I'm posting this topic here because I'm using Tiger, and the solution works in Tiger, but I don't mind moving it to "General".
I usually place my email address as a link in the page footer and in the album information window, it's convenient for visitors. I realized today that this email address was present in clear text in the source code of the page and was "offered" to spambots
So, I decided to encode my email address in my albums. Google showed me different possibilities:
encode the address by replacing some text by special characters, like "mailto:foo(at)boo(dot)com" or "mailto:email@example.com". I think that today, with the computing power available to spammers, that they can easily interpret the html and break such encoding, which makes this solution ineffective.
I have seen solutions using CSS to recompose the email address on the screen (and in the links) without having the address in plain text in the source, but I found this approach a bit cumbersome.
I haven't found it necessary any longer to disguise my email address on my site. I think the spammers are mostly using other techniques to acquire email addresses. For a common domain like gmail.com, for example, they can just try every combination of letters and numbers, and keep track of the ones that don't bounce. And gmail filtering is now good enough that you can mostly just let it do its thing. Sure, I get a few dozen messages a day in the "junk" folder on my gmail account, but who cares? The stuff pretty much never lands in my actual inbox.
When using an email address on my own domain/host, I took a simpler approach. Let's say that my real email address is firstname.lastname@example.org. On my host cPanel, I can create a forwarder without actually creating a POP email account. So, in seconds, I can create a forwarder that forwards all mail for email@example.com to my real email address. Then I post that address on my site. If I get any mail addressed to it, it forwards to my real email address, but the headers show me that it got there via that route. If the firstname.lastname@example.org address starts getting spam, just delete the forwarder and create a new one for email@example.com.
When using that technique, I almost never actually had to change the phony address on the site. The spammers were never scraping it, and it virtually never got any spam.