Page 1 of 1
On Captchas
Posted: Thu May 14, 2009 12:28 pm
by supermike
So here's another guy who says he has a unique way to do captcha-less captchas:
http://wordpresssupplies.com/wordpress- ... tcha-free/
What do you think of his approach? Do you recommend it?
Re: On Captchas
Posted: Thu May 14, 2009 4:22 pm
by Darhazer
Well, this means that browse post something to the sever using ajax and server thinks this is a human, because it use ajax to post something before he submit the form... Bot can also post to the server, emulating the ajax

I don't think this will stop spam anyway, but since it is not widespread, it will really protect the users as long as the bots do not adopt it (and as more users use this, the faster it will be adopted)
IMHO
Re: On Captchas
Posted: Mon May 18, 2009 12:00 pm
by php3ch0
Another simple way I have found quite effective is to have a input hidden by css (called email2 or something) then check to see if this has been filled as a normal user will not see it then it should be empty. spam bits tend to fill in all inputs with something.
Re: On Captchas
Posted: Mon May 18, 2009 12:09 pm
by Gabriel
That's a unique way of protecting against spam bots but what do you do when your users have Javascript disabled? Fallback to a regular CAPTCHA, I suppose. Like Darhazer said, with widespread use will come bots programmed to defeat it.
Re: On Captchas
Posted: Mon May 25, 2009 3:57 am
by l.francis30
Gabriel wrote:That's a unique way of protecting against spam bots but what do you do when your users have Javascript disabled? Fallback to a regular CAPTCHA, I suppose. Like Darhazer said, with widespread use will come bots programmed to defeat it.
For me, it is better to use regular captcha..
Whatever you do for security, if someone knows how it works, the bot will definitely comes. I'm a .net programmer and had created some bot (freelance work)..
To get through regular captcha automatically, we need to use image processing techniques.. It needs a lot of time to do it so people usually don't do it..
Re: On Captchas
Posted: Mon May 25, 2009 4:00 am
by Sindarin
Another simple way I have found quite effective is to have a input hidden by css (called email2 or something) then check to see if this has been filled as a normal user will not see it then it should be empty. spam bits tend to fill in all inputs with something.
Yes, I've been doing this in my contact forms and bots always fall for it.
I usually play with random in php producing a different kind of captcha types, even calling different kind of scripts in some cases. Filters like distortion and rotation work best, but watch it as excessive use of them could render the characters unreadable.