One major problem with websites is the incessant attack of comment and form spamming. This is caused by what's known as a "SpamBot". SpamBot's are annoying "Robots" that crawl websites in search for forms, comments, user logins, and any other exploitable script to add spam to the website or email spam to the website owner. These "Bots" are automated and run and regular intervals.

What are the SpamBot's activities?

SpamBots major mission is to compromise a website for the purpose of sending spam. Below are some of the most common SpamBot activities.

  • Fake Accounts
  • Blog Comment Spam
  • Contact form submissions
  • Email spam from website
  • Common PHP file exploits
  • Email account Hi-Jacking

How do I prevent SpamBot activity on my website?

Secure your web forms and comments

When a SpamBot files out a form on your website, the form will need validation to make sure all the inputs are correct. The best way to stop a SpamBot is to include a captcha on your Web Forms. This will require the visitor to fill in required information proving that the visitor is a human.

Disable/Secure Logins

To prevent SpamBot's from repeatedly filling in Fake Users, you can secure the login with a plugin if you use a CMS (Like WordPress) or you can limit the login attempts.

Update your software

SpamBot's are an increasing bane of web master existence and so many CMS developers are including more SpamBot preventions within their software. If you are sing a CMS, you will want to make sure your version is the most up to date.

Email account Visibility

Hide your email address. Many SpamBot's find your email address in your website because the email address is in plain text for all to see. Use an image to display your email address if you need the email address on your site. Otherwise, do not have a plain text of your email address on your website.

Review your logs

It is a good idea to review your logs of those who accessed your site. Most CMS programs have a plugin for this. For example, WordPress has the MVIS Security Center plugin that monitors this. You can view your logs and those who accessed your site through Shell (VPS or Dedicated only) or cPanel AwStats as well.

Set up a Robots TXT

You can set up your robots.txt to restrict robots from accessing your website. Please see our article on stopping Search Engines from crawling your Website.

Did you find this article helpful?

We value your feedback!

Why was this article not helpful? (Check all that apply)
The article is too difficult or too technical to follow.
There is a step or detail missing from the instructions.
The information is incorrect or out-of-date.
It does not resolve the question/problem I have.
How did you find this article?
Please tell us how we can improve our Support Center:
Email Address
Optional, but our team may contact you for more information.
Like this Article?

Post a Comment

Name:
Email Address:
Comment:
Are you a bot?
Submit

Please note: Your name and comment will be displayed, but we will not show your email address.

Write New!
Do you want to publish a tutorial to our support center?

News / Announcements

SSL Certficate Warnings
Updated 2014-04-14 11:34 am EST
Hits: 1952
Heartbleed 0-day OpenSSL security bug
Updated 2014-04-14 04:43 pm EST
Hits: 5176

Related Questions

Here are a few questions related to this article that our customers have asked:
Ooops! It looks like there are no questions about this page.
Would you like to ask a question about this page? If so, click the button below!
Ask a Question

Need more Help?

Search

Ask the Community!

Get help with your questions from our community of like-minded hosting users and InMotion Hosting Staff.

Current Customers

Chat: Click to Chat Now E-mail: support@InMotionHosting.com
Call: 888-321-HOST (4678) Ticket: Submit a Support Ticket

Not a Customer?

Get web hosting from a company that is here to help. Sign up today!