Well, it didn't take long! I got my first spam registration this morning - from an address ending in o2.pl

I see these on another site that I have running - I'm not sure what they get out of registration - perhaps they test the security from inside the site and see what they can find?

Has anyone experimented with a captcha type system on the site so far?

Steve

I decided to try a different sort of captcha - a picture based one called Confident Captcha. It show 8 images and you have to click on the photo that matches the word. You need to register on their site to get the various api codes, but it all seems very easy and secure.

Anyone who wants to see what it looks like can try to register on my site and you will see the way it works

steve

This works well...

http://akismet.com/

I have that, but isn't it just comment spam, not login spam?

Steve

I got that same registration this morning too.  I was waiting for a sale.

I will look into that Confident Captcha. I have Akismet, but I thought that was just for blog comments, too.

Quote from: steheap on April 07, 2013, 19:54
Well, it didn't take long! I got my first spam registration this morning - from an address ending in o2.pl

I see these on another site that I have running - I'm not sure what they get out of registration - perhaps they test the security from inside the site and see what they can find?

Has anyone experimented with a captcha type system on the site so far?

Steve

Also here.

New user registration on Hitvectors - Vectors for sale: Username: annimato83 E-mail: [email protected]

You'll keep getting them and one day soon you'll be able to boast 300, 000+ registrations! Captcha is one way but setting a trap works well and does not interrupt your customer's experience:

<div style='display: none'> // invisible div within the reg form tags
<input type='text' name='webaddress' value=''> // spammers love to auto fill this in
<input type='text' name='contact' value=''>  // spammers love to auto fill this too
</div>

On the page that processes the newbie registration look for values 'webaddress' and or 'contact' (just examples, pick something that you are not using but is spammer friendly). If these values have been filled (remember these fields are invisible to humans) then the newbie isn't human and can be brutally dispatched and your DB remains clean.

My spam blocker lets me feed a squirell and put ketsup on fries to tell if ur human.

Quote from: Leo on April 08, 2013, 00:31
My spam blocker lets me feed a squirell and put ketsup on fries to tell if ur human.

Has someone been working too hard?

Yes probably but he is not seeing things - try registering with my site (it will check I have really fixed it as well)

Quote from: Tinny on April 08, 2013, 13:05
Yes probably but he is not seeing things - try registering with my site (it will check I have really fixed it as well)

LOL - makes sense now I've had a look.

Quote from: halfshag on April 07, 2013, 22:09
You'll keep getting them and one day soon you'll be able to boast 300, 000+ registrations! Captcha is one way but setting a trap works well and does not interrupt your customer's experience:

<div style='display: none'> // invisible div within the reg form tags
<input type='text' name='webaddress' value=''> // spammers love to auto fill this in
<input type='text' name='contact' value=''>  // spammers love to auto fill this too
</div>

On the page that processes the newbie registration look for values 'webaddress' and or 'contact' (just examples, pick something that you are not using but is spammer friendly). If these values have been filled (remember these fields are invisible to humans) then the newbie isn't human and can be brutally dispatched and your DB remains clean.

How to edit a page and insert this code? Via Putty and using linux vi ? Via Ftp downloading page -> edit/insert -> upload page ?

Quote from: steheap on April 07, 2013, 20:10
I decided to try a different sort of captcha - a picture based one called Confident Captcha. It show 8 images and you have to click on the photo that matches the word. You need to register on their site to get the various api codes, but it all seems very easy and secure.

Anyone who wants to see what it looks like can try to register on my site and you will see the way it works

steve

Hi Steve,  I found a slight problem with your captcha login - it is too big for the space available and you have to scroll up and down to see what it wants and the pictures are very dark, took me quite a few seconds to work out which one was underwater as could not see what they were

Quote from: Chico on April 08, 2013, 13:45
How to edit a page and insert this code? Via Putty and using linux vi ? Via Ftp downloading page -> edit/insert -> upload page ?

It's just an illustration of the concept, won't do anything if you insert that code.

QuoteHi Steve,  I found a slight problem with your captcha login

Yes, I did see that myself in my testing. It is because the login page is actually a single page that scrolls down if you want to register and then my captcha get put half way down that larger page.

I may have to change to something else!

Steve

Would you like to try mine out - please, and comments on size and usablity will be appreciated

I can't make it work. Nothing to click or drag. I use Chrome

Steve

Possibly because I had not put everything back together after deleting it all to find my login problem.  I think it should work now

Nope - doesn't work for me!

Sorry

Steve

I don't think it is  Chrome that is stopping it working for you as I just downloaded and installed it to test, strange.  Wonder why you cannot see it when you try and register

Quote from: Tinny on April 08, 2013, 14:49
Would you like to try mine out - please, and comments on size and usablity will be appreciated

Your captcha would be great if it worked. I see it, it asks me to drag a smiley on a t-shirt, but I can't drag anything. I use Firefox.

edited: I clicked the signup button with nothing filled in and the catcha no working. Got to sort of an "error sign-up" page, and here your captcha is working! Weird. I hope you can get this sorted out.

Quote from: Pilens on April 08, 2013, 18:59

Quote from: Tinny on April 08, 2013, 14:49
Would you like to try mine out - please, and comments on size and usablity will be appreciated

Your captcha would be great if it worked. I see it, it asks me to drag a smiley on a t-shirt, but I can't drag anything. I use Firefox.

edited: I clicked the signup button with nothing filled in and the catcha not working. Got to sort of an "error sign-up" page, and here your captcha is working! Weird. I hope you can get this sorted out.

After trying two different plugins, I've settled on one called simply Captcha. Have a look at my register page now and see what you think!

Steve

Quote from: steheap on April 08, 2013, 19:10
After trying two different plugins, I've settled on one called simply Captcha. Have a look at my register page now and see what you think!

Steve

Works for me. Let's hope no potential buyer gets deterred because she/he can't solve the math 

Actually, I very much like halfshag's suggestion of coding in a trap. That I fear, however, will be more work for Leo...

Feed the squirrel, and you will believe ...
http://www.symbiostock.com/wp-login.php