jobs.devict icon indicating copy to clipboard operation
jobs.devict copied to clipboard
verified publisher icon devict

Prevent bots from posting jobs

Open imacrayon opened this issue 5 years ago • 2 comments

I'm assuming bots will eventually find the "Post a job" form. We can lock this down by implementing something like Spatie's Honeypot package.

Additionally rate limiting the endpoint that creates job postings could help too. Limiting it to something like 5 requests/hr feels reasonable to me 🤷‍♂

imacrayon avatar Jan 27 '20 16:01 imacrayon

A verification link sent in the email with the edit link could get the job done too, maybe. Or it could just be an added check.

br0xen avatar Feb 27 '20 15:02 br0xen

there are also free tiered captcha services - re/hcaptcha that is part of the job posting form.

southekal avatar Jan 05 '21 15:01 southekal