Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] CAPTCHA on keitai
- Date: Tue, 25 Mar 2008 10:28:07 +0900
- From: "Josh Glover" <jmglov@example.com>
- Subject: Re: [tlug] CAPTCHA on keitai
- References: <47DE0C71.1010107@articlass.org> <87k5k0r2s1.fsf@uwakimon.sk.tsukuba.ac.jp> <d8fcc0800803172314pe18074fxbc03ad0d6e686473@mail.gmail.com> <87d4psqynb.fsf@uwakimon.sk.tsukuba.ac.jp> <20080318093415.GD2593@lucky.cynic.net> <87lk4fvder.fsf@uwakimon.sk.tsukuba.ac.jp> <20080322090057.GG5267@lucky.cynic.net> <878x0afsj9.fsf@uwakimon.sk.tsukuba.ac.jp> <20080324040919.GD2762@lucky.cynic.net> <871w5zg01t.fsf@uwakimon.sk.tsukuba.ac.jp>
On 25/03/2008, Stephen J. Turnbull <stephen@example.com> wrote: > Why is any hacker with half a brain going to be looking for a field > name? They just look for a type="text" INPUT element in a form > containing an IMG element. That's probably halfway there. So: <img src="logo.jpg" /> <form action="login.php" name="login" method="POST"> <input name="username" type="text" /> <input name="password" type="password" disabled="disabled" /> <input name="login" type="submit" value="Login" /> </form> [...] <form action="comment.php" name="comment" method="POST"> <img src="c3f2h2.jpg" /> Enter the word above and click "Post": <input name="vrfy" type="text" /> <input name="post" type="submit" value="Post" /> </form> Except that the second form is CSS positioned off the screen, or blanked out, or overlaid, or otherwise not displayed. It be spambait. The first form is the real CAPTCHA; the image above it (but not adjacent in the HTML source; again, use CSS somehow to accomplish this) contains the instructions and the CAPTCHA word. -- Cheers, Josh
- Follow-Ups:
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- Re: [tlug] CAPTCHA on keitai
- From: David Santinoli
- Re: [tlug] CAPTCHA on keitai
- From: Curt Sampson
- Re: [tlug] CAPTCHA on keitai
- References:
- [tlug] CAPTCHA on keitai
- From: Dave M G
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- Re: [tlug] CAPTCHA on keitai
- From: Josh Glover
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- Re: [tlug] CAPTCHA on keitai
- From: Curt Sampson
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- Re: [tlug] CAPTCHA on keitai
- From: Curt Sampson
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- Re: [tlug] CAPTCHA on keitai
- From: Curt Sampson
- Re: [tlug] CAPTCHA on keitai
- From: Stephen J. Turnbull
- [tlug] CAPTCHA on keitai
- Prev by Date: Re: [tlug] CAPTCHA on keitai
- Next by Date: [tlug] [OT] Alter ego (was: CAPTCHA on keitai)
- Previous by thread: Re: [tlug] CAPTCHA on keitai
- Next by thread: Re: [tlug] CAPTCHA on keitai
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |