Quote:
Originally posted by Syphuh
Here is a real solution for the securing the GFY search function from script kiddies / bots:
To defeat the bots you need to have an "image question" on the search form page. Most of you probably already know what this is, but for those who don't, look at the MS passport.net signup page (click "Get One Now" near the bottom) to see an example of this technique in action, or for a more in-depth look checkout "Securing Forms with Random Noisy Images" on zend.com.
Basically the webserver will create an image with a randomly generated word before a form is submitted. The user then has to type in the word displayed in the image in the answer box to be able to submit the form.
This would not be difficult to implement. However, one of the main arguments against using this method is that it discriminates against visually impaired.
|
501st time this has been suggested now.. or thereabouts.