On Sat, March 24, 2007 11:00 pm, Jake McHenry wrote:
Index.php
?php
session_start();
header(Refresh: 1);
I dunno what the heck the Refresh header is, but it would not shock
me in the least that your sessions are getting lost because your
browser does the refresh before it processes the cookie
If the code is embedded in the audio filename, or as part of the HTML,
the CAPTCHA itself is kinda useless to a serious attack. The attacker
will simply read the code from the HTML/URL
You need the secret code to never actually leave your server for it to
stay secret.
That said, CAPTCHA can
what is currently in the pic
-Original Message-
From: Richard Lynch [mailto:[EMAIL PROTECTED]
Sent: Monday, March 26, 2007 3:49 PM
To: Jake McHenry
Cc: 'itoctopus'; php-general@lists.php.net
Subject: RE: [PHP] Re: My own captcha from 2 years ago..
On Sat, March 24, 2007 11
At 2:53 PM -0500 3/26/07, Richard Lynch wrote:
If the code is embedded in the audio filename, or as part of the HTML,
the CAPTCHA itself is kinda useless to a serious attack. The attacker
will simply read the code from the HTML/URL
I have not finished with the blind testing of my audio
On 3/25/07, Jake McHenry [EMAIL PROTECTED] wrote:
Sorry.. Was playing around with dates and how long I've been sitting
here watching this generate random numbers. Lol .. The only lines
referring to the captcha are the img lines... As you can tell... Calling
the next script... Should I
This is btw not a very useful CAPTCHA, because it should stop
computers from submitting data, but a little bit smart programmer
knows that he has to get session information from the image, and
submit that to the form. Or what i saw used lately by a cracker, he
was just using his own values in
On 25/03/07, tedd [EMAIL PROTECTED] wrote:
What about an audio Captcha?
Your thoughts?
tedd
I do a lot of my browsing at the university library. I can't have any
sound being made there each time I must enter a capcha. Don't use
audio, or provide an alternative.
Dotan Cohen
At 5:05 PM +0200 3/25/07, Dotan Cohen wrote:
On 25/03/07, tedd [EMAIL PROTECTED] wrote:
What about an audio Captcha?
Your thoughts?
tedd
I do a lot of my browsing at the university library. I can't have any
sound being made there each time I must enter a capcha. Don't use
audio, or provide
Sorry.. Was playing around with dates and how long I've been sitting
here watching this generate random numbers. Lol .. The only lines
referring to the captcha are the img lines... As you can tell... Calling
the next script... Should I do it this way? I'm pretty sure that is the
problem,
9 matches
Mail list logo
