Closed GoogleCodeExporter closed 9 years ago
Sorry, I don't like the idea of storing captchas, because 1) it opens the
possibility of repetition attacks and 2) we
have to care about disk space, write permissions, conflicting filenames, ....
Original comment by mbonetti
on 8 Dec 2009 at 2:14
1) I wrote a patch that don't affect the way the application generates captcha
and
hashcode. So, if I understand you right, the possibility of repetition attacks
is
just the same as in original version. I just want to avoid the issue when the
SAME
image has to be generated twice (or more).
2) Static files are to be stored in django static directory, so write
permissions,
conflicting filenames and such are handled by django. As for disk space, the
files
are stored temporary and are deleted when CaptchaStore is deleted (django
handles
this).
I've attached a patch here, so you could see how it's done. The patch is not
well
tested though.
Original comment by ww.lss...@gmail.com
on 14 Dec 2009 at 6:32
Attachments:
Original issue reported on code.google.com by
ww.lss...@gmail.com
on 23 Sep 2009 at 4:42