One alternative is to do it the the way StackOverflow does and create an account by linking it to their gmail account (or similar) automatically. Theres minimal hassle to the user then and its a valid way of attempting to ensure that the user is legitimate
I think at this point, email activations and CAPTCHAs are so common, the users are used to it. I wouldn't worry about email activations, but I would warn against overuse of CAPTCHA. I'm thinking of one forum I checked out recently which insisted on an image and logic CAPTCHA on registration, and then again for each of your first five posts. Considering the image CAPTCHA was the same generation each time and the logic CAPTCHA was identical each time, I think it was overkill.
I'm guessing that by the "'moderation' method" you mean actually have moderators that watch over the site and ban spammers. I can understand your dislike for such a system, but an alternative that a lot of sites use is peer moderation (e.g. StackOVerflow or Slashdot). This still means that spam gets posted, but it usually gets flagged or otherwise modded down so far that no one will ever see it.
Another tactic is a reputation system that requires a certain level of rep before one is allowed to post links. StackOverflow has a system like this as well (you can't even comment before you reach a certain level of reputation). This can be a little annoying at the beginning, but it's definitely effective at eliminating spam.
And as already mentioned by others, CAPTCHAs are probably the easiest anti-spam technique to implement. There are many libraries and APIs out there for generating CAPTCHAs, and you can even put the tests to good use by using reCAPTCHAs to help digitize books. The drawback is that automated CAPTCHA-deciphering algorithms are getting better and better, and the spammers without the ability to implement them can often farm the work of solving CAPTCHAs out to 2nd/3rd world workers.
Whatever method you choose, there's going to be some level of inconvenience for the user, but most of the common techniques are readily accepted by users and worth the trade-off to eliminate spam.
The most used way is a verification mail + captcha, because usually emails from unknown sources aren't sent to spam folder. I tried this way with Gmail and Hotmail and both are working perfectly.
You can also use other systems such as using the OpenID (I think this is a very good way), Gmail account, Facebook acccount etc...
发布评论
评论(4)
一种替代方法是按照 StackOverflow 的方式进行操作,并通过自动将其链接到他们的 Gmail 帐户(或类似帐户)来创建帐户。这样一来,用户的麻烦就最小了,这是尝试确保用户合法性的有效方法
One alternative is to do it the the way StackOverflow does and create an account by linking it to their gmail account (or similar) automatically. Theres minimal hassle to the user then and its a valid way of attempting to ensure that the user is legitimate
我认为目前电子邮件激活和验证码已经非常普遍,用户已经习惯了。我不担心电子邮件激活,但我会警告不要过度使用验证码。我想到了我最近查看的一个论坛,该论坛坚持在注册时使用图像和逻辑验证码,然后对您的前五个帖子中的每一个都再次进行验证。考虑到图像验证码每次都是同一代,逻辑验证码每次都是相同的,我认为这是矫枉过正。
I think at this point, email activations and CAPTCHAs are so common, the users are used to it. I wouldn't worry about email activations, but I would warn against overuse of CAPTCHA. I'm thinking of one forum I checked out recently which insisted on an image and logic CAPTCHA on registration, and then again for each of your first five posts. Considering the image CAPTCHA was the same generation each time and the logic CAPTCHA was identical each time, I think it was overkill.
我猜你所说的“‘审核’方法”实际上是指有审核员来监视网站并禁止垃圾邮件发送者。我可以理解您不喜欢这样的系统,但许多网站使用的替代方案是同行审核(例如 StackOVerflow 或 Slashdot)。这仍然意味着垃圾邮件会被发布,但它通常会被标记或以其他方式修改,到目前为止没有人会看到它。
另一种策略是声誉系统,在允许发布链接之前需要一定程度的声誉。 StackOverflow也有这样的系统(在达到一定的声誉之前你甚至不能发表评论)。一开始这可能有点烦人,但它对于消除垃圾邮件绝对有效。
正如其他人已经提到的,验证码可能是最容易实施的反垃圾邮件技术。有许多库和 API 可用于生成验证码,您甚至可以使用 充分利用测试reCAPTCHA 帮助书籍数字化。缺点是自动验证码解密算法越来越好,而没有能力实施这些算法的垃圾邮件发送者通常可以将解决验证码的工作交给第二/第三世界的工人。
无论您选择哪种方法,都会给用户带来一定程度的不便,但大多数常见技术很容易被用户接受,并且值得为消除垃圾邮件而进行权衡。
I'm guessing that by the "'moderation' method" you mean actually have moderators that watch over the site and ban spammers. I can understand your dislike for such a system, but an alternative that a lot of sites use is peer moderation (e.g. StackOVerflow or Slashdot). This still means that spam gets posted, but it usually gets flagged or otherwise modded down so far that no one will ever see it.
Another tactic is a reputation system that requires a certain level of rep before one is allowed to post links. StackOverflow has a system like this as well (you can't even comment before you reach a certain level of reputation). This can be a little annoying at the beginning, but it's definitely effective at eliminating spam.
And as already mentioned by others, CAPTCHAs are probably the easiest anti-spam technique to implement. There are many libraries and APIs out there for generating CAPTCHAs, and you can even put the tests to good use by using reCAPTCHAs to help digitize books. The drawback is that automated CAPTCHA-deciphering algorithms are getting better and better, and the spammers without the ability to implement them can often farm the work of solving CAPTCHAs out to 2nd/3rd world workers.
Whatever method you choose, there's going to be some level of inconvenience for the user, but most of the common techniques are readily accepted by users and worth the trade-off to eliminate spam.
最常用的方式是验证邮件+验证码,因为通常来自未知来源的电子邮件不会被发送到垃圾邮件文件夹。我在 Gmail 和 Hotmail 上尝试过这种方式,两者都运行良好。
您还可以使用其他系统例如使用OpenID(我认为这是一个非常好的方法),Gmail帐户,Facebook帐户等...
The most used way is a verification mail + captcha, because usually emails from unknown sources aren't sent to spam folder. I tried this way with Gmail and Hotmail and both are working perfectly.
You can also use other systems such as using the OpenID (I think this is a very good way), Gmail account, Facebook acccount etc...