Posted by moshe weitzman on July 25, 2007 at 8:43pm
I added latest captcha to this site. It is active for story form, registration form, and comment form. i will soon change og so there is a confirmation form when subscribing to a group since we've seen group subscription spam as well. we are using the text form of captcha, since that seems the sanest to me.
once you pass a single captcha, you never see it again as long as your session is active.
comments welcome.
Comments
Updated permissions
I wasn't sure what you were meaning by this. I just fiddled with access settings so admins and authenticated users don't get hit by captcha. We could turn it back on for auth, but I thought captcha protected user sign up, so it's really only for anonymous.
undo
we already had the perms so that anon couldn't post nodes or comments. and we were still getting spam. so captcha is the next layer of protection to assure that a human is at work, and not a script. i actually think we sufer from human spam, but perhaps those humans will get annoyed when they see a capcha ... i tried spam.module and didn't like the results.
so please re-enable captcha for those roles.
agree
I just blocked a spammer - http://groups.drupal.org/user/9820
I don't have permission to re-enable this captcha or I would. Please re-enable it if it isn't already.
I agree with Boris that perhaps after some number of ham posts and/or amount of time people should get promoted to a role that doesn't have to deal with the captcha but for now let's set all authenticated users to have to pass it. the "once every 20" posts is very reasonable.
--
Knaddisons Denver Life | mmm Chipotle Log | The Big Spanish Tour
knaddison blog | Morris Animal Foundation
reenabled
all users now see captcha again, incuding editors and admins. i'd like for even us to experience it, and improve as needed.
Has the captcha.module been re-enabled?
I haven't yet deleted the spam someone posted on the Austin group because I wanted someone on the webmaster/admin side to have an opportunity to take a look at it. Will the captcha.module prevent this type of spam on the Austin group in the future or, if already re-enabled, is this spam something that will still slip through the cracks?
Interestingly, the Austin group is the only group this user spammed from looking at the user's "Track" page. Because this abuser only spammed once, I'm guessing it was human generated? Just a guess, as I'm sure computer-generated vs. human-generated spam can be programmed to just leave 1 spam post so as to minimize detection.
Feel free to delete the Austin spam after you've taken a look; I like keeping my groups clean so if you don't delete it, I'll go ahead and do so by Sunday, 8/12.
Thanks in advance.
Walt Esquivel, MBA; MA; President, Wellness Corps; Captain, USMC (Veteran)
$50 Hosting Discount Helps Projects Needing Financing
Walt Esquivel, MBA; MA; President, Wellness Corps; Captain, USMC (Veteran)
$50 Hosting Discount Helps Projects Needing Financing