Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 9 of 9
  1. #1
    Regular Coder
    Join Date
    May 2005
    Posts
    235
    Thanks
    0
    Thanked 0 Times in 0 Posts

    KittenAuth... ???? i thought this was a wind up to begin with...

    ...But
    http://www.thepcspy.com/kittenauth

    The working version is found on their contact page. Seems a little large and cumbersome at the moment but worth keeping an eye on.

    Crowds
    PHP magpie | And President Of The Marmalade Atkins Fan Club | Crowds Design

  • #2
    Mega-ultimate member
    Join Date
    Jun 2002
    Location
    Winona, MN - The land of 10,000 lakes
    Posts
    1,855
    Thanks
    1
    Thanked 45 Times in 42 Posts
    That's neat, but really poses an accessibility problem.

  • #3
    UE Antagonizer Fumigator's Avatar
    Join Date
    Dec 2005
    Location
    Utah, USA, Northwestern hemisphere, Earth, Solar System, Milky Way Galaxy, Alpha Quadrant
    Posts
    7,691
    Thanks
    42
    Thanked 637 Times in 625 Posts
    Looks like a spin off of this captcha which has been up for years:

    http://www.hotcaptcha.com/

  • #4
    Regular Coder ArcticFox's Avatar
    Join Date
    Jan 2004
    Location
    Vostok Station, AQ
    Posts
    602
    Thanks
    35
    Thanked 3 Times in 3 Posts
    Quote Originally Posted by bcarl314 View Post
    That's neat, but really poses an accessibility problem.
    Can't be everything to all people. It's a tough world, but a line has to be drawn somewhere.
    <div> - putting your mind in a box since 1997

  • #5
    Senior Coder TheShaner's Avatar
    Join Date
    Sep 2005
    Location
    Orlando, FL
    Posts
    1,126
    Thanks
    2
    Thanked 40 Times in 40 Posts
    Quote Originally Posted by Fumigator View Post
    Looks like a spin off of this captcha which has been up for years:

    http://www.hotcaptcha.com/
    And KittenAuth would respond with...
    First thing, KittenAuth is not a clone of any of these other projects... Its the other way around... KittenAuth is the original "pick images from the grid" concept and implementation.

    Secondly. they are insecure. Most of them try to overcome the drawbacks of KittenAuth (accessibility mainly) by having alt tags for the images so blind people can use them... Let me ask you this: If the hinge of a security application relies on people being able to process images and tell what they are, where computers find it much harder, what good is it if you give the computer the text-explanation? And I answer: No good. It breaks its security. HotCaptcha, based on Hot-or-Not, uses lots of javascript. Its a nice implementation but each image have the same URL it has on Hot-or-Not. A spambot can go there see if they're hot and answer the CAPTCHA. Fun... but totally useless..
    In my opinion, all these CAPTCHAs have their drawbacks, including the current method of obfuscating words. And look how involved they're getting! If we're going to have a huge block of pick 3 pics, then we might as well just implement a reading comprehension question on a paragraph and have the person answer it. The paragraph can randomly generate certain words that will change the whole meaning, thus giving different answers each time. The benefits would be twofold: blind people can answer them and it'll weed out the dumb people

    -Shane

  • #6
    UE Antagonizer Fumigator's Avatar
    Join Date
    Dec 2005
    Location
    Utah, USA, Northwestern hemisphere, Earth, Solar System, Milky Way Galaxy, Alpha Quadrant
    Posts
    7,691
    Thanks
    42
    Thanked 637 Times in 625 Posts
    Whoops, I got it backwards. Thanks for the correction.

    Yeah I'm a fan of simple logic questions, but nothing will ever be foolproof.

    I'm in the middle of trying out the recaptcha.net that Basscyst mentioned a while back. That one looks cool.

  • #7
    Senior Coder TheShaner's Avatar
    Join Date
    Sep 2005
    Location
    Orlando, FL
    Posts
    1,126
    Thanks
    2
    Thanked 40 Times in 40 Posts
    Quote Originally Posted by Fumigator View Post
    Yeah I'm a fan of simple logic questions, but nothing will ever be foolproof.
    Current CAPTCHAs are usually databases of words that are obfuscated, but one simple image algorithm can decipher all of them. If you do a database of logical questions, as of right now, it'd be almost possible for a computer to be able to understand the thousands of kind of different questions you can ask. One algorithm couldn't solve them all.

    As an example, consider this small database of questions:
    • If an eight-legged spider lost a leg, how many legs would he have?
    • If you are in the front of the line, what position are you in?
    • A red car is going fifty km/h and slows down ten km/h. What color is the car?
    • Which animal is faster: a turtle or a cheetah?
    • If there are three boxes on the ground and you pick up one, how many are left on the ground?
    • How many sides does a square have?


    Could you really design a logical recognition system to answer all of these questions? Most likely not. The only thing i can see is that you can design for one of them and then keep refreshing the page until your algorithm recognizes the sentence structure and can solve it. But with a big database filled with thousands of different types of questions, the odds would be really against you and definitely not worth it for spam.

    -Shane

  • #8
    Mega-ultimate member
    Join Date
    Jun 2002
    Location
    Winona, MN - The land of 10,000 lakes
    Posts
    1,855
    Thanks
    1
    Thanked 45 Times in 42 Posts
    Quote Originally Posted by TheShaner View Post
    Current CAPTCHAs are usually databases of words that are obfuscated, but one simple image algorithm can decipher all of them. If you do a database of logical questions, as of right now, it'd be almost possible for a computer to be able to understand the thousands of kind of different questions you can ask. One algorithm couldn't solve them all.

    As an example, consider this small database of questions:
    • If an eight-legged spider lost a leg, how many legs would he have?
    • If you are in the front of the line, what position are you in?
    • A red car is going fifty km/h and slows down ten km/h. What color is the car?
    • Which animal is faster: a turtle or a cheetah?
    • If there are three boxes on the ground and you pick up one, how many are left on the ground?
    • How many sides does a square have?


    Could you really design a logical recognition system to answer all of these questions? Most likely not. The only thing i can see is that you can design for one of them and then keep refreshing the page until your algorithm recognizes the sentence structure and can solve it. But with a big database filled with thousands of different types of questions, the odds would be really against you and definitely not worth it for spam.

    -Shane
    True, but then you have to deal with answers as well. For example what's valid for your first question?

    7?
    Seven?
    seven?
    seven legs?
    7 legs?
    The spider has 7 legs?
    there are seven legs left?

  • #9
    Senior Coder TheShaner's Avatar
    Join Date
    Sep 2005
    Location
    Orlando, FL
    Posts
    1,126
    Thanks
    2
    Thanked 40 Times in 40 Posts
    Well, you could easily do a multiple choice answer, although that may give a spam bot a 25% (if doing 4 choices) chance of passing the CAPTCHA.

    Alternatively, you could specify in the directions for one word answers and no numbers. I just gave a quick example, so a possible rephrasing of the questions to better clarify the answer expected could also be done.

    I would prefer to go with the latter method for a more secure CAPTCHA and I don't foresee too much of a problem with the answers if done correctly. Yes, there will be people that mess them up from time to time, but that even happens now with current methods.

    -Shane


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •