It worked for you, Tij?
My guess, then, since it's timing out, is it must be our corporate firewall blocking MP3s on my end. In which case, disregard my reponses with extreme prejudice.
Yes it worked for me, it probably is a firewall, because it works for Jake too. On 3/29/07, Jake McHenry <linux@xxxxxxxxxxxxxxxxx> wrote:
Looks good to me... Had to use my laptop since none of my office sets have speakers, tested it, tried bunch of stuff and it only let me in when I typed in the code... So seems good :) Jake
Yes, it's nice made, i see you didn't stored anything in sessions except PHPSESSID, which you probably use to verify the code entered. Atleast, that's what i think, i hope you didn't use IP ;) But, this is crackable. To crack this, the cracker should get the audio file from the server, and parse it. Since you use the same audio piece for each number, you should get the voice part of each number, and then parse the downloaded file and check which number it matches :) It won't be easy, and probably not everyone is able to crack this. But it is possible :) If you don't believe me, i am able to prove it, but that takes some time :) Tijnema
> -----Original Message----- > From: tedd [mailto:tedd@xxxxxxxxxxxx] > Sent: Thursday, March 29, 2007 12:41 PM > To: php-general@xxxxxxxxxxxxx > Subject: Audio CAPTCHA review request > > Hi gang: > > If you people would be so kind as to review this: > > http://sperling.com/examples/captcha/ > > and tell me what you think (ease of use, if it works, security, > etc.), I would appreciate it. > > The point is to be able to get to the "Congratulations" page by > hearing and entering the key. If you can get there some other way or > defeat the process, I sure would like to know about it. > > I've tested this with a couple of dozen blind users and they find no > problems with it. Now, I'll like to test it for the sighted. > > It's mixture of a several languages, but there is php in it, so I > guess it's on topic. > > Cheers, > > tedd > > -- > ------- > http://sperling.com http://ancientstones.com http://earthstones.com > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > -- > No virus found in this incoming message. > Checked by AVG Free Edition. > Version: 7.5.446 / Virus Database: 268.18.20/737 - Release > Date: 3/28/2007 4:23 PM > > -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.446 / Virus Database: 268.18.20/737 - Release Date: 3/28/2007 4:23 PM -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
