What is Website “Email Address Harvesting”, and How Can I Prevent It? - 64,150 Views, 8 Comments
|
Previous Article « Spam Filtering and Your Duty to Your Users
Read Next Article » Dog eat Dog: Scott Richter’s OptInRealBig Sues SpamCop
What is website “email address harvesting”, and how can I prevent it? Signed, Ima Webmaster — Dear Ima, The term “email address harvesting”, in this context, refers to the unsavoury practice of finding and copying email addresses from the pages of websites. You know all of those lovely “contact us” webpages which everyone has? Well, spammers just love to pick those tasty little ripe email addresses from the orchard of your website. The CAN-SPAM act of 2003 makes it illegal to send spam to email addresses which have been harvested, and provides for enhanced sentencing (would you like fries with that?) for a spamming defendant who is found guilty of address harvesting. But that’s not going to stop it from happening. So here are a few tips, dear Ima, which will allow users to contact you through your website, while not allowing your email address to fall into the wrong hands: 1. Employ the use of javascript to create your email address ad hoc when user runs the script in order to submit mail to you. 2. Use some form of mailform (cgi, php, etc.), but be wary of versions which have security issues. 3. Provide an html form through which users can contact you, as an alternative to email. 4. Alter your email address on your website to make it unreadable by machines, such as substituting the word “at” for “@”, adding a character string to the email address which you instruct the user to remove, or writing it in Klingon with a pointer to an online Klingon dictionary. 5. Display the email address as a graphic, rather than text. These are just a few of the ways that you can thwart email address harvesters, while still posting your email address in public, and enabling people to contact you at your email address.
Follow Anne on
Twitter 
Friend Anne on Facebook
Dear Internet Patrol,
What is Website “Email Address Harvesting”, and How Can I Prevent It?
Twitter Explained in Plain English
Previous Article « Spam Filtering and Your Duty to Your Users
Read Next Article » Dog eat Dog: Scott Richter’s OptInRealBig Sues SpamCop
Read more:
» Dear Internet Patrol: Spam with No Unsubscribe Link - What to Do?
» Dear Aunty Spam: Is the FTC Going to Come After Me?
» Make Email Addresses on Websites Invisible to Scrapers and Harvesters!
For additional similar stories check out our archives on Spam, Spam Blockers, Spam Whacks
NOTE: We never, ever, ever will recommend any product or service on this site that we have not regularly used ourselves and do not wholeheartedly believe in. That said, in some cases after being very pleased with a product or service, we may enter into a relationship with the provider of that product or service such that if someone purchases that product or service based on our recommendation, we may get a small payment. Such payments go towards the upkeep of the Internet Patrol.
I have a good suggestion for encoding your E-Mail address on your site, which I use on mine. It is called Hiveware Enkoder, which is located at http://www.hiveware.com/enkoder_form.php
Comment by Daveykins FoxFire — 4/28/2004 @ 8:40 pm
One problem with displaying the e-mail address as a graphic rather than as text: not so good for users who are blind or dyslexic or who can only access a text-based terminal…
Comment by codeman38 — 4/28/2004 @ 9:18 pm
Try this method - works just fine:
http://www.u.arizona.edu/~trw/spam/spam4.htm
Comment by Mike — 4/28/2004 @ 11:54 pm
Try the software at this address: http://www.adduco.nl/encodeuk.htm
Comment by Libertyall — 4/29/2004 @ 5:15 am
This is true, but you can include an alt to the img tag (ex: img scr=”emailgrfx.gif” width=”123″ height=”123″ alt=”mymail@emailaddress.org”>)
The reader should pick up in the alt text and read it aloud. You can also use it to make the comment “click here to send e-mail to ………..”.
Comment by Jack — 4/29/2004 @ 12:20 pm
Doesn’t that defeat the object of obfuscating the email address ? Any harvester should pick up on the email address …
Comment by sPaz — 4/29/2004 @ 6:32 pm
If you’re interested in a PHP script to do this, go on over to http://www.stevedawson.com. There is no direct link to his script, but click on the Free Scripts link, then scroll down the page to where it says PHP Contact Me. Configuration instructions are easy, and no knowledge of PHP is required to set it up.
Comment by Pat — 5/2/2004 @ 7:32 am
You could always use, as the alt tag, something that might not be picked up so easily by spammers but would still be easy to convert to an e-mail address — i.e., by writing it out as “cody at zone 38 dot net” or something like that.
Comment by codeman38 — 5/6/2004 @ 5:10 pm