At 12:27 PM +0900 6/10/07, Dave M G wrote:
Tips on what differentiates a good CAPTCHA from a bad one would also
be really sweet.
Dave:
From a visual disability standpoint, all graphic CAPTCHA's are bad.
From the not-disabled standpoint, most intelligible graphic CAPTCHA's
that can be read, can also be read by bots. So, it doesn't make much
difference to create variations of the theme, because the theme can
always be broken if it is to remain solvable by the sighted. In other
words, anything you can read, so can a bot.
Of course, you must also keep in mind what you are trying to protect.
If it's something popular and thus would return something of value,
then no CAPTCHA is going to keep evil-doers from accessing it.
On the other hand, if what you're trying to protect has no real
significance, then no one is going to brother breaking your CAPTCHA.
So, why use a CAPTCHA at all? Instead use something simple such as "1
+ 1 = ?". That will stop most cursory bots. If your site is popular,
then nothing easy like a CAPTCHA is going to work anyway -- you'll
have to come up with another method.
However, if you insist on making a CAPTCHA for your site (as clients,
not knowing better, sometimes insist), then also add an alternative
"way in" for the visually disabled like so:
http://sperling.com/examples/captcha/
If you want the code, just ask and I'll provide.
My thought is if you want to do image alteration, you might put your
skills to better use by writing routines for various photographic
effects, such as "Fish-Eye" or "Oval Cut-Outs" or whatever -- rather
than beating the dead horse CAPTCHA.
Cheers,
tedd
--
-------
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php