This topic contains 13 replies, has 0 voices, and was last updated by  Brain Damage 10 years, 1 month ago.

  • Author
    Posts
  • #5890

    BigBear
    Participant

    I think including captchas for account registration was a great idea. The bot spam posts were very annoying indeed. However, why oh why do we have to use them every single time we log on to the forums? It’s really annoying and I’d really love for someone either to explain to me why this is a good idea or please pick up a sword and join my newly founded crusade to get rid of this nuisance. 😉

    #45284

    imported_gcamp
    Participant

    The spammers were cracking them, so I made them harder and also put them on posting.

    Can’t you just tick the remember me button?

    #45285

    apache64d
    Participant

    @gcamp wrote:

    Can’t you just tick the remember me button?

    Ehem. .. 😛 yeah

    #45286

    BigBear
    Participant

    @gcamp wrote:

    The spammers were cracking them, so I made them harder and also put them on posting.

    Can’t you just tick the remember me button?

    Making the captchas harder to read for spam bots is all good and well. If they are cracked however, I fail to see the increased level of security in using them every single time you log in. Then what you do is make better captchas like you said. And if they are not cracked, then what is the use of repeating the process over and over for approved users?

    I don’t really see what the remember me button will do to help with this since you still have to manually enter the captcha every single time. And if it was possible to skip the captcha this way, its use would be null and void anyways.

    Just my opinion. 😉

    #45287

    Thrax
    Participant

    @bigbear wrote:

    I don’t really see what the remember me button will
    do to help with this since you still have to manually enter the captcha
    every single time. And if it was possible to skip the captcha this way, its
    use would be null and void anyways.

    Just my opinion. 😉

    When you use that option, the cookie it creates leaves you logged in
    and you no longer have to use the capcha.
    Unless your cookies are off. .then you’ll have to do it over and over …

    #45288

    imported_gcamp
    Participant

    @bigbear wrote:

    Making the captchas harder to read for spam bots is all good and well. If they are cracked however, I fail to see the increased level of security in using them every single time you log in. Then what you do is make better captchas like you said. And if they are not cracked, then what is the use of repeating the process over and over for approved users?

    The bots you can download are written against raw phpBB2. I changed this forum to have a captchas in the login process so even if they managed to register (or were hand registered) then the bot code would need to be changed to cope with having the captchas in the login (phpBB2 doesn’t do this by default). So basicaly yes you are correct, but it’s the act of having them there when the default phpBB2 doesnt that is the trick in this case.

    Any yes I guess without using cookies it would be really anoying.

    #45289

    Rommel
    Participant

    LOL I thought I was the only one that had the problem of getting locked out after several attempts to log on. I’ve found that a 10 X magnifing lens helps a little (sometimes).

    #45290

    BigBear
    Participant

    Regarding cookies I do allow them (always did) and interestingly the auto login works for me on some sites but not on all.

    Anyhooo, I still have the same opinion but if you think it adds a level of security Gavin then so be it. At least I didn’t have to input username and password every time since I’ve got that bit covered heh.

    Oh and to Rommel. Keep clicking the Log in button until you get a captcha that is readable. Then you won’t have to waste your login tries on the unreadable ones. 😉

    #45291

    Rommel
    Participant

    Hi BigBear:

    Thank you for taking the time to pass along that tip. My vision comes and goes lately and I’m sure to find that to be very helpful.

    @bigbear wrote:

    …. Oh and to Rommel. Keep clicking the Log in button until you get a captcha that is readable. Then you won’t have to waste your login tries on the unreadable ones. 😉

    I must go destroy the world now. Krieg ohne Hass

    #45292

    naka
    Participant

    @ a little offtopic just for fun

    The russians go too far 😆
    The login registration form was copied from a real site. 😆
    i dont know how to solve this

    the answer is:
    0,69314718055994530941723212145818

    #45293

    BigBear
    Participant

    Well that or ln 2 (the expression inside the square root will become 0 as x approaches 0) ;). I take it that that site/forum has some sort of math/engineering affiliation or something. In any case they would make a clean sweep at the internet geek awards if there was such a thing. Now all they have to do is scramble the formula so that it’s virtually unreadable, and the ultimate captcha is born :twisted:.

    #45294

    Laptops Daddy
    Participant

    Don’t know if I missed the point but…

    I almost posted before, sometimes it takes me 3 attempts to sign in because I can’t read the code. Any chance of a new code image button? (You know, to replace it if you can’t read it).

    #45295

    imported_gcamp
    Participant

    @laptops Daddy wrote:

    Don’t know if I missed the point but…

    I almost posted before, sometimes it takes me 3 attempts to sign in because I can’t read the code. Any chance of a new code image button? (You know, to replace it if you can’t read it).

    Just refresh the page.

    #45296

    hobbesme
    Participant

    No more how annoying it is upon login, captcha’s are way better than the dozens of spam topics that we used to get on a daily basis. In fact, right before Gavin implemented the captcha’s a little over a year ago, spam topics ramped up to many dozen per day with really long posts with hyper links to a cornucopia of sites, mostly porn.

    #45297

    Brain Damage
    Participant

    the thing is that we switched from a single, very poor strenght captcha @ registration (normal text with an added slight gausssian noise, phpbb2 standard even) to a system where 2 strong captchas were used (login & registration)

    no mid test with a single strong captcha @ registration was ever tried by us

    and about cookies, the very strongly reccomanded setting is to set them to session only; ie thrown off when closing the browser, so even clicking on “remember me” won’t work

    i would reccomend a single strong captcha @ registration time AND an additional custom rule to forbit to post links in the first post

    as strong captcha, the current could work, or could be replaced with the recaptcha script (http://recaptcha.net/) wich uses captcha logins to digitalize old ruined books 8)

Viewing 15 posts - 1 through 15 (of 15 total)

You must be logged in to reply to this topic.