http://xkcd.com/792/ Another way to harvest passwords. Not much ingenuity required.
On Tue, Oct 25, 2011 at 1:03 PM, Raul Miller <[email protected]> wrote: > And, yes, what I suggested here was almost exactly what you described. > But I was wondering whether botnet (or whatever mechanism) latency > could be made low enough to give such a captcha site an air of > legitimacy. > > It's hard to imagine what issues will become important nowadays... > > For example: > > http://www.technologyreview.com/computing/38913/ > http://www.technologyreview.com/computing/38913/page2/ > > or > > http://www.technologyreview.com/printer_friendly_article.aspx?id=38913 > > -- > Raul > > On Tue, Oct 25, 2011 at 3:53 PM, Raul Miller <[email protected]> wrote: >> On Tue, Oct 25, 2011 at 3:17 PM, Roger Hui <[email protected]> wrote: >>> That this is listed as a "major event" is indicative. (The CAPTCHA >>> strategy is easily defeated: run a website to get humans to do the >>> test; etc.) >> >> Hmm... now that you mention it, I wonder if any countries host >> "anti-captcha" sites -- sites which appear to be implementing some >> kind of captcha but which hijack their images from genuine captcha >> sites (perhaps with minor manipulations) and use the resulting >> opportunities maliciously. >> >> -- >> Raul ---------------------------------------------------------------------- For information about J forums see http://www.jsoftware.com/forums.htm
