[RFC] stop distributing worthless CAPTCHAS in 3.1

Note: We are moving the topics of this forum and it will be deleted at some point

Publish your own request for comments/change or patches for the next version of phpBB. Discuss the contributions and proposals of others. Upcoming releases are 3.2/Rhea and 3.3.
Post Reply
User avatar
tbackoff
Registered User
Posts: 180
Joined: Sat Jun 12, 2010 3:25 am

Re: Remove broken captcha options...

Post by tbackoff »

emosbat wrote:but I still think that it is more from bugs than AI
You're thinking wrong. phpBB 3 has no known vulnerabilities and it went through an extensive security audit.

Also, to everyone, please discuss the RFC. The cheap shots are not needed. ;)

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: Remove broken captcha options...

Post by Master_Cylinder »

Right, this isn't a "bug" in the phpBB or captcha *code*, it's just that it's not working well as an anti-spambot solution anymore.
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
DavidIQ
Customisations Team Leader
Customisations Team Leader
Posts: 1904
Joined: Thu Mar 02, 2006 4:29 pm
Location: Earth
Contact:

Re: Remove broken captcha options...

Post by DavidIQ »

Image

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: Remove broken captcha options...

Post by Master_Cylinder »

DavidIQ wrote:Already been discussed before:
https://area51.phpbb.com/phpBB/viewtopi ... 08&t=43579
My bad, feel free to merge, if you prefer...
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
DavidIQ
Customisations Team Leader
Customisations Team Leader
Posts: 1904
Joined: Thu Mar 02, 2006 4:29 pm
Location: Earth
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by DavidIQ »

Yeah was digging through the list of topics to do the merge. All it means is that there is obviously a need/desire from even before to get rid of ineffective CAPTCHAs. This was recently brought to our attention elsewhere as well.
Image

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by Master_Cylinder »

Not a problem, you might even merge this one: viewtopic.php?f=108&t=42745
...since it's related. *shrug*
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
BTRFISHING
Registered User
Posts: 8
Joined: Fri Dec 20, 2013 3:13 pm
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by BTRFISHING »

I personally use Sortables CAPTCHA

https://www.phpbb.com/community/viewtopic.php?t=1795925

I would love to see this integrated from the start :)

User avatar
tbackoff
Registered User
Posts: 180
Joined: Sat Jun 12, 2010 3:25 am

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by tbackoff »

The problem is that any CAPTCHA included in phpBB will be broken by the spambots. So then we are right back where we started.

User avatar
imkingdavid
Registered User
Posts: 1050
Joined: Thu Jul 30, 2009 12:06 pm

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by imkingdavid »

Also, there's the issue of requiring JavaScript. We try to make it so that a default installation does not require JavaScript in order to function properly; sure it will not be as snappy or smooth, but it should still work. If we include, for instance, the Sortables CAPTCHA, no one that has disabled JavaScript will be able to register or do anything else that requires a CAPTCHA.
I do custom MODs. PM for a quote!
View My: MODs | Portfolio
Please do NOT contact for support via PM or email.
Remember, the enemy's gate is down.

User avatar
Pony99CA
Registered User
Posts: 986
Joined: Sun Feb 08, 2009 2:35 am
Location: Hollister, CA
Contact:

Re: [RFC] stop distributing worthless CAPTCHAS in 3.1

Post by Pony99CA »

imkingdavid wrote:Also, there's the issue of requiring JavaScript. We try to make it so that a default installation does not require JavaScript in order to function properly; sure it will not be as snappy or smooth, but it should still work. If we include, for instance, the Sortables CAPTCHA, no one that has disabled JavaScript will be able to register or do anything else that requires a CAPTCHA.
If HTML 5 still supports the NOSCRIPT tag, you could either give them an error telling them that JavaScript is required or maybe fall back to a Q&A CAPTCHA.

Steve
Silicon Valley Pocket PC (http://www.svpocketpc.com)
Creator of manage_bots and spoof_user (ask me)
Need hosting for a small forum with full cPanel & MySQL access? Contact me or PM me.

Post Reply