| Author |
Message |
manunkind
Client
Joined: Apr 26, 2004
Posts: 368
Location: Albuquerque, NM
|
 Posted:
Mon Jul 09, 2007 6:06 am |
 
|
I've been reading up on these various systems and am learning that most implementations of it are very ineffective.
Here's a pretty interesting read:
Just thought I'd post it here for the Raven Team. |
|
|
 
|
|
jakec
Moderator
Joined: Feb 06, 2006
Posts: 1852
Location: United Kingdom
|
| Posted:
Mon Jul 09, 2007 6:27 am |
|
That is an interesting read.
The captcha in RN is a vast improvement over the standard Nuke one, but I'm sure further work can be done on it.
I know Guardian is looking at using an animated GIF, which would make it extremely difficult to crack. |
|
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 7481
Location: Arizona
|
| Posted:
Mon Jul 09, 2007 6:54 am |
|
Yeah, I personally like the direction of requiring human reasoning power to figure out "problem". But, unfortunately, like with most captchas, it can really hurt the visually impaired folks. |
|
|
|
|
|
jakec
Moderator
Joined: Feb 06, 2006
Posts: 1852
Location: United Kingdom
|
| Posted:
Mon Jul 09, 2007 10:16 am |
|
To be honest it's a shame we have to do this in the first place  |
|
|
|
|
|
Gremmie
Former Moderator in Good Standing
Joined: Apr 06, 2006
Posts: 2401
Location: Iowa, USA
|
| Posted:
Mon Jul 09, 2007 10:22 am |
|
It should be mentioned that link isn't safe for work.  |
|
|
|
|
|
evaders99
Moderator
Joined: Apr 30, 2004
Posts: 2852
|
| Posted:
Wed Jul 11, 2007 12:23 pm |
|
Seen this link already, without seeing the script in-action, I have no guarentees on its effectiveness. There are many spam engines that will break CAPCHTAs though, so it may be a mute point. |
|
|
|
|
|
Gremmie
Former Moderator in Good Standing
Joined: Apr 06, 2006
Posts: 2401
Location: Iowa, USA
|
| Posted:
Wed Jul 11, 2007 12:51 pm |
|
There was a recent posting on Slashdot related to this subject:
|
|
|
|
|
|
fkelly
Moderator
Joined: Aug 30, 2005
Posts: 2194
Location: near Albany NY
|
| Posted:
Fri Nov 02, 2007 7:49 am |
|
Spammers employ stripper to break Captcha |
|
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 7481
Location: Arizona
|
| Posted:
Sat Nov 03, 2007 8:51 am |
|
Isn't it sickening? Now how do you stop from having actual human beings being employed to register at a bunch of sites? How can you win... |
|
|
|
|
|
manunkind
Client
Joined: Apr 26, 2004
Posts: 368
Location: Albuquerque, NM
|
| Posted:
Sun Nov 04, 2007 2:26 pm |
|
| montego wrote: | | Isn't it sickening? Now how do you stop from having actual human beings being employed to register at a bunch of sites? How can you win... |
You can't. Game over. |
|
|
|
|
|
fkelly
Moderator
Joined: Aug 30, 2005
Posts: 2194
Location: near Albany NY
|
| Posted:
Mon Nov 05, 2007 7:49 am |
|
I agree with manunkind with one major exception. For web sites that are "private" or even semi-private (local clubs, soccer leagues, family groups etc.) and where you don't need or even want to boost membership beyond the local interest group, having some kind of Approve Membership would really help. Spammers could still get thru, but if you made them write a paragraph or so about "why they want to join your site" and evaluated where they are from etc., the number who would get thru would be cut significantly. Perhaps for RN 3.0 (or whatever) we can get this done. |
|
|
|
|
|
Guardian2003
Site Admin
Joined: Aug 28, 2003
Posts: 4856
|
| Posted:
Tue Feb 12, 2008 8:22 am |
|
As always, the problem remains the same.
How do you take measures to prevent spammers and other undesirables from siging up without it affecting accessibility or putting off the peple who genuinely want to sign up.
If I had to write some text about why I wanted to join a site every time, I would very quickly not even bother joining sites any more.
Of course you can use a combination of CAPTCHA's, blacklist comparing, referer checking etc to really narrow things down but even with those, you will still get the odd email from someone who is disgrntled because their registration was rejected.
I use Montego's Approve Membership Lite which is a great little tool and I have also added a warning on my registration page that I will reject applications from gmail, hotmail and other 'free' email accounts. In my 'rejection' email I do include an email link which genuine users who still apply using these amail accounts can contact me for me to review their application.
I have probably rejected over 300 registrations in the last year, of which maybe 4 emailed me to ask why they had been rejected using the link in my rejection email. |
|
|
|
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 7481
Location: Arizona
|
| Posted:
Wed Feb 13, 2008 6:54 am |
|
BTW, I will be releasing the 2.20.00 version today or tomorrow. I have it ready but just need the time... |
|
|
|
|
|
|
|
|
|
![[Valid RSS]](http://ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
