[RFC] stop distributing worthless CAPTCHAS in 3.1

Note: We are moving the topics of this forum and it will be deleted at some point

Publish your own request for comments/change or patches for the next version of phpBB. Discuss the contributions and proposals of others. Upcoming releases are 3.2/Rhea and 3.3.
Post Reply
User avatar
tmbackoff
Registered User
Posts: 180
Joined: Sat Jun 12, 2010 3:25 am

Re: Remove broken captcha options...

Post by tmbackoff » Tue Dec 31, 2013 8:44 pm

emosbat wrote:but I still think that it is more from bugs than AI
You're thinking wrong. phpBB 3 has no known vulnerabilities and it went through an extensive security audit.

Also, to everyone, please discuss the RFC. The cheap shots are not needed. ;)

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: Remove broken captcha options...

Post by Master_Cylinder » Tue Dec 31, 2013 9:12 pm

Right, this isn't a "bug" in the phpBB or captcha *code*, it's just that it's not working well as an anti-spambot solution anymore.
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
DavidIQ
Customisations Team Leader
Customisations Team Leader
Posts: 1787
Joined: Thu Mar 02, 2006 4:29 pm
Location: Earth
Contact:

Re: Remove broken captcha options...

Post by DavidIQ » Wed Jan 01, 2014 2:48 am

Image

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: Remove broken captcha options...

Post by Master_Cylinder » Wed Jan 01, 2014 2:49 am

DavidIQ wrote:Already been discussed before:
https://area51.phpbb.com/phpBB/viewtopi ... 08&t=43579
My bad, feel free to merge, if you prefer...
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
DavidIQ
Customisations Team Leader
Customisations Team Leader
Posts: 1787
Joined: Thu Mar 02, 2006 4:29 pm
Location: Earth
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by DavidIQ » Wed Jan 01, 2014 2:55 am

Yeah was digging through the list of topics to do the merge. All it means is that there is obviously a need/desire from even before to get rid of ineffective CAPTCHAs. This was recently brought to our attention elsewhere as well.
Image

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by Master_Cylinder » Wed Jan 01, 2014 3:02 am

Not a problem, you might even merge this one: viewtopic.php?f=108&t=42745
...since it's related. *shrug*
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
BTRFISHING
Registered User
Posts: 8
Joined: Fri Dec 20, 2013 3:13 pm
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by BTRFISHING » Mon Jan 06, 2014 7:08 pm

I personally use Sortables CAPTCHA

https://www.phpbb.com/community/viewtopic.php?t=1795925

I would love to see this integrated from the start :)

User avatar
tmbackoff
Registered User
Posts: 180
Joined: Sat Jun 12, 2010 3:25 am

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by tmbackoff » Tue Jan 07, 2014 5:45 pm

The problem is that any CAPTCHA included in phpBB will be broken by the spambots. So then we are right back where we started.

User avatar
imkingdavid
Registered User
Posts: 1050
Joined: Thu Jul 30, 2009 12:06 pm

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by imkingdavid » Tue Jan 07, 2014 6:49 pm

Also, there's the issue of requiring JavaScript. We try to make it so that a default installation does not require JavaScript in order to function properly; sure it will not be as snappy or smooth, but it should still work. If we include, for instance, the Sortables CAPTCHA, no one that has disabled JavaScript will be able to register or do anything else that requires a CAPTCHA.
I do custom MODs. PM for a quote!
View My: MODs | Portfolio
Please do NOT contact for support via PM or email.
Remember, the enemy's gate is down.

User avatar
Pony99CA
Registered User
Posts: 986
Joined: Sun Feb 08, 2009 2:35 am
Location: Hollister, CA
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by Pony99CA » Tue Jan 07, 2014 10:31 pm

imkingdavid wrote:Also, there's the issue of requiring JavaScript. We try to make it so that a default installation does not require JavaScript in order to function properly; sure it will not be as snappy or smooth, but it should still work. If we include, for instance, the Sortables CAPTCHA, no one that has disabled JavaScript will be able to register or do anything else that requires a CAPTCHA.
If HTML 5 still supports the NOSCRIPT tag, you could either give them an error telling them that JavaScript is required or maybe fall back to a Q&A CAPTCHA.

Steve
Silicon Valley Pocket PC (http://www.svpocketpc.com)
Creator of manage_bots and spoof_user (ask me)
Need hosting for a small forum with full cPanel & MySQL access? Contact me or PM me.

Post Reply