WebApp Sec mailing list archives

Re: Defeating CAPTCHA

From: "Paul M." <gpmidi () gmail com>
Date: Fri, 26 Aug 2005 06:53:49 +0000

I think the one thing that many people forget is that they are a
cheap, easy way to help keep spammers out. Take something simple like
posting anonymous comments on a web site. This raises the effort
required to comment spam my site just enough that most comment spamers
won't bother. If they do bother I'll put forth the effort to block
them and remove their comments.
~Paul

On 8/24/05, robert () webappsec org <robert () webappsec org> wrote:

This was linked off of slashdot (http://it.slashdot.org/article.pl?sid=05/08/24/1629213&tid=172&tid=95)
and explains some of the ways people are breaking CAPTCHA (http://en.wikipedia.org/wiki/Captcha) based systems.

http://sam.zoy.org/pwntcha/

- Robert
robert_at_webappsec.org
http://www.cgisecurity.com

Current thread:

Re: Defeating CAPTCHA, (continued)
- Re: Defeating CAPTCHA Jayson Anderson (Aug 25)
  - Re: Defeating CAPTCHA Mark Burnett (Aug 25)
    - Re: Defeating CAPTCHA Chris Shiflett (Aug 25)
    - Re: Defeating CAPTCHA Jayson Anderson (Aug 25)
    - Re: Defeating CAPTCHA Andrew van der Stock (Aug 25)
  - Re: Defeating CAPTCHA Stephen de Vries (Aug 25)
    - RE: Defeating CAPTCHA Glenn Euloth (Aug 26)
    - Re: Defeating CAPTCHA Christopher Kunz (Aug 31)
- Re: Defeating CAPTCHA Subs (Aug 26)
  - Re: Defeating CAPTCHA Michal Zalewski (Aug 26)
- Re: Defeating CAPTCHA Paul M. (Aug 26)
- Re: Defeating CAPTCHA victor (Aug 29)
  - RE: [WEB SECURITY] Re: Defeating CAPTCHA Marian Ion (Aug 29)
- RE: Defeating CAPTCHA Derick Anderson (Aug 26)
  - Re: Defeating CAPTCHA Devdas Bhagat (Aug 28)
- RE: Defeating CAPTCHA Derick Anderson (Aug 29)
  - RE: Defeating CAPTCHA wilsonc (Aug 29)
  - Re: Defeating CAPTCHA Devdas Bhagat (Sep 05)
- RE: Defeating CAPTCHA Derick Anderson (Sep 06)