I was going through honeybots and found out something which took me by surprise..
“Honeypot fields are invisible fields on the form. Invisible is different than hidden. Hidden is a type of field that is not displayed for editing. Bots understand hidden fields, because hidden fields often carry identifying information that has to be returned intact. Invisible fields are ordinary editable fields that have been made invisible in the browser…”
if honeybots are invisible, how is that such fields are editable.. moreover is it that it helps us acheive some security.. how is that?
You can hide a regular form field, such as a text box or textarea with some simple CSS. If it has been hidden like this human users using a browser can’t add any data to it, programatically it can still be added to though, by a bot, and they will likely add data to all available fields. So if field is not empty it must have been submitted by a bot.