Re: Re: Request: Adding Contact Form in Contact Us page

To: anon notmyfault64 <bagasdotme@gmail.com>
Cc: shlomif@shlomifish.org, debian-www@lists.debian.org
Subject: Re: Re: Request: Adding Contact Form in Contact Us page
From: Paul Wise <pabs@debian.org>
Date: Fri, 14 Jun 2019 12:47:39 +0800
Message-id: <[🔎] CAKTje6GEZ54CVx4CSffui81AWnzxfk2F7-q=ODC+=Y1jm+tujA@mail.gmail.com>
In-reply-to: <[🔎] CAGZeOQRaCC53F2oFv6xWHFzKSiXPGfaKofPyWO7eHV9DbdRW7g@mail.gmail.com>
References: <CAGZeOQQuZCexYpJ03kkN=dxOe6uy5BFYni2eL46AvS_ohxLXgA@mail.gmail.com> <CAGZeOQTehcE33KujzndQOatCyCK7uQ3Jo-SdrjOYxoS2-_wy7g@mail.gmail.com> <CAGZeOQQ7NWBVv-hHihuLJh6RY_tMU6m0_FskFd7O+jYLY7uJQg@mail.gmail.com> <CAGZeOQSBxiWwn+jGBXQCtJco1ckogvxf-Pw=A8f3y1038sZk1A@mail.gmail.com> <CAGZeOQSkCHXHP+rK=hjqcQYqaxaUzezfnRtXEiXjfVVUPx_m1g@mail.gmail.com> <CAGZeOQRciuutg1OvsUqq3UxDG3WL+=pZBx7O5RPgr3f_ibj6Kw@mail.gmail.com> <CAGZeOQQ22Bd968F9m6zVwLmPmboiw6a=9Kap5YayAP=FxNsecQ@mail.gmail.com> <[🔎] CAGZeOQRaCC53F2oFv6xWHFzKSiXPGfaKofPyWO7eHV9DbdRW7g@mail.gmail.com>

On Fri, Jun 14, 2019 at 7:21 AM anon notmyfault64 wrote:

> The vulnerability you mentioned is when contact form doesn't have proper spam protection.
>
> they may have reCAPTCHA validation

The Debian website doesn't use dynamic content, doesn't use JavaScript
and doesn't pull in resources from third-party websites or services,
so reCAPTCHA is not feasible for us to use. In addition reCAPTCHA is
incredibly hard to pass even for a human, I haven't been able to
manage it recently. I would wager that it is not very accessible
either.

> honeypot technique

Do you know how these work?

> BTW, will debian.org implement contact form? If won't, why?

If there is a volunteer who is willing and able to work on it, then it
might get worked on.

My personal opinion is that we should at minimum, drop debian-www from
the footer so we stop getting user support questions on the website
mailing list. Then the contact page could be streamlined and a form
designed to direct people to the correct contact points.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: Re: Re: Request: Adding Contact Form in Contact Us page
  - From: Bagas Sanjaya <bagasdotme@gmail.com>

References:
- Re: Re: Request: Adding Contact Form in Contact Us page
  - From: anon notmyfault64 <bagasdotme@gmail.com>

Prev by Date: Re: The mugshot package has been removed
Next by Date: Request: Using Rubik Webfont from Google Fonts Directory in debian.org
Previous by thread: Re: Re: Request: Adding Contact Form in Contact Us page
Next by thread: Re: Re: Re: Request: Adding Contact Form in Contact Us page
Index(es):
- Date
- Thread