vb.org Archive
Page 21 of 40 « First 111920 21 222331 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.8 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=235)
-   -   Miscellaneous Hacks - Enhanced Captcha Image Verification - stop bots from signing up!! (https://vborg.vbsupport.ru/showthread.php?t=132482)

yoyoyoyo 09-15-2007 01:16 PM
I am using 3.6.8, and just now installed this, and am getting these errors:

Quote:
Warning: session_start() [function.session-start]: open(/var/sessions/sess_576412532ddd0f178c3d3f7b7934d7a0, O_RDWR) failed: No such file or directory (2) in /register.php(202) : eval()'d code on line 1

Warning: session_start() [function.session-start]: Cannot send session cookie - headers already sent by (output started at /home/mysite/public_html/forum/includes/class_core.php:3117) in /register.php(202) : eval()'d code on line 1

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/mysite/public_html/forum/includes/class_core.php:3117) in /register.php(202) : eval()'d code on line 1

smoknz28 09-15-2007 02:16 PM
Steadicamop, great hack! I appreciate the fact that coders, like yourself, share your countless hours of coding....so Thank You!!

Next, I want to commend you on a hack that I believe is a much better approach then the standard code in place by vb. I recently installed your hack on vb 3.6.8 with only one issue. I didn't catch on to the fact that you had subdirectories to get to the verification images. I would only recommend that you not have so many sub dirs to get to the images. I had initially uploaded the directory with all the sub dirs for the images and got errors upon trying out the hack from registration. Yes your installation instructions were on track, but many of us knuckle-heads, like myself, don't do so well with reading. We get so damn anxious to get the hacks installed that we don't pay close enough attention at times to instructions. Definitely our fault...but I think you can save yourself some heartache from us knuckle-heads asking you questions on the images or it not working due to the above.

Again, great hack and I'm loving it brother!

I also posted about your hack in the vbulletin.com forums: http://www.vbulletin.com/forum/showt...33#post1420833

Thank you to all you coders for sharing your countless hours of code! ;)

Oh, and I did install this on a heavily moded version of vb 3.6.8 and is working great.

Thanks Steadicamop. :D

stryderunknown 09-27-2007 02:07 PM
I haven't installed the addon, however that's because I'm in the process of look at writing one myself. However I do see a slight flaw in how your addon works (without getting into the reverse engineering of how it works).

The problem is 'finite possibilities', if a Bot were to choose to click(well... emulate a click) the first image every time eventually it would get the right image because of the randomisation process.

It could be beneficial to log the number of attempts (I'd guess in the db session table) and perhaps blacklist those that reach a certain threshold. Some might suggest generating random numbers for your show.php?# , however again a bot would be able to read it.

One way would to be add the addition of say 4-binary digits via the GD library to the bottom of each image, the user can then be asked to type the binary reference as well as click an image. (And the reference doesn't have to be from the same image as they click).

This increases the complexity and lessens the chances that both will fall on the first image (in fact you could alter the randomisation method to not allow them to fall on the same image)

I would hack that version myself, however I've got another one up my sleeve ;)

Other than that keep up the good work (as well as all those that aid people coding/designing)

steadicamop 09-28-2007 06:40 PM
Quote:
Originally Posted by yoyoyoyo (Post 1339472)
better yet, simply change it to
PHP Code:
$vboptions[bburl]/images/verification/show.php 
BTW -where are the settings in the ACP for this hack?
I did a LOT of testing with the [bburl] option but it doesn't work correctly - unless I was using it the wrong way, but I could never find a way of pulling the forum url out correctly from the vboptions system - if this is incorrect I will look at changing it, but this is why it is still hardcoded.

There aren't any options in the AdminCP for this, I haven't been able to proceed with the Flash version so may look into an update with an option for how many images to use and enable/disable, just something simple.

HTH

Jason

steadicamop 09-28-2007 06:42 PM
Quote:
Originally Posted by smoknz28 (Post 1339499)
Steadicamop, great hack! I appreciate the fact that coders, like yourself, share your countless hours of coding....so Thank You!!

Next, I want to commend you on a hack that I believe is a much better approach then the standard code in place by vb. I recently installed your hack on vb 3.6.8 with only one issue. I didn't catch on to the fact that you had subdirectories to get to the verification images. I would only recommend that you not have so many sub dirs to get to the images. I had initially uploaded the directory with all the sub dirs for the images and got errors upon trying out the hack from registration. Yes your installation instructions were on track, but many of us knuckle-heads, like myself, don't do so well with reading. We get so damn anxious to get the hacks installed that we don't pay close enough attention at times to instructions. Definitely our fault...but I think you can save yourself some heartache from us knuckle-heads asking you questions on the images or it not working due to the above.

Again, great hack and I'm loving it brother!

I also posted about your hack in the vbulletin.com forums: http://www.vbulletin.com/forum/showt...33#post1420833

Thank you to all you coders for sharing your countless hours of code! ;)

Oh, and I did install this on a heavily moded version of vb 3.6.8 and is working great.

Thanks Steadicamop. :D
Thanks for your kind words - I was just sick of Spam sign ups, so with my limited PHP knowldedge my bro in law and I sat down to code this - it is fairly simple too, but seems to be very useful to other members.

I'm looking into an update in the not too distant future, some extra features.

Thanks again,

Jason

steadicamop 09-28-2007 06:45 PM
Quote:
Originally Posted by stryderunknown (Post 1348238)
I haven't installed the addon, however that's because I'm in the process of look at writing one myself. However I do see a slight flaw in how your addon works (without getting into the reverse engineering of how it works).

The problem is 'finite possibilities', if a Bot were to choose to click(well... emulate a click) the first image every time eventually it would get the right image because of the randomisation process.

It could be beneficial to log the number of attempts (I'd guess in the db session table) and perhaps blacklist those that reach a certain threshold. Some might suggest generating random numbers for your show.php?# , however again a bot would be able to read it.

One way would to be add the addition of say 4-binary digits via the GD library to the bottom of each image, the user can then be asked to type the binary reference as well as click an image. (And the reference doesn't have to be from the same image as they click).

This increases the complexity and lessens the chances that both will fall on the first image (in fact you could alter the randomisation method to not allow them to fall on the same image)

I would hack that version myself, however I've got another one up my sleeve ;)

Other than that keep up the good work (as well as all those that aid people coding/designing)
I don't want to step on your toes with this one if you have something in mind, but the digits on the image sounds like a neat idea - it is something that should be fairly easily added, would it be ok with you if I looking into adding this idea into this product - and of course with full credit to yourself.

steadicamop 09-29-2007 04:35 PM
Can we confirm this is definately working on 3.6.8? I will change the version on the page to reflect that it's compatible ... I'm still lagging behind on 3.6.2 :(

Mystery Man 09-30-2007 05:27 PM
works flawlessly on 3.6.8
tested with both firefox and ie
marked as installed
thx hopefully this will kill the bot activity

Alibass 09-30-2007 05:33 PM
I am running this hack on 3.6.8 and your other hack for Contact Us also. Both are working flawlessly. I have both set to display 6 images.

Regards

steadicamop 10-01-2007 04:57 AM
I've updated to reflect that it's compatible - which I'm very glad about for when I upgrade!

I have another idea in the mix at the moment for making it even more secure - it's based on an idea from this thread.

There may be a new version in the next few weeks....

Jason


All times are GMT. The time now is 03:58 AM.
Page 21 of 40 « First 111920 21 222331 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01455 seconds
  • Memory Usage 1,760KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_php_printable
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (2)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete