Obfuscate email, but make your self email-able
May 15, 2008
Using a simple obfuscating script on your website's published email addresses can reduce the amount of email spam by 90% or more. Email spam primarily comes from email harvesting bots, similar to search engine bots, that scour the internet looking for email addresses to spam. There are several ways to obfuscate email addresses.
Common methods to obfuscate email addresses:
- Encoding
- Javascript
- Flash
- Using an Image instead of text
Javascript and Flash obfuscation basically create a text version of your email that cannot be read by all but the most complex email harvesting robots. These methods work well at stopping email harvesting (Flash is far better than Javascript), but your visitors must have flash installed or javascript enabled for these to work or they too cannot see your email address.
Example of what a Javascript email would look like to a computer. (From: seowebsitepromotion.com)
<script type="text/javascript">
//<![CDATA[
var email = "questions"
var domain = "ecommerce-blog.org"
document.write("" + email + "@" + domain + "")
//]]>
</script>
These can also be called externally or through an action script which is even more effective.
Images of an email address can be used in place of text. While this is probably as effective at stopping spam as flash and Javascript, it completely prevents copying the text. This makes it very annoying to try and email the site owner as contact addresses are often long and can be complex. Users are very prone to mis-entering email characters and this generally leads to frustration and annoyance by everyone. I recommend not using this method.
Encoding is by far my preferred method of email obfuscation. While it is not as effective as the other methods, it stops the majority of spambots. It does not create browser compatibility or usability issues. It is as easy to use as copying and pasting some html onto a web-page when it is being created.
Encoding can be done with a hex, decimal, and others. HTML interprets these encoded characters as the ones we see and read. This way your visitors sees an A while a computer sees an A.
Some good encoding tools:
http://www.ianr.unl.edu/email/encode/ - This is a simple and very effective encoding generator.
http://www.seowebsitepromotion.com/obfuscate_email.asp This script offers a variety of encoding and javascript obfuscation techniques.
Email Obfuscation Comparison:
| Method | Usability | Effectiveness | Difficulty |
| Flash | Bad | Extremely Good | Hard |
| Javascript | Ok | Very Good | Medium |
| Image | Bad | Very Good | Medium |
| HTML Encoding | Great | Good | Easy |
Comments
5 Responses to “Obfuscate email, but make your self email-able”
Got something to say?
Recently Written
- Using non-core products as a loss leader!
- Don’t lose sales from these 5 stupid mistakes!
- Obfuscate email, but make your self email-able
- Google Introduces Google Checkout Shopping Cart
- Enterprise open source firewall appliance software!
- How to properly use promotional products
- Oh my stock, photos that suck
- Starting a new business, 5 reasons to avoid Microsoft now!
- The myth of tax free internet sales
- Get an awesome computer for really cheap!
Categories
- Customer Service
- Development
- General
- Hosting
- Marketing
- Networking
- News
- PPC
- Reviews
- Scripts
- Security
- SEO
- Usability
Archives
- June 2008
- May 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
Other great websites
- Ecommerce Cache
- Ecommerce Optimization
- Ecommerce Times
- Elastic Path
- GrokDotCom
- Retail Ecommerce
- Smashing Magazine
- vitamin
- Volusion Ecommerce Blog
LOL, I had to laugh when you suggested using Flash to obfuscate e-mail. I think images are fine. Having a long, complex, and/or annoying e-mail address is a usability issue in general that typing out makes apparent. Just use a simpler prefix or be considerate of domain names usability before registering.
Flash is certainly a ridiculous method to obfuscate anything, but I included since I have seen it a few times. Javascript is probably safe nowadays since the vast majority of users have javascript enabled.
This is actually a good idea. I might use this in my personal site aswell.
@jestep: No need to worry about users not having javascript installed. Remember that you can use < noscript > tags to provide content for users that have disabled javascript. Then, you can provide an image (less usable, but very secure) or something like that. Check it out in action my site if you like:
http://featurific.com/node/23
I see a lot of people write their email in this way :
senghooi429[at]yahoo[dot]com.
I notice myspace and facebook will auto convert your email into this format.
So…its to preventing spam ?