunch of times, which will increase the number of times the message has been viewed. It can also be foiled by someone who marks the message as spam a bunch of times in a row. I need a way to determine whether a particular visitor has already viewed a particular message, and a way to determine whether a particular user has already marked a particular message as spam.

I don't want to require registration - I want anyone to be able to view or post messages. Two ideas I've been considering are setting a cookie when the visitor gets onto the site so I can track them, or creating a new data table that logs IP addresses of users when they view a message or mark it as spam. Can anyone else think of a better way? Does .NET have any built in features that might help me determine whether the visitor is viewing a page for the first time?

+3  A: 

The most reliable measure is IP address filtering as the spammer could circumvent any other method by writing his own program to request the page. It will affect your clients behind NAT, but for spam filtering purposes, it works pretty OK.

Mehrdad Afshari  2009-03-04 17:10:54
A spammer could also spoof the IP Address making IP Filtering useless. You would also loose people who are behind a nat.
JoshBerke  2009-03-04 17:16:58
It's much less likely and is by far harder. This is always the problem. You have to sacrifice :) Any spam filtering mechanism I have seen has false positives.
Mehrdad Afshari  2009-03-04 17:20:16
It is a message board for a small community of people who share similar interests. I don't anticipate running into hordes of users who will be viewing the same messages from behind the same NAT, so I think the IP option will work the best, at least for now. Thanks to everyone for you input.
Tom V  2009-03-04 17:36:38
A: 

ASP.Net has a built-in feature called Personalization that can be used to detect and remember anonymous users alongside normal "registered" users.

Joel Coehoorn  2009-03-04 17:20:31
I think that depends on a cookie, so I don't think it is good for the scenario
eglasius  2009-03-04 17:31:48
You can configure it a number of different ways.
Joel Coehoorn  2009-03-04 17:32:39
A: 

For anonymous users use the IP. This will give false positives, specially for some internet providers, but it looks like a decent trade-off for your scenario. I would also make it simple for users to get identified, open id is a great way to do this.

eglasius  2009-03-04 17:33:53
I was actually thinking about making that an option to users. People who identified themselves will have their message marked as "verified", which will allow other users a greater level of discrimination when deciding which messages to take seriously. Thanks for the recommendation to use Open ID.
Tom V  2009-03-04 17:46:07
@Tom, glad to help, up votes are welcomed :)
eglasius  2009-03-04 17:50:29

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?