I have no idea who is this actress, so the only thing I can do is to leave the website (or spend the next two minutes using Google Images).Īnother example: a website asks to give a synonym of "mysterious". The comments form asks me, as a CAPTCHAs mechanism, to provide the name of the actress displayed on a photo. I notice a mistake in an article and want to comment on it to notify the author about the mistake. I tried to find some material about how effective those are, but without success, so here is just my personal opinion:ĭomain-specific CAPTCHAs can be hugely annoying when actual users have no idea about the answer.Įxample: I'm visiting a page on a movies-oriented website. You may want to move from visual CAPTCHA to sound (if you're not using both already, and you should), but this means that users with hearing impairment would be unable to use your application.įrustratedWithFormsDesigner and GalacticCowboy mentioned in the comments domain-specific CAPTCHAs. Technically, nothing would prevent human farms: you may create animated GIFs where several frames display different text very quickly, and only one frame is actually visible by the user, you may distort or bend text in all directions or find new, alternative ways to prevent OCRs from recognizing text, still humans paid for solving CAPTCHAs will successfully solve them. If you use a popular CAPTCHA mechanism, moving to a custom-made one or to another popular one might prevent OCR. This will help if either your own CAPTCHA was too easy to OCR, or if there was a bug which was successfully exploited. If you have your custom implemented CAPTCHA, you may try to move to a popular one, like reCAPTCHA. Įxternal projects have shown methodologies and results indicating that many of the systems can be defeated by computers with between 88% and 100% accuracy, using optical character recognition.
One of the first documented attacks on the system was by a Carnegie Mellon student, who associated CAPTCHA images with access to an adult Web site, thus gaining free human labor to crack the authentication. There may also be a bug either in the CAPTCHA mechanism itself or the surrounding application, allowing someone to bypass the CAPTCHA.īy the way, the W3C article Inaccessibility of CAPTCHA : Alternatives to Visual Turing Tests on the Web explains as well how CAPTCHAs could be compromised: ask for people to fill CAPTCHAs for money, just like ProTypers does.
0 kommentar(er)
