I've decided to experiment with alternative forms of comment spam moderation, filtering, etc. It used to be that MT-Blacklist would handle blocking spam for me and moderating comments on old entries. And my "type Jeremy here" challenge keeps most of the bots away (there are literally thousands of attempts per day). But it didn't do quite as good a job protecting newer entries where a human spammer was at the keyboard.

As of now, all new comments hit the moderation queue. However, you can bypass the need for me to approve your comment. When you submit a comment, my system will send you a small email to the email address you supplied. If you click the link in that email message, it'll approve the comment right away.


Now, I may still approve or remove comments on my own, but this may prove to be a useful balance. We'll see.

It's worth noting that your email address is never made public on the site, so you shouldn't worry about it appearing. If you're not comfortable telling me your email address, I may not be comfortable approving your comment. It's that simple.

So if you've been a regular but anonymous commenter, you have a decision to make.

We'll see how it all works out. I'm interested in feedback on the system--including bug reports! I wrote a bunch of this myself.

BTW, I've known who the famous grumpY! is for a while now. :-)

Posted by jzawodn at November 12, 2006 09:03 PM

Reader Comments
# Andy Chilton said:

Hey, that sounds a useful idea.

My comment spam seems to contain just hundreds of links to various dodgy sites, so usually I just reject those straight away - it works quite well! I mean, how often do you put more than one or two links in a comment (if any).

on November 12, 2006 10:47 PM
# Alex said:

Do you have to click through an e-mailed link for every comment? Or does doing it once get your e-mail address whitelisted?

on November 13, 2006 07:43 AM
# Jeremy Zawodny said:

Right now, you need to do it for every comment. But I've got a fix in mind for that. I'll get it implemented in the next few days if all goes well with the rest of it.

I can't just whitelist an address. Otherwise you could just use *my* email address to bypass the system, right?

on November 13, 2006 07:46 AM
# Mellissa said:

What about Typekey?

on November 13, 2006 08:33 AM
# Jeremy Zawodny said:

I never got the impression that TypeKey had taken off.

Is that mistaken?

on November 13, 2006 08:48 AM
# Chris Kelly said:

How about linking up your comment system to Akismet? There are APIs, as well as a plugin for MT (which I assume you use based on the above). I've deployed it on a couple of my project sites for friends, and it's been very effective thus far (granted, on Wordpress-based blogs, but I don't think that would have any effect on its functionality.

on November 13, 2006 08:55 AM
# Ehsan said:

Why do I get a 403 on mt-comment.cgi?? part of the anti-spam plan or is my IP banned?

on November 13, 2006 09:59 AM
# Ehsan said:

Got it: Referrer check

on November 13, 2006 10:00 AM
# Jeremy Zawodny said:

Akismet probably wouldn't filter much. I'm already handling the bulk of the bots pretty well.

Does Akismet deal well with the hand-crafted spam that actual humans post?

on November 13, 2006 10:15 AM
# Chris Kelly said:

I'm not sure about human generated spam - assuming they are repeat offenders that someone else has marked as a spammer in the Akismet database, it *should* flag them and stop the post.

on November 13, 2006 01:08 PM
# Erik J. Heels said:


Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it:



on November 13, 2006 08:42 PM
# lgs said:

Hello Jeremy,

Yesterday I posted my first comment to your blog about TDMA, using and I never saw the emailed link I was supposed to click on to have my comment approved. I used the email address "lloyd@costa-rica-natural.com." This address is protected by greylisting, but the secondary MX (mail exchange server) is set to a server that is still running my old challenge-response system. No mail should go there unless my mail server is down or mail is intentionally directed to high-numbered MX (a definitive spam sign).

So, any idea what happened? (By this way, looks like a very nice blog system you've put together.)

on November 25, 2006 08:53 AM
# Asstraffic said:

For fiew days now I wonder what I made wrong to blog owners like you. Ofcause you as owner can remove my comment, remove my link or something, but I was always finding topics I have something to say/comment on. I always putted my attention to what I'm writing and... I got banned on several blog system (eaven not pages) why? I do not know. As you are "fighting" with spam maybe you can tell me where is the trick do you f.e. find my comment wrong? Or maybe it was just that my blog is for adult and so many people doesn't like to have anything to do with adult pages. Am I right? but eaven if you doesn't want me to publish comments on your page is it ok to put it on some general blacklist? Please try to put yourself in newbe position and tell how would you percept such an act?

on January 30, 2007 01:00 PM
# Asstraffic said:

In my last comment I forgot to place invitation to my site (this togather with my post makes complete comment)
so here it is, please visit also my page at: http://best-of-asstraffic.blogspot.com


on January 30, 2007 01:06 PM
# Kevin James said:

Hi Jeremy! with the MT-Blacklist you will prevent A LOT of SPAM, but they learn each day a little more.

Let me suggest you to do a very simple trick that will prevent SPAMMERs forever:

1) Create another check field like the "Jeremy" one, but hidden.

2) Va JavaScript, complete that field with a setTimeout OR in the submit of the form:

3) Check the value of that field. If it's filled, you have a real user. If it's blank... it's a SPAM Machine :)

The only drawback is that users must hace JavaScript enabled. By the way, which modern browser does not support it? None. It works in all browsers.

If you want to implement it, just drop me a mail.


Jeremy - Silverlight

on May 17, 2007 08:38 AM
# Kevin James said:

Sorry! I forgot to tell you: the timedout version (instead of the onsubmit) is also good because it will fill up the value in the amount of time that you specify. So in that code, the time is 4 seconds. That assumes that a real user won't be able to type everything and submit the message before that time.

I personally prefer that version. I've implemented it in my forum so if you want the URL, let me know.

Thanks again,

on May 17, 2007 08:41 AM
# Arizona PEO said:

With the MT-Blacklist, one will be able to prevent a lot of SPAM, but not ALL. There must be some solution to stop spammers. To post a comment, usually one has to stay in the moderation queue but as it has been mentioned that with system one can bypass, is really good.

on June 6, 2007 01:45 PM
# Stanley B said:

Did you ever get an answer to your sign-in and password needed every time to read e-mail, despite checking "Remember" box?

on November 21, 2007 10:38 AM
# oyun said:

Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it: Thanks

on December 29, 2007 11:42 AM
# barbie said:


on December 29, 2007 11:45 AM
# kral said:

Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it:
yumurcak tv

on December 30, 2007 08:55 AM
# andreas said:

Two words: WordPress, Akismet. OK, a few more words.

on January 6, 2008 02:42 PM
# andreas said:

I have been trying to sell genuine digital cameras, cell phones etc but very few visitors are visiting my site. If you have any suggestion, please let me know!

on January 6, 2008 03:28 PM
# said:

Trying to test your system

on September 28, 2008 05:39 AM
# Разработка сайтов said:

вы это серьезно?

on December 7, 2008 02:30 AM
# UK thesis said:

This is extremely helpful info!!! Especially since you guys are offering it for free!! Very good listing. Everything is true. Thanx.

on August 10, 2009 09:07 PM
# Kayla said:

If you find a solution that would filter through actual comments and actual people leaving gibberish with inbound links let us know.


on October 8, 2009 04:58 PM
# Free Files Search said:

WordPress websites are basically omitted by spammers, so I agree with some of the previous commenters. There are good sources on the web (personally I found videos, tutorials, articles and even pdf books there) which can help you prevent spam. And I am successfully using these tips at my blog.

on January 20, 2010 05:33 AM
# Jeff said:

Anyone here know how to get unbanned by akismet?

Portable Solar Panels
Solar Energy Facts

on February 25, 2010 04:30 PM
# Matthew said:

@ Jeff

Hey Jeff, If you've been banned by Aksimet then Just contacted Akisment. Hope it works and thanks again!

on March 12, 2010 04:23 AM
# kuldeep singh said:



on June 22, 2010 01:53 AM
# Women nfl jerseys said:

Type your comment here.

After you submit the comment, check your email. There will be
a link you need to click to make your comment visible.

Your email address WILL NOT appear on the site, so don't worry
about being anonymous, even if you think you are.

on July 5, 2010 01:41 AM
Disclaimer: The opinions expressed here are mine and mine alone. My current, past, or previous employers are not responsible for what I write here, the comments left by others, or the photos I may share. If you have questions, please contact me. Also, I am not a journalist or reporter. Don't "pitch" me.


Privacy: I do not share or publish the email addresses or IP addresses of anyone posting a comment here without consent. However, I do reserve the right to remove comments that are spammy, off-topic, or otherwise unsuitable based on my comment policy. In a few cases, I may leave spammy comments but remove any URLs they contain.