|
OpenBSD Security Functionally paranoid! |
|
Thread Tools | Display Modes |
|
|||
How to prevent crawling my contact info from my website
I would like to create my personal website with contact info (i.e. e-mail, maybe phone number). Preferably using OpenBSD. I would like to protect it from being harvested by crawling bots. What to do besides putting content="noindex" into html code and creating robots.txt? I think that these things would not prevent bots created by spamers that use these data illegally. I was thinking about some sort of captcha i.e. Google's reCAPTCHA. Can I integrate reCAPTCHA with site running built-in base OpenBSD system or should I use some packages/ports?
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
|
||||
Actually, the OS that runs the server has very little to do with it, What web server will you be using,? IE: Nginx, Apache2, or Httpd , see
Code:
man httpd ----- Quote:
https://developers.google.com/recaptcha/intro ======== Another key factor will be what software, (if any ) is used, IE: site builders, forum software, etc.... One of the simplest methods is using some forum software, and setting up a board that only registered users/members can view it. If you have your personal information viewable by the public, then any one can view it , like wise anyone can copy it in some way. So you really need to think twice, before you go putting your business or personal e-mail , etc on a public website. The key being, limit what the public can see, and only allow them to see the private info if they login, and make it where they need to register, and the registration be accepted before they can view the private content. I recently disabled a "contact form" on a phpBB forum I have, because it was getting to much spam, but that is another topic. Quote:
For keeping out most bots, including spam bots, scrapers, etc. I would suggest registering here: https://zb-block.net/zbf/index.php And learning how to use it, again it does not matter what OS you are using, the script is integrated with your website html, or php, and effectively blocks most known bad bots from even viewing your site. In relation to spam bots, https://www.stopforumspam.com/forum/ is a good place to start. We actually do use google Recaptcha, there as well. We have data bases, and you can get lists of most known spam bots, or use the API, and check the credentials they use when registering, this keeps most from being able to register, thus being able to view topics, personal info, etc,... Also SFS is a good place to ask about keeping spam bots off of your website, and again, the OS being used is not really relevant. Guess for now that is about it. On OpenBsd there is also "pf", Code:
man pf http://0x9900.com/spam-filtering-wit...little-harder/ ============= You could use some of the info from the SFS data base, to decide what IP's you want to add hostnames or IP using pf and 'pfctl' https://man.openbsd.org/pfctl.8
__________________
My best friends are parrots |
|
|||
I would like to use httpd. I know reCAPTCHA is not integrated into base. I would like to use as much built-in OpenBSD base software components and then add as little 3rd party software as possible. I am fine with adding a few 3rd party components from ports or GitHub, though.
If setting up robust anti-crawling system is difficult on httpd, I am going to use some other http server. I think about static website: semantically correct HTML5 (without Javascript) + CSS. The only "dynamic" thing on site I foresee is something to keep crawling bots away. Quote:
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
|
|||
But I don't want completely hide these details. I am okay if let's say some friend I didn't saw for years would send me an e-mail or stranger from human resources would copy my e-mail into Outlook and send me invitation to job interview. I just want to hide these contact details from bots. I understand there may be some spammer manually harvesting e-mail addresses, but I accept that risk. I am going to post not original, but alias to my e-mail account, so if something goes wrong I can just remove that alias from my e-mail account.
It doesn't even need to be reCAPTCH, just something I can use to differentiate between bots and people.
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
|
|||
How about the age-old technique of "coding" the information in a manner that would be easy for a human to understand or stating how to "decode" it?
Code:
To contact us send an email to someone ~at~ something ~dot~ com Code:
To contact us send an email to somezzzone@somzzzething.com (remove the zzz) You could also enclose parts of it with HTML tags Code:
someone<code>@</code>something.com You can also use an image to show the information.
__________________
May the source be with you! |
|
|||
|
Tags |
bots, captcha, httpd |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
How to prevent hardrives from pinning down | hanzer | FreeBSD General | 2 | 18th February 2019 08:10 PM |
Prevent SSH tunneling through port 80 | pttymuth | General software and network | 7 | 15th July 2013 05:35 PM |
the website is down | ai-danno | Off-Topic | 2 | 1st July 2008 11:35 PM |