Elliot Back has come up with the best anti-comment-spam measure I’ve heard in quite a while.
Here, as I understand it, is the method:
- When the user submits the comment form, the original MD5 hash is re-hashed by the browser using the js function, resulting in a new hash. The new hash is included in the post to the server.
- The server makes sure that the new hash is a proper result of hashing the original hash.
Via Waxy’s Links.