Post inspired by the bot threat that people on Lemmy have been talking about. I’m not asking how an expert would design it, but how you would design it if you were tasked with it.

  • alex [they/them]@beehaw.org
    link
    fedilink
    English
    arrow-up
    22
    ·
    1 year ago

    Honeypots - ask a very easy question, but make it hidden on the website so that human users won’t see it and bots will answer it.

    • ShittyKopper [they/them]@lemmy.w.on-t.work
      link
      fedilink
      English
      arrow-up
      5
      ·
      edit-2
      1 year ago

      So, how will you treat screen readers? Will they see that question? If you hide it from screen readers as well, what’s stopping bots from pretending to be screen readers when scraping your page? Hell, it’ll likely be easier on the bot devs to make them work that way and I assume there are already some out there that do.

      • alex [they/them]@beehaw.org
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        That’s an excellent question and I’m glad you raised it. I need to care more about accessibility and learn more about security in general :)

    • Björn Tantau@feddit.de
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      Nowadays bots use real browsers to “see” all the fields a human would see. They won’t fill out those hidden to a human.