Announcement

Collapse
No announcement yet.

Do you use reCAPATCHA?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • #16
    Originally posted by Dean C View Post
    I don't use any image-based captcha's anymore. They are inaccesible and half the time I can't read them and my eyes are fine with the lens' in. I kid you not, it took me 2minutes to get past one at yahoo last week. Captcha's have become such a pain nowadays that they're inhibiting human registrations.

    I prefer asking questions or asking the user to do basic match. Of course it relies on the user being an english speaker but fortunately I don't participate in any other languages.

    I have to say although it's amusing http://www.thepcspy.com/kittenauth is top notch. The principle behind it is quite clever. I coded something similar recently that asked a user to identify a particular object. I had a database of houses, cats, boats etc. About 100 things in total. Then I ask the user to pick the boat out of the 4 pictures, or the house etc. It's far more accesible than having to read text
    Thanks for telling me about kitten auth, it is an awesome idea and makes things pretty fun.
    I love lamp

    Comment


    • #17
      This is nothing new, but do not know if it is better to stop spam bots. I do like this option as it is easier to enter correct information, then reCAPTCHA or ImageMagick.

      Comment


      • #18
        How can bots overcome the Question & Answer method? If you were to ask a question like,

        Q: Of the four seasons, which one has all the snow?
        A: Winter

        How could a bot possibly get around that?

        Comment


        • #19
          Originally posted by kevinmanphp View Post
          How can bots overcome the Question & Answer method? If you were to ask a question like,

          Q: Of the four seasons, which one has all the snow?
          A: Winter

          How could a bot possibly get around that?
          If you come up with unique questions for your board, you're probably safe.

          However, if someone wanted to write a bot that specifically targets your site, it would be fairly trivial to get the full list of questions (by refreshing the page) and program the answers into the bot. Smaller boards aren't likely to be targeted like that, but bigger boards should probably use a captcha system instead.

          Comment


          • #20
            Originally posted by kevinmanphp View Post
            How can bots overcome the Question & Answer method? If you were to ask a question like,

            Q: Of the four seasons, which one has all the snow?
            A: Winter

            How could a bot possibly get around that?
            The same way they (a program) defeated images, by having a human read and respond

            Comment


            • #21
              Which brings up question #2...

              Is it possible to have both Q&A and Captcha?

              Comment


              • #22
                Not at this time.
                Steve Machol, former vBulletin Customer Support Manager (and NOT retired!)
                Change CKEditor Colors to Match Style (for 4.1.4 and above)

                Steve Machol Photography


                Mankind is the only creature smart enough to know its own history, and dumb enough to ignore it.


                Comment


                • #23
                  In vB you can't use links in questions, which is really one of the most important aspects when it comes to making only human verifiable questions (e.g. go to linked site X and follow the instructions in the question to find the answer there). I consider this an oversight that makes the Q&A "protection" completely useless at the moment.

                  The way it is now, you can either only make questions that any bot with a dictionary will easily crack by associating words in the question with the answer, or you have to make the question relatively complex, which means a given percentage of actual humans will inevitably fail the verification. There's also a very limited (and common) set of questions simple enough that most people will be able to answer them correctly, which means that the bot programmers really won't have a hard time coming up with bots that will be able to get by 99% of Q&A security.
                  Former endorsement revoked. You know the saying - one rotten apple spoils the whole barrel...

                  Comment


                  • #24
                    I've changed to this now on one of my sites and so far there seems no decrease in user registrations, and no increase in spam bots, so far no new spam bots have registered successfully.

                    Comment


                    • #25
                      I use reCAPTCHA with email verification, and it is enough to deter a majority of all bot signups.

                      - T
                      OPEN TECH SUPPORT
                      "Tech is our middle name!"

                      Comment


                      • #26
                        I use the vBMail mod over at vB.org. It verifies the email BEFORE anyone can proceed with the registration process. This is particularly helpful against bots and unverified accounts.
                        So Cal Sportbike forum - So Cal Moto - Kawasaki Ninja 250R Forum - Custom vinyl decals - Southern California camping forum

                        Comment


                        • #27
                          Bots can read e-mails and confirm them for sure!
                          Syrian Medical Society - mi la do - My Hacks - vCharset converter - Projects Queue

                          I want to breathe the freedom, and to strew the mounts of nostalgia in your eyes.

                          Comment


                          • #28
                            Originally posted by Milado View Post
                            Bots can read e-mails and confirm them for sure!
                            So Cal Sportbike forum - So Cal Moto - Kawasaki Ninja 250R Forum - Custom vinyl decals - Southern California camping forum

                            Comment


                            • #29
                              Originally posted by Vtec44 View Post
                              Not sure why this is confusing as displaying email in a web-based email client actually has the same basic principles behind it. Just need some script to get the links out of an email and use wget to open them. All you need is a couple of regexes to look for strings starting with http:// and www.

                              All the mod you use does is verify if an email exists. With a properly set up server and catchall accounts, you can make any email address exist on the domain. It doesn't check to see if it is a valid human behind the email or even if the email address is checked on a regular basis.
                              Translations provided by Google.

                              Wayne Luke
                              The Rabid Badger - a vBulletin Cloud demonstration site.
                              vBulletin 5 API - Full / Mobile
                              Vote for your favorite feature requests and the bugs you want to see fixed.

                              Comment


                              • #30
                                I guess I'm a bit behind in time and scripting then...
                                So Cal Sportbike forum - So Cal Moto - Kawasaki Ninja 250R Forum - Custom vinyl decals - Southern California camping forum

                                Comment

                                widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                                Working...
                                X