CAPTCHAs Anyone ?

Discussion in 'SEO, PPC and Online Marketing' started by Fagin2021, Feb 18, 2021.

  1. Fagin2021

    Fagin2021 UKBF Contributor Full Member

    95 32
    I'd welcome some views on putting a CAPTCHA on a contact form page. I'm not fond of them and had hoped to avoid them, but sadly it is not to be and my enquiry form is increasingly plagued by spam.

    I use enquiry form submission as a 'conversion' in Google Ads/Google Analytics so spam messes up the stats and whilst not an insurmountable problem, it's something I can do without.

    Really, the question is 'does a Captcha' put off a genuine enquirer ? Some implementations (traffic lights/fire hydrants/bicycles etc) seem to need two or three attempts and I wonder if the visitor might just say 'sod it' and leave.
     
    Posted: Feb 18, 2021 By: Fagin2021 Member since: Jan 27, 2021
    #1
  2. Clinton

    Clinton UKBF Legend Free Member

    5,226 2,392
    reCAPTCHA v3!
     
    Posted: Feb 18, 2021 By: Clinton Member since: Jan 17, 2010
    #2
  3. Mr D

    Mr D UKBF Legend Free Member

    28,146 3,467
    Horrible things. Will avoid some sites that use them.
    Have done the PayPal one up to 5 times to log in. Waste of time and frustrating.
     
    Posted: Feb 18, 2021 By: Mr D Member since: Feb 12, 2017
    #3
  4. Lucan Unlordly

    Lucan Unlordly UKBF Ace Free Member

    2,084 378
    I've been setting up a Forum over the last few months and have been plagued by new spam members. Captcha has stopped them although it's a simple yet industry specific question that 99% of wanted visitors should know the answer to, that thus far thus far 100% of not wanted members don't!
     
    Posted: Feb 19, 2021 By: Lucan Unlordly Member since: Feb 24, 2009
    #4
  5. zigojacko

    zigojacko I say it how it is Full Member - Verified Business

    3,711 1,202
    As @Clinton said above, just use reCaptcha v3 from Google. It's just a checkbox to state you're not a robot and you can also use invisible reCaptcha which doesn't rely on the user having to work out letters, numbers or pictures.
     
    Posted: Feb 19, 2021 By: zigojacko Member since: Dec 7, 2009
    #5
  6. atmosbob

    atmosbob UKBF Ace Free Member

    4,749 1,141
    Posted: Feb 19, 2021 By: atmosbob Member since: Oct 26, 2009
    #6
  7. DefinitelyMaybeUK

    DefinitelyMaybeUK UKBF Contributor Free Member

    53 8
    Another vote for reCaptcha here - have v2 on a couple of 'well known' robot links and has worked 100% so far - just waiting for the robot arm to be common place, a bit like the old telephone diallers from days gone by! There's a crude "security level" setting on the reCaptcha and we're on medium and don't see many fire hydrants or recognised a downturn in submissions either.
     
    Posted: Feb 19, 2021 By: DefinitelyMaybeUK Member since: Jan 12, 2021
    #7
  8. Darren_Ssc

    Darren_Ssc UKBF Ace Free Member

    1,925 687
    A Honeypot field in the form which is hidden to humans via CSS has proved a very affective strategy for me.

    The 'I am not a robot' option is great until Google start making people work for nothing by clicking pictures of fire hydrants, etc. And yes, this does happen in V3
     
    Posted: Feb 19, 2021 By: Darren_Ssc Member since: Mar 1, 2019
    #8
  9. Fagin2021

    Fagin2021 UKBF Contributor Full Member

    95 32
    Thanks for your views/advice everyone.
    I think I'll go the reCAPTCHA v3 route and see what happens.
     
    Posted: Feb 19, 2021 By: Fagin2021 Member since: Jan 27, 2021
    #9
  10. gpietersz

    gpietersz UKBF Ace Full Member

    1,990 481
    Honeypot fields work well for me too.

    What does recaptcha v3 do then? Does it use tracking? Does it favour users who stay logged in to Google?
     
    Posted: Feb 19, 2021 By: gpietersz Member since: Sep 10, 2019
    #10
  11. fisicx

    fisicx It's Major Clanger! { Moderator }

    34,340 10,195
    Use a honeypot and a script to check how fast the form is filled in. Add akismet and you will be spam free. No need to have google spyware installed.
     
    Posted: Feb 19, 2021 By: fisicx Member since: Sep 12, 2006
    #11
  12. gpietersz

    gpietersz UKBF Ace Full Member

    1,990 481
    The other weakness of recaptcha is that there are a lot of people an services with experience in getting round it and off the shelf solutions: its a common add on service for scraping proxies.

    The less common your solution, the less likely it is that there is an off the shelf solution to beating it.
     
    Posted: Feb 19, 2021 By: gpietersz Member since: Sep 10, 2019
    #12
  13. Marbman

    Marbman UKBF Contributor Full Member

    44 4
    I think your concern about will it put off someone completing the form really comes down to how bad they want what's on the other side. I can't ever remember myself giving up just because I counted the wrong amount of boxes with buses in.
     
    Posted: Feb 19, 2021 By: Marbman Member since: Jan 24, 2021
    #13
  14. Darren_Ssc

    Darren_Ssc UKBF Ace Free Member

    1,925 687
    I'm just sorry that we are well into the 21st Century and the problem of what a bus like has not yet been 100% solved. As a kid who grew up in the era of moon landings and Concorde I expected so much more than this.
     
    Posted: Feb 19, 2021 By: Darren_Ssc Member since: Mar 1, 2019
    #14
  15. Mr D

    Mr D UKBF Legend Free Member

    28,146 3,467
    How long would you want to spend clicking to get past it? 1 minute? 2 minutes? Longer?

    Try the boxes where none have what you want so then goes to another with none having what it asks for then another with 4 traffic lights then another with taxis and yet another ....
    How long would you complete it before you move on?
     
    Posted: Feb 19, 2021 By: Mr D Member since: Feb 12, 2017
    #15
  16. fisicx

    fisicx It's Major Clanger! { Moderator }

    34,340 10,195
    There are so many better ways to stay spam free than recapcha. You may be happy to persist with counting traffic lights but I prefer to find someone who puts my UX first.
     
    Posted: Feb 19, 2021 By: fisicx Member since: Sep 12, 2006
    #16
  17. JEREMY HAWKE

    JEREMY HAWKE UKBF Legend Full Member

    5,803 2,112
    I think its a horrendous idea . I dont have the patients for it . I wont even bother with a site that ask me to play match the pictures

    Dont do that :)
     
    Posted: Feb 20, 2021 By: JEREMY HAWKE Member since: Mar 4, 2008
    #17
  18. JEREMY HAWKE

    JEREMY HAWKE UKBF Legend Full Member

    5,803 2,112
    No they made it too the moon then and they are not doing it now :eek:
    You could get to New York quicker then than you can now :eek:

    Just because I can send you a picture straight away with my Persol sunglasses :cool: on from the other side of the world it does not mean we have advanced all that much :)
     
    Posted: Feb 20, 2021 By: JEREMY HAWKE Member since: Mar 4, 2008
    #18
  19. Kerwin

    Kerwin UKBF Regular Free Member

    185 16
    That is called security through obscurity and has been debunked for years now.

    Go with a well tested and thought out solution that has been tested by (hopefully) thousands of other websites.
     
    Posted: Mar 19, 2021 By: Kerwin Member since: Dec 1, 2018
    #19
  20. gpietersz

    gpietersz UKBF Ace Full Member

    1,990 481
    Its not that simple.

    Relying on obscurity is bad practice and does not work against a targetted attack.

    Obscurity does defend against broad attacks.

    For example, if you are using recaptcha as an anti-spam measure for a contact form on a website (the OP's case) the problem is almost always bots that crawl large numbers of sites looking for contact forms to fill in. They may be able to pass recaptcha but they will not add code to their crawler just for one site.

    There are multiple commercial services for by-passing recaptcha and other popular solutions. It does increase the cost, but usually its a lot cheaper than developing a custom solution for each site which is what rolling your own forces..
     
    Last edited: Mar 19, 2021
    Posted: Mar 19, 2021 By: gpietersz Member since: Sep 10, 2019
    #20