captcha WAS Please visit my php program

Ryan A <mailto:ryan@coinpass.com>
on Saturday, September 27, 2003 12:22 PM said:

> Please visit my captcha program here and tell me if its good or if
> you think i need to make some changes in text,color or anything.

Exactly what is the purpose of this? Let me clarify. I know that it's
supposed to prevent computers from submitting forms automatically
because they cannot read the graphic, but what I don't understand is in
what cases this is useful?

And specifically Ryan, where will you be using this?


I'm trying to gauge whether or not this would be worthwhile for a
project I'm working on right now.


Thanks,
Chris.

> Exactly what is the purpose of this? Let me clarify. I know that it's
> supposed to prevent computers from submitting forms automatically
> because they cannot read the graphic, but what I don't
> understand is in
> what cases this is useful?

Not being able to auto-subscribe to mailing lists in order to spam, for one.

Hey,

/*
Exactly what is the purpose of this? Let me clarify. I know that it's
supposed to prevent computers from submitting forms automatically
because they cannot read the graphic, but what I don't understand is in
what cases this is useful?
*/
Its more of a hassle and requires the entity who is submitting the form to
be human as computers cant 100% be sure of whats in the picture, they cant
"see" it 100% of the time even with todays OCR technoligy while humans can
make it out in a fraction of a second...mostly.

/*
And specifically Ryan, where will you be using this?
*/
Am using this on a voteing form at bestwebhosters.com which will be opened
in 2-5 days.
This idea was suggested to me by a few guys on this very list...the first
names that come to mind are john & chris.

/*
I'm trying to gauge whether or not this would be worthwhile for a
project I'm working on right now.
*/
Ok, i like it coz it adds a bit of the "fancy" element to the same old
boring forms but it has much more serious uses of course.

/*
Thanks,
Chris.
*/

No problem, tell me if you have any more q's although my replies may be a
little long in the coming.

HTH.

Cheers,
-Ryan

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Do somebody has any snipet for this stuff ?

----- Original Message -----
From: "Ryan A" <ryan@coinpass.com>
To: "Chris W. Parker" <cparker@swatgear.com>
Cc: <php-general@lists.php.net>
Sent: Tuesday, September 30, 2003 1:46 AM
Subject: Re: [php] captcha WAS Please visit my php program


> Hey,
>
> /*
> Exactly what is the purpose of this? Let me clarify. I know that it's
> supposed to prevent computers from submitting forms automatically
> because they cannot read the graphic, but what I don't understand is in
> what cases this is useful?
> */
> Its more of a hassle and requires the entity who is submitting the form to
> be human as computers cant 100% be sure of whats in the picture, they cant
> "see" it 100% of the time even with todays OCR technoligy while humans can
> make it out in a fraction of a second...mostly.
>
> /*
> And specifically Ryan, where will you be using this?
> */
> Am using this on a voteing form at bestwebhosters.com which will be opened
> in 2-5 days.
> This idea was suggested to me by a few guys on this very list...the first
> names that come to mind are john & chris.
>
> /*
> I'm trying to gauge whether or not this would be worthwhile for a
> project I'm working on right now.
> */
> Ok, i like it coz it adds a bit of the "fancy" element to the same old
> boring forms but it has much more serious uses of course.
>
> /*
> Thanks,
> Chris.
> */
>
> No problem, tell me if you have any more q's although my replies may be a
> little long in the coming.
>
> HTH.
>
> Cheers,
> -Ryan
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>
>

Hi, all --

...and then Ryan A said...
%
% Hey,

Hiya!


%
% /*
% Exactly what is the purpose of this? Let me clarify. I know that it's
...
% */
% Its more of a hassle and requires the entity who is submitting the form to

A hassle is right. What about your visitors who use a text-only browser
(or surf with images turned off) or who depend on text-to-speech readers?

This sort of thing is, IMNSHO, unnecessary and the wrong approach; it
makes the web harder to use without making it a safer place. The form
should be designed correctly and safely in the first place. We don't use
this sort of approach to prevent buffer overflow attacks and it shouldn't
be used anywhere else, either.


HTH & HAND

:-D
--
David T-G * There is too much animal courage in
(play) davidtg@justpickone.org * society and not sufficient moral courage.
(work) davidtgwork@justpickone.org -- Mary Baker Eddy, "Science and Health"
http://justpickone.org/davidtg/ Shpx gur Pbzzhavpngvbaf Qrprapl Npg!


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)

iD8DBQE/eVVKGb7uCXufRwARArbpAKC8jer59WUf1lOMc8sxQuRxU978nQ CgvANa
p34FRuAqaZm1S6MFXq5XIuU=
=iCjh
-----END PGP SIGNATURE-----

--- David T-G <davidtg-php@justpickone.org> wrote:
> A hassle is right. What about your visitors who use a text-only
> browser (or surf with images turned off) or who depend on
> text-to-speech readers?
>
> This sort of thing is, IMNSHO, unnecessary and the wrong approach;
> it makes the web harder to use without making it a safer place.
> The form should be designed correctly and safely in the first
> place.

That's a valid complaint, but I fail to see how a correctly-designed form can
offer any protection against automation. Can you show us some code?

Chris

=====
HTTP Developer's Handbook
http://shiflett.org/books/http-developers-handbook
My Blog
http://shiflett.org/

Chris, et al --

...and then Chris Shiflett said...
%
% --- David T-G <davidtg-php@justpickone.org> wrote:
% > A hassle is right. What about your visitors who use a text-only
...
% > The form should be designed correctly and safely in the first
% > place.
%
% That's a valid complaint, but I fail to see how a correctly-designed formcan
% offer any protection against automation. Can you show us some code?

1) No, not right now.

2) Let's clarify the example we're considering, since I don't think that
the approach will necessarily be the same for all forms.

3) Once that's done, let me think about it :-)


%
% Chris


Thanks & HAND

:-D
--
David T-G * There is too much animal courage in
(play) davidtg@justpickone.org * society and not sufficient moral courage.
(work) davidtgwork@justpickone.org -- Mary Baker Eddy, "Science and Health"
http://justpickone.org/davidtg/ Shpx gur Pbzzhavpngvbaf Qrprapl Npg!


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)

iD8DBQE/eaaeGb7uCXufRwARAqrCAJ4mnnLWMu1P/GaXKKlRYYgi8fEvqgCfcN+a
j6fYMRuejNW+w+myRWiE4Ho=
=V0ah
-----END PGP SIGNATURE-----

--- David T-G <davidtg-php@justpickone.org> wrote:
> 1) No, not right now.
>
> 2) Let's clarify the example we're considering, since I don't think
> that the approach will necessarily be the same for all forms.
>
> 3) Once that's done, let me think about it :-)

The challenge is to create a form that cannot be automated, for whatever reason
developers may need it.

Chris

=====
HTTP Developer's Handbook
http://shiflett.org/books/http-developers-handbook
My Blog
http://shiflett.org/

Hello,

On 09/30/2003 06:47 AM, Veniamin Goldin wrote:
> Do somebody has any snipet for this stuff ?

Here you may find a couple of classes ready to use to implement a
captcha system:

Class: CAPTCHA
http://www.phpclasses.org/captcha

Class: Verification Image
http://www.phpclasses.org/vimage


--

Regards,
Manuel Lemos

Free ready to use OOP components written in PHP
http://www.phpclasses.org/