Re: [WebDNA] Captcha question (and free code)

This WebDNA talk-list message is from

2009


It keeps the original formatting.
numero = 103481
interpreted = N
texte = Nice Ken :) And for those looking for other methods .... http://dev.idfk.com.au/captcha/ I would love to do one with Imagemagick (http://www.imagemagick.org), when I get around to it I will post the code. Regards Stuart Tremain IDFK Web Developments AUSTRALIA webdna@idfk.com.au On 26/08/2009, at 12:43 AM, Kenneth Grome wrote: > Do hackers these days use scripts that: > > 1- read the content of a web page > 2- extract strings like "two hundred eighty three" > 3- convert them into numbers like "283" > 4- enter these values into blank form fields > > ... so they can get past text-based captcha systems designed to > prevent forms from being submitted by hackers? > > Sincerely, > Ken Grome > > > > P.S. I'm giving the code away free but I don't think file > attachments are allowed in this talk list so you'll have to get it > from my website. Please do not redistribute this file without my > permission, thanks: > > http://kengrome.com/downloads/captcha.tpl.zip > > Here's my description so you can figure out if it's worth > downloading *before* you download: > > This captcha.tpl page creates a word-based captcha system entirely > in webdna with no cookies or database required. It displays a 6- > digit number as words. To answer the captcha challenge correctly the > visitor must translate this value into corresponding numeric digits. > > Here's how to use this file: > > 1- Place this captcha.tpl file somewhere inside your web folder > hierarchy > > 2- Place an [include /path/to/captcha.tpl] tag at the top of the > form page you want to protect > > 3- Insert this hidden form field into the form: name=captchaLookup value=[captchaLookup]> > > 4- Insert this text input field into the form: name=captchaAnswer> > > 5- Place the [captchaWords] tag on the page wherever you want the > "number-as-words" text to appear > > The first part of the system is done, now let's proceed with the > second part. Use these showif's on the page that receives the form > post to determine whether or not the visitor typed the correct > answer to the captchaAnswer field, then change what's inside the > showif's to show the proper code based on the visitor's captcha > answer: > > [code removed for clarity in this email] > > When you uncomment the following webdna comment section > you can test this captcha system entirely within this file > before installing it in your website: > > [code removed for clarity in this email] Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Captcha question (and free code) (Stuart Tremain 2009)
  2. Re: [WebDNA] Captcha question (and free code) (Donovan Brooke 2009)
  3. Re: [WebDNA] Captcha question (and free code) (Stuart Tremain 2009)
  4. Re: [WebDNA] Captcha question (and free code) (Stuart Tremain 2009)
  5. Re: [WebDNA] Captcha question (and free code) (Kenneth Grome 2009)
  6. Re: [WebDNA] Captcha question (and free code) (Clint Davis 2009)
  7. Re: [WebDNA] Captcha question (and free code) (Kenneth Grome 2009)
  8. Re: [WebDNA] Captcha question (and free code) ("Dan Strong" 2009)
  9. Re: [WebDNA] Captcha question (and free code) (William DeVaul 2009)
  10. Re: [WebDNA] Captcha question (and free code) (Kenneth Grome 2009)
  11. Re: [WebDNA] Captcha question (and free code) ( 2009)
  12. [WebDNA] Captcha question (and free code) (Kenneth Grome 2009)
Nice Ken :) And for those looking for other methods .... http://dev.idfk.com.au/captcha/ I would love to do one with Imagemagick (http://www.imagemagick.org), when I get around to it I will post the code. Regards Stuart Tremain IDFK Web Developments AUSTRALIA webdna@idfk.com.au On 26/08/2009, at 12:43 AM, Kenneth Grome wrote: > Do hackers these days use scripts that: > > 1- read the content of a web page > 2- extract strings like "two hundred eighty three" > 3- convert them into numbers like "283" > 4- enter these values into blank form fields > > ... so they can get past text-based captcha systems designed to > prevent forms from being submitted by hackers? > > Sincerely, > Ken Grome > > > > P.S. I'm giving the code away free but I don't think file > attachments are allowed in this Talk List so you'll have to get it > from my website. Please do not redistribute this file without my > permission, thanks: > > http://kengrome.com/downloads/captcha.tpl.zip > > Here's my description so you can figure out if it's worth > downloading *before* you download: > > This captcha.tpl page creates a word-based captcha system entirely > in webdna with no cookies or database required. It displays a 6- > digit number as words. To answer the captcha challenge correctly the > visitor must translate this value into corresponding numeric digits. > > Here's how to use this file: > > 1- Place this captcha.tpl file somewhere inside your web folder > hierarchy > > 2- Place an [include /path/to/captcha.tpl] tag at the top of the > form page you want to protect > > 3- Insert this hidden form field into the form: name=captchaLookup value=[captchaLookup]> > > 4- Insert this text input field into the form: name=captchaAnswer> > > 5- Place the [captchaWords] tag on the page wherever you want the > "number-as-words" text to appear > > The first part of the system is done, now let's proceed with the > second part. Use these showif's on the page that receives the form > post to determine whether or not the visitor typed the correct > answer to the captchaAnswer field, then change what's inside the > showif's to show the proper code based on the visitor's captcha > answer: > > [code removed for clarity in this email] > > When you uncomment the following webdna comment section > you can test this captcha system entirely within this file > before installing it in your website: > > [code removed for clarity in this email] Stuart Tremain

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Hard Questions ? (1997) [WebDNA] Encode cookies ONLY via "method=Base64" (2008) For those of you not on the WebCatalog Beta... (1997) HomePage Caution (1997) Document Contains No Data! (1997) Multiple adding (1997) [time] math Q (2003) WebDNA to Apache RewriteMap (2005) [WebDNA] [OT] Happy New Year (2009) WebDelivery downloads alias, not original ? (1997) Help name our technology! (1997) Bug Report, maybe (1997) lookup and two records? (1997) Feature Request: DB Field manipulation (1998) state? (2004) Nested tags count question (1997) [foundItems] context problem (2000) WebCatalog security on NT (2000) searching multiple databases in single search (1997) Sku numbers (1997)