π¬ Self-Sustaining Spam Stopper
Whatβs really funny to me is that this is a simple honeypot with a couple lines of JavaScript that wait a second before clearing one of the prefilled form values.
If a bot is using wp-comment-post.php to submit the comment without checking form field names first, which most are, it fails.
If a bot grabs the HTML, looks for a form, and submits it in under 1.5 seconds, which most others seem to do, it fails.
If a bot actually loads a full browser session and waits for JavaScript to load, it passes. Luckily, not many bots do that!
Jeremy, I have installed Self-Sustaining Spam Stopper on my site. I will let you know if I find anything odd.
Excellent, thank you!