Forum: Captchator Yesterday bots found a hole in my captcha auth

Yesterday bots found a hole in my captcha auth
Posted by Konstantin Dzreyev (konstantin)
on 2010-03-29 14:34 
Yesterday I started getting messages from bots at my site. They set no
captcha answer and my code sent
"http://captchator.com/captcha/check_answer/$yourse... as a
captcha confirmation. And sometimes you answered with "1" instead of
"0".

As workarout I pushed a fix that requires a captcha answer to be not
blank...

But is not there an issue when one asks you for confirmation without any
answer?

Thanks!

Konstantin
Edit | Move | Delete topic | Reply with quote
Re: Yesterday bots found a hole in my captcha auth
Posted by Andreas S. (andreas)
on 2010-03-29 18:06 
Konstantin Dzreyev wrote:
> Yesterday I started getting messages from bots at my site. They set no
> captcha answer and my code sent
> "http://captchator.com/captcha/check_answer/$yourse... as a
> captcha confirmation. And sometimes you answered with "1" instead of
> "0".

Thanks for the report. I made a change to the software yesterday that 
caused this problem. It is fixed now. Please let me know if there are 
any further problems.
Edit | Delete | Reply with quote
Enable email notification | Enable multi-page view
Please log in before posting. Registration is free and takes only a minute.
Existing account (Switch to SSL-encrypted connection)
NEW: Do you have a Google/GoogleMail or Yahoo account? No registration required!
Log in with Google account | Log in with Yahoo account
No account? Register here.
Powered by RForum and Captchator. Contact information - E-Mail: webmaster (at) ruby-forum (dot) com.