1. Captcha

How can I stop spam? Probably you asked this question plenty of times.Remember

Remember: the best captcha is the one you have invented yourself. Try to put some creativity into it: ask a user to paint something, to calculate some formula, translate something from Ancient Greek mixed with Latin phrases and so on — do not limit your self! Your user failed to understand the math formula or not able to translate your favorite Greek saying correctly? The website signup should fail because you don’t want web bots to create fake accounts on your website and post spammy links!

real captcha from random.irb.hr signup page

real captcha from random.irb.hr signup page

2. Ask as much as possible information on sign up

It’s better to instantly ask all the information at the beginning. Ask to fill at least the following fields:

  1. Title
  2. First name
  3. Last name
  4. Title
  5. Science Degree
  6. Medical Degree
  7. Email address
  8. Your company (if any)
  9. Secondary Email address (for backup)
  10. Phone number
  11. Backup Phone Number
  12. Whom we can contact if your account is compromised
  13. How much you earn per month (we need it for marketing)
  14. What is your dog name
  15. What is the best time for our salespeople to call you?

OK, if a user doesn’t want to fill all the 15 fields in this signup form then you can’t trust him as he is not willing to share important information on website sign up! It is one of the ways to define spam and malicious users on your page.

3. Do not allow insecure passwords!

A secure password should be secure enough. That means:

  • at least 32 symbols in length;
  • should start with a special symbol like Greek symbol Ϡ or Ϣ
  • must use the MiXEd cAsE with obligatory ‘_’ , ‘-’, ‘/’ symbols too

All other kinds of passwords are insecure! If at least one of these requirements is not met then show the big red YOUR PASSWORD IS NOT SECURE! CAN NOT SIGN UP error right away. Don’t forget to reset the password field so the user should reinvent and retype the new password again.

4. Don’t show the Signup button right away and hide it somewhere on the website instead

So, how to get rid of spam if you cannot implement all those sophisticated methods above? You can play with the Signup button!Let’s face the reality: you want to sign up only that kind of users who already invested 30 minutes or more to get to know your site enough. And you definitely don’t want these fast visitors who come to your website for 10 seconds from some cool blog post and don’t even bother to spend half an hour to read carefully all the content you put on your website!

Let’s face the reality: you want to sign up only that kind of users who already invested 30 minutes or more to get to know your site enough. And you definitely don’t want these fast visitors who come to your website for 10 seconds from some cool blog post and don’t even bother to spend half an hour to read carefully all the content you put on your website!

5. Make the signup page as heavy to load as possible

More suggestions on how to prevent spam signups? Add a video into the background with auto-playing sound. Don’t forget to put all the logos and menus on top and on the bottom.

6. Carefully select the color for the signup button!

The best color for the button is gray. Why? Simply because you don’t want to be like all these internet “monsters” Amazon, Google with too much red and orange buttons which harms human eyes. It is not exactly a measure to assure spam control on your website but can help with user experience.

7. Finally, delay emails with a confirmation link for 30 minutes or longer

The last tips to allow spam detection on your web page are settings for the confirmation link to be sent. You must admit that if a user was able to fill all the fields in the signup form and then was able to invent a sophisticated password then naturally you should also delay sending the confirmation link for the new account. What if this user is a hacker who wants to crack your service immediately? People can wait for the confirmation while evil hackers will be distracted by other evil tasks to do. And good people will be waiting patiently for their confirmation link so they can get into their new account.