Login CAPTCHA issue in 10.10 beta

Post Reply

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
kiklop Members Profile Find Members Posts Groupie Joined: 14 July 2005 Status: Offline Points: 137	Post Options Post Reply Quote kiklop Report Post Thanks(0) Quote Reply Topic: Login CAPTCHA issue in 10.10 beta Posted: 08 March 2012 at 10:54pm
	On the 10.10 version, login_form_inc.asp page is missing CHAPTA include as found on previous version. Since without that, there is no way one can log-in after 3 attempts i guess it is an error? Adding "old code" from v10.03 works but i want to be sure if this is a safe thing to do. Thanks ! p.s. sorry for another 10.10 topic but i guess it is better to open a new one
	dyxum.com

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 09 March 2012 at 8:14am
	This is a known issue with version 10.10 beta. To fix the issue login to the admin area and under the 'User Settings' page set the ' Failed Login Attempts' to the maximum of 50. Version 10.10 beta no longer uses CAPTCHA as advanced automated bots now have OCR detection designed to read CAPTCHA codes. They can now even read CAPTCHA codes that the normal person can not read! While CAPTCHA still provides adequate protection against most remote submission techniques, it's protection these days is limited, which is why many large websites are slowly removing the use of CAPTCHA and replacing with more specified techniques that are less invasive to the user to evade automated bots. We have worked with a Microsoft Forum to design a new system for the registration and login pages in Web Wiz Forums to prevent automated submission and attacks from bots and remove the use of CAPTCHA.
	Web Wiz Forums Hosting ASP.NET Web Hosting

kiklop Members Profile Find Members Posts Groupie Joined: 14 July 2005 Status: Offline Points: 137	Post Options Post Reply Quote kiklop Report Post Thanks(0) Quote Reply Posted: 09 March 2012 at 9:46am
	Thanks Bruce; Two questions; - i presume this part of the forum is a beta and the final version will remove part of the code that is asking CHAPTA codes to be entered ? - is it, at this point, ok to include CHAPTA (as coded with the v10.03) until the final release?
	dyxum.com

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 09 March 2012 at 10:14am
	You will find bugs like this in the beta version as with such a massive updated, with over 100 file changes a few things will have been missed in testing. The issue has been fixed for the next release, which will be mainly bug fixes to fix issues that have come to light in the beta release. I could not say if using the login from 10.03 would work as not tested this, so could not say if it would cause issues any where else. The work around that I would suggest using for the moment is setting the in the admin area incorrect login attempts to 50.
	Web Wiz Forums Hosting ASP.NET Web Hosting

Post Reply

Forum Jump

Forum Permissions View Drop Down

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum