Enhanced Numbered Equation CAPTCHA - Killing Web Spam - Part 2 Poboljšana numerirane jednadžbe captcha - ubijajući internet Neželjena pošta - 2. dio

CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) is arguably one of the best ways to knock out the majority of spam you receive. CAPTCHA (potpuno automatiziran s javnošću Turingov test reći da Računala i čovjeka Apart) arguably je jedan od najboljih načina da nokautirati većina neželjenih poruka koje ste primili. Its become popular with web 2.0 applications. Njezin postao popularan sa web 2.0 aplikacija. So much that its become widely used and thus spammers found a needed to crack it. Toliko da postanu naširoko koristi, a time i neželjene našli potrebno da ga slomiti. If you can create a new and unique CAPTCHA however, you’ll be a lot safer then everyone else who tend to use the same script site after site. Ako možete napraviti novu i jedinstvenu CAPTCHA međutim, da ćete biti puno sigurnije onda svi koji imaju tendenciju da koriste iste skripte stranica po stranica.

About a year ago I tried a simple addition script. O prije godinu dana pokušao sam jednostavan Uz pismo. If you didn’t enter the right result of the simple query it would error. Ako niste unijeli pravo rezultat jednostavnih upita ga bi se pogreška. This actually works pretty well for me and most others right now. To zapravo radi prilično dobro za mene i većinu ostalih upravo sada. Especially since they have evolved into changing the numbers used in the addition after each refresh. Pogotovo jer su se razvili u mijenjanje brojeva koji se koriste u dodatak nakon svakog osvježiti. When I use something like this I get even less spam slipping through. Kad sam koristiti nesto kao ovo sam dobiti čak i manje neželjenih poruka kliženje putem. So I took the addition script a step further. I uze Uz skriptu i korak dalje. Why? Zašto? Because a single number can easily be copied over by a script and because not all servers I’ve worked with have ImageMagik and/or GD Library installed. Zato što jedan broj može se lako kopirati nad po skriptu i jer nisu svi poslužitelji sam radio s ImageMagik imati i / ili GD knjižnica instaliran.

In about 15 lines I came up with a function that dynamically generated two numbers and allows an array of different signs/text/symbols to tell your users the appropriate math to apply in several different ways. U oko 15 redaka sam došao s funkcije koje dinamički generira dva broja i omogućuje niz različitih znakovi / text / simboli reći da svojim korisnicima odgovarajuće matematičke da će se primjenjivati na nekoliko različitih načina. Just add more to make it a bit more complex for spammers. Dovoljno je dodati još da je malo složeniji za neželjene. You can also mix it up by inserting random characters between words: “Plus” or “PLUS” or “P L U S”. Možete ga miješati se po umetanju slučajnih znakova između riječi: "plus" ili "PLUS" ili "P L U S".

  1. //USAGE: $answer = numbercaptcha();
  2. //****** Call this between <form></form>
  3. //****** $_POST will contain $_POST['number']
  4. //****** Check if $_POST['number'] is == to $answer
  5. //OPERATORS: Add additional $opperators to the array for more varriation
  6. function numbercaptcha ( ) {
  7. //Set first and second num rand(min,max)
  8. $firstnum = rand ( 5 , 8 ) ;
  9. $secondnum = rand ( 1 , 4 ) ;
  10. $coinflip = rand ( 1 , 2 ) % 2 ; //Picks a random equation type
  11. if ( $coinflip == 0 ) {
  12. $math = $firstnum $secondnum ;
  13. $operators = array ( " " , "Added To" , "Plus" ) ;
  14. $operatorschoice = rand ( 1 , 3 ) % 3 ;
  15. } else {
  16. $math = $firstnum - $secondnum ;
  17. $operators = array ( "-" , "Minus" ) ;
  18. $operatorschoice = rand ( 1 , 2 ) % 2 ;
  19. }
  20. echo $firstnum . " " . $operators [ $operatorschoice ] . " " . $secondnum . " = <input type= \" text \" name= \" number \" maxlength= \" 2 \" size= \" 5 \" >" ;
  21. return $math ;
  22. }
  23. Download this code: 0314numbercaptcha.txt Preuzmi ovaj kod: 0314numbercaptcha.txt

Nothing is foolproof, this can be cracked too. Ništa nije siguran, to može biti napukao previše. But it will get you around the typical bot or “script kiddy” that wants to spam your site and cause more of a headache for the pros to want to deal with. Ali doći će vas oko botova tipičnim ili "skripta klinjo" da želi neželjene pošte Vašu stranicu i izazvati više od glavobolju za pro da žele baviti. When this gets beaten and spammers have automated their way around my method then I have another plan in mind. Kada se to dobiva tukli i neželjene imati automatizirani putu oko moje metode onda sam drugi plan u vidu. Thats another day however. Thats no drugi dan.

For now, I’ve found the key to avoiding spam is to stay away from typical CMS and/or forum systems that contain predictable code among several other cookie cutter sites. Za sada sam pronašao ključ za izbjegavanje neželjenih poruka je da ostanu daleko od tipičnih CMS i / ili forum sistemima koji sadrže kôd predvidljiva među nekoliko drugih kolačić za glodanje sučelja. This defiantly isn’ta solution for most of you. To defiantly isn'ta rješenje za većinu od vas. But if you implement this code or something like it in the places that matter…something unique…you can break a spammers script by keeping your site out of the typical expectations of a spammer. Ali ako se proveo ovaj kod ili nešto kao što je to u mjestima koja stvar ... nešto jedinstveno ... možete razviti neželjene skriptu koju održavanje Vaših stranica iz tipične očekivanja, a spammer.

Also, a friend mentioned the addition/subtraction might be too hard for users and you’ll have lost comments/email. Također, prijatelju priključivanje spomenuta / oduzimanje može biti previše teško za korisnike i da ćete imati izgubljen komentari / e-mail. Maybe you’re considering that too? Možda ste obzirom na to da previše? I have to question the quality of user that is leaving you a comment or sending you an email if they can’t add or subtract single digit numbers. Imam pitanje za kvalitetu korisnika koji odlazi li komentar ili poslati Vam poruku e-pošte ako se ne može dodati ili oduzeti jednoj znamenki brojeva. Though you could increase the difficulty by adjusting the randomization seed and throw in some long division. Iako možete povećati poteškoće koje su slučajnim podešavanje sjeme i baci u neke duge podjele. That might be overkill :). To bi moglo biti nuklearnog uništenja na mnogo načina:).

If you’re keeping up with the spam series you might want to check out my last post: 5 Ways To Catch And Prevent Website Form Spam - Part 1 . Ako ste skladu s spama serija možda želite isprobati moj zadnji post: 5 NAČINI uhvatiti i spriječiti Web stranica Obrazac Spam - 1. dio. I updated the second block of code on that page to check the referring URL to prevent form abuse. Ja ažurirane drugi blok koda na tu stranicu da biste provjerili koje se odnose na URL kako bi se spriječilo oblik zlostavljanja.

Posted by: Rob Posted by: Rob
Category: Coding , Web Design Kategorija: Coding, Web dizajn
Tags: Automate , PHP , Spam Tags: automatizirati, PHP, Spam
Respond: Leave A Comment | Trackback URL Odgovaranje: Ostavite komentar | Trackback url



Leave A Comment: Ostavi komentar:

Comments RSS Feed Komentari RSS Feed

5 Added To 2 = 5 dodan u 2 =

Custom Theme by Rob Malon | Content & Design © 2008 - Rob Malon [dot] Com. Custom Theme by Rob Malon | Sadržaj & Design © 2008 - Rob Malon [dot] com. "));
"));