I had this problem recently in the custom blog/comment functionality I had written for my company's app.
I've taken a few steps which has completely rid me of spam (for now):
- IP blacklisting: an obvious one but well worth the few minutes it takes to setup, most of our spam was coming from China.
- Link blocking: our comments don't really require links to work as the comments are generally short and to the point and the blog is not used by terribly tech savvy users.
- Hidden checkbox: add a hidden checkbox to the form. If it comes through as checked you know a human didn't submit the form.
Analysing a visitors progression through the site is a neat idea though - if spam becomes an issue again then I may use this approach (since I'm already gathering this data for custom analytics).
I've taken a few steps which has completely rid me of spam (for now):
- IP blacklisting: an obvious one but well worth the few minutes it takes to setup, most of our spam was coming from China.
- Link blocking: our comments don't really require links to work as the comments are generally short and to the point and the blog is not used by terribly tech savvy users.
- Hidden checkbox: add a hidden checkbox to the form. If it comes through as checked you know a human didn't submit the form.
Analysing a visitors progression through the site is a neat idea though - if spam becomes an issue again then I may use this approach (since I'm already gathering this data for custom analytics).