Here’s an interesting post from Coding Horror. Basically, describing whether the CAPTCHA is broken or if designers are just using sloppy methods. What I find interesting is software utilities designed to “break” the CAPTCHA. Looking at that post, Google, Yahoo! and Hotmail have unbroken CAPTCHAs. So, if the CAPTCHA was broken, I guess my question would be, why would Google, Yahoo! and Hotmail be using them? Apparently, they know how to do it right. Google also shows that a CAPTCHA can be effective yet readable.
Anyway, interesting read. Thought I’d share. Being a programmer, I can appreciate the nature of that post.
{ 5 } Comments
Well, you also have those guys who use questions like what color are green apples ?
Seems like spam-bots can’t guess what the answer is
I really like reCAPTCHA, from a Google guy and ex-Mono guy.
http://recaptcha.net/
We’ve found that even using a captcha (reCAPTCHA) our sites will still get several hundred spam a week. Spammers are using automated human-powered captcha breaking services. These services pay a certain amount per broken captcha.
The Internet sucks.
Perhaps you think the internet sucks now, imagine when you lose your vision how awesome these captchas become.
http://churchturing.org/captcha-dist/ Some people are working towards making captchas ineffective simply for accessibility reasons.
Current CAPTCHA is definately broken and getting harder and harder for REAL PEOPLE to pass. I’ve just created a beta CAPTCHA service that I’d like to have tested by those who enjoy breaking security software. Any takers? Documentation http://bothole.appspot.com/doc To directly play with it from a browser use http://bothole.appspot.com
I’d like to avoid the Predicted SPAM Tsunami any ideas to make this service better and easier to use would be welcome.
Post a Comment