On 13 September 2010 13:36, radhames brito <[email protected]> wrote: > "What does using AJAX or not have to do with whether or not you use a > CAPTCHA process?" > > because some bots will bypass the captcha, and he will need a publishing > pageĀ where he can delete those spams that get through because captcha alone > is not enough so at the end captcha is only an aid to stop most of the spam > but not all.
Any bots that can bypass an AJAX captcha could bypass the same captcha on a non-AJAX submission. And AJAX or not, the choice is up to you whether to have a "publishing/approval" page. Again - There's nothing special about AJAX that makes any implementation of a "commentable" feature inherently less secure. It's *exactly* the same as a normal form submission/process procedure, just performed by Javascript and in the background to the user. -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.
