Closed GoogleCodeExporter closed 8 years ago
For the first item, this would be implemented in your code. All Kaptcha does is
serve an image and put a token
in the session. If you want to reset it to a different value on failure, then
go ahead. The only benefit for that is
that you would be able to stop someone trying to brute force attack the kaptcha
with a bot (ie: trying the same
kaptcha value multiple times until they get it right. In my application, I do
something like this instead: http://lookfirst.com/2008/06/red-listing.html
With regards to recording a time, I can add another parameter to the session
that is a timestamp.
Original comment by latch...@gmail.com
on 9 Aug 2008 at 5:55
Ok, just added a Date to the session for you.
Original comment by latch...@gmail.com
on 9 Aug 2008 at 6:14
Original comment by latch...@gmail.com
on 9 Aug 2008 at 6:16
Original issue reported on code.google.com by
jmferl...@gmail.com
on 9 Aug 2008 at 4:53