{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 smile是对你的礼貌 的问题《How to stop spammers from getting the email addres》','https://www.manongdao.com/q-578977.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Duplicate:
What is the best way to prevent spammers from getting the email address from your mailto links? I'm under the impression that javascript could be a solution. I don't know if my current solution is fool proof, so that's why I'm asking.
Here's what I'm currently doing:
<script language="JavaScript"><!--
var name = "emailusername";
var domain = "yahoo.com";
var text = "emailusername@yahoo.com";
document.write('<a href=\"mailto:' + name + '@' + domain + '\">');
document.write(text + '</a>');
// --></script>
Is there is a better way? I don't like having to have this chunk of code everywhere I want to put a mailto link.
That's not even remotely a good way. Spammers will grab the whole thing and match addresses with a regex. They won't bother looking for mailto:. Also, any scheme you can think of with Javascript has already been tought of and countered by the spammer. In fact, they'll probably just be able to run the javascript and get the adress.
You can
A) Filter spam
B) Use a form to submit mail (Which the spammers will still probably use.)
Javascript helps, but this won't help much. The email address is still visible in the html source using this type of script.
The "best" options use client-side javascript to "build" the email address out of parts, so the entire email address is never visible in the HTML source in one piece. The browser puts it together for you on the client.
A simple fix:
Which basically is the same as Reed suggests but with you existing code.
The best way to prevent harvesting is to simply not have the mailto: link at all.
Short of that, there aren't many counters. Things like CSS content and images have been tried and circumvented, and JavaScript is a half-way non-solution (which is to say it doesn't work.)
One possible counter is obfuscation: Add nonsense to your address like this:
And most automated harvesters will (initially) have some trouble detecting it. Alternatively, things like comments could be used to confuse most harvesters. (RFC822 describes the full syntax of email addresses, which includes comments as a part of the address-specification.)
Another counter is to use a form with a CAPTCHA of some sort.
None of them are fully effective.
You're on the right track, but having
emailusernamein there sort of defeats the purpose (most spider bots don't bother to make the distinction between HTML and script code, and just look for anything that appears email-like on the page).I have heard of evidence that some spider bots have the capability to run Javascript now, and will resolve this sort of obfuscation all by themselves.