我同意OP在这里-请不要验证码-这不是一个非常woot的做事方式。

首先设置一些机器人陷阱。我会在主页上更经常地提到BOC，让机器人看起来不智能，所以每次措辞都不同。“中行投诉上升!”所以扫描关键词的机器人会被困住。

然而，我认为真正的问题是双重的，首先是你需要解决的性能问题，今天是机器人造成了一个问题，但它向我表明，有一个性能问题需要解决。

其次，这是一个商业机会，可以把一些真正的垃圾转化为利润。所以我将保持整体woot风格并声明“我们检查机器人”。如果我们认为你是机器人，你就会得到一盒垃圾。”

机器人检查将在销售完成后的某个时间离线完成，使用机器人陷阱，IP号码，cookie，会话，浏览器字符串等。对你获得的购买者数据做一些认真的分析，以决定谁得到了废话。如果你决定发布垃圾，那么你就可以把一些正常的垃圾卖给别人。

Honestly, I think your best solution is to make items during a Woot-Off only be visible to logged in users, and limit each logged-in user to one home page refresh every 500ms or so. (Or possibly make only a picture of the item be visible to unauthenticated users during a Woot-Off, and make sure you don't always use the same picture for Random Crap.) I think Woot users would be willing to accept this if you sell it as a measure to help them get their Bowls of Creaminess, and you can also point out that it'll help them check out quicker. Anything else--even using captchas--is subject to your typical arms race.

我的想法(我还没有检查所有其他的，所以我不知道它是否新颖)

处理蜂群:

Convert the front-page matter for each day's stuff to be a flash/flex object. Yes, some people will complain, but we're looking for the common case here, not the ideal. You should also randomize the name of your flash objects, so they aren't in any predictable pattern of names. Using Akamai or another CDN, deploy this flash object in advance to the outside world. Akamai produces what appears to be random URLs, so it makes it hard to predict. When it is time for a new sale, you just have to change your URL locally to refer to the appropriate object at Akamai, and people will go fetch the flash object from them to discover if the deal is a BoC or not.

一天结束-你现在有Akamai处理你的午夜交通蜂群

处理购车事宜

Each of the flash objects you create can have lots and lots of content hidden inside - images, links, arbitrary ids, including 'bag of crap' in a thousand places. you should be able to obfuscate the flash as well. When the flash object "goes live", people will start to attack it. But there are so many false positives that a simple string scan is useless - they'll have to simulate running the flash locally. But the flash doesn't write text. It draws lines and shapes. Shapes in different colors, all connected to timers that make them appear and disappear at different times. If you've seen the Colbert Report, you know how the intro has hundreds of words describing Colbert. Imagine something like that for your intro, which will always include Bag O Crap. Now, imagine that the intro takes an arbitrary amount of time - sometimes a few seconds, sometimes as long as a minute or more (make it funny) Meanwhile, "Bag O Crap" is constantly showing up, but again, clearly as part of the intro. Finally, the actual deal of the day is revealed, with an active 'shimmer' effect that makes it difficult for any single snapshot of the canvas to reveal the actual product name. This is floating above an animated background that still says 'bag O crap' and is constantly in motion again, all of this is handled with lines and shapes, not with text strings

最终的结果是——你的黑客被迫拍摄交易的大量图像快照，弄清楚如何分离所有的假阳性和识别实际交易。与此同时，人类只是看着它，由于眼睛疲劳和我们填补文本空白的能力，我们可以原原本本地阅读交易。

这不会永远有效，但会在一段时间内有效。

另一个想法是简单地限制人们购买中行，除非他们以前用该账户购买过东西，并且永远不让他们再购买中行。

我的第一个想法是，你说机器人正在抓取你的网页，这意味着他们只抓取HTML内容。因此，让您的订单屏幕验证(从http-logs)，报价相关的图形是从bot加载的

为什么不让首页只是一个图像映射图形(所有一张图片没有标签，标签等)?人类在几乎任何设备上都能轻松阅读和理解，但机器人却无法进行询问。从本质上讲，整个首页都是一个验证码。

限定。将页面浏览量限制在每秒1次不会打扰人类用户。 通过JavaScript链接。简单的机器人不喜欢这个。 至于可用性，统计数据显示，不到1%的用户不使用JS。 2 a。以上的硬核版本。Flash中的链接。 参数存储在会话，而不是在查询字符串。大多数机器人是无状态的。