I think what you're doing is very interesting. I will point you at http://www.cepstral.com/ for a possible solution to your .mp3 usage. You could use Cepstral's "swift" tool to say the text dynamically. Another suggestion on your security: put in a random delay after unsuccessful attempts. This can help a DoS from hammering your box. And log how many attempts failed. After say 3 attempts, lock the user's account. If you're really clever/paranoid, add the cracker's IP to your firewall "deny" file. This of course is all dependant upon how secure/paranoid you want to be. > -----Original Message----- > From: tedd [mailto:tedd@xxxxxxxxxxxx] > Sent: Thursday, March 29, 2007 9:41 AM > To: php-general@xxxxxxxxxxxxx > Subject: Audio CAPTCHA review request > > Hi gang: > > If you people would be so kind as to review this: > > http://sperling.com/examples/captcha/ > > and tell me what you think (ease of use, if it works, security, > etc.), I would appreciate it. > > The point is to be able to get to the "Congratulations" page by > hearing and entering the key. If you can get there some other way or > defeat the process, I sure would like to know about it. > > I've tested this with a couple of dozen blind users and they find no > problems with it. Now, I'll like to test it for the sighted. > > It's mixture of a several languages, but there is php in it, so I > guess it's on topic. > > Cheers, > > tedd > > -- > ------- > http://sperling.com http://ancientstones.com http://earthstones.com > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
