Suspecting RC1 very soon!

[Nicholas the Italian]

Inserting 2 cents here...

I agree with NeoThermic that this kind of solution (Q&A, with or without images) would need some more time to set up; I don't agree that it would take so much more time, and I also don't think this should be a stopper, if the solution is effective: do you want a better protected board? then you'll have to take the time to set up a better protection environment. For many admins of medium to big sized boards this shouldn't be a problem. The others... well, they can still use captchas or whatever. I mean, it's not an aut-aut decision, in theory you could implement both (or more) measures and then give the admin the option to choose which one(s) use and configure it/them appropriately.
As Drew said, I agree both things have their pros and cons. I don't think Q&A is the solution, because, once it is standard, it would have basically the same problems of captchas: being easy enough to break, or being difficult enough to keep some people out.

pick a word, go to google images, select a suitable image and up load it as you would an avatar, enter the word in the expected response field and you are done.

Here I have to say you've just provided a hint to spamming systems: try registering, you're shown an image; now just google, find the same image and use the corresponding words.
So it would still be a little more complex than this.

So, to sum it up, every system has its pros and cons, and every system has a strong con when it's standard in hundred of thousands / millions boards.
Maybe a way could be to develop and implement more than one system, constantly create new ones, and let admins easily find and install new modules of this kind. Of course lot of work here; the kind of work that needs a community-run development more than a core-developers-run development. (After all these are, or could be, quite stand-alone modules).

Last two things: I also suggested to split the topic , and Drew please avoid quoting entire messages, it makes the page really really long.

/end of my 2 cents.

[Drew***]

Normally I don't quote entire messages except when it's a point by point response

Here I have to say you've just provided a hint to spamming systems: try registering, you're shown an image; now just google, find the same image and use the corresponding words.

I was not aware that you could google an image. Even so there are ways around it; the first thing that comes to mind is resizing the image on upload.

[NeilUK]

Isn't anyone else totally bored by this whole subject now? I know I am, the developers will do what they think is best.

[balding_ape]

Neothermic, you've provided excellent reasons why CAPTCHA is a good idea. I'm not sure, however, that your reasoning indicates that a challenge system is not a better idea for forum admins who don't mind a little extra work in exchange for an approaching zero bot registration. (My assumption is that there is no char-based CAPTCHA that can't be broken. Perhaps that assumption is faulty.)

[Highway of Life]

I believe as much of a system can be put into defeating challenge and response as CAPTCHA.
Keep in mind that as soon as something is put in as "default", every spambot programmer in the world will set about programming methods to break that method of spam prevention.
So what might be a good idea now, won’t be if it becomes the default method for phpBB3, and becomes used on thousands of boards across the world.
Neotharmic is right... they will thank you later.

For a default system, I still believe the best system IS the CAPTCHA.
If Admins want something more, they should install additional modules/MODs to protect their board.
Many small boards may not need anything extra.

[user99]

------ I am not suspecting RC1 very soon.

Aah, now I am so relieved in my mind, body and soul. ( Yeah, I should have taken the "wrong pill" and avoided this Matrix )

[interlog]

Ref. using images from Google image search and using them as a Q&A session to stop bots.

You might see a good picture that suits the answer to your question, but this picture might be copyright protected. Something to think about

Mark

[Lastof]

Ooo, they cleared the snapshots!

Suspicions is more (and look, a cameo)

[oldlock]

The cleared them a day or two ago as well ...

Also the size had dropped quite a bit.

[Drew***]

For a default system, I still believe the best system IS the CAPTCHA.
If Admins want something more, they should install additional modules/MODs to protect their board.
Many small boards may not need anything extra.

The arguement has been made that a default captcha is probably a better choice than a default image and I have come to agree - as a default.
I still believe that the image and response will ultimately be harder for bot to decode and yet easier for humans. I believe this for all the reasons I stated previously in this thread

I also have a hard time believing that board admins are too lazy or dumb to up load an image and set a response. But then I don't sit at the help desk for phpbb so I don't have the benefit of that insight.

However because I do donate some time administering community boards for older adults I do know that I will have trouble with the captcha and will have to make it so easily readable that the bots will have no problem. ...and senior citizens aren’t likely to buy *beep* pills and breast enhancement products nor want to see ads for them.