Posted on: 04/09/13 05:20pm
By: ::Ben
A CAPTCHA implementation for Geeklog 2.0 or higher is available. CAPTCHA provides additional protections against spam bots registering or posting on your system.
[new] convert to COM_createHTMLDocument
[fix] css color issue
[new] captcha config is now in the main config area
[new] new install script to support auto install
[new] logview on the main captcha admin screen
[new] message to invite admin to check settings after upgrade to 3.4.0 due to config migration
Download
Documentation[*2]
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 04/10/13 08:19am
By: ::Ben
The archive will be in the
download area[*1] as soon as a moderator will validate it
Ben
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 04/10/13 12:05pm
By: Laugh
Sorry about that. Done. Did you want to post an article as well?
Also I was testing it on my development server so I could update Geeklog.net and I noticed that I keep getting an error message of the captcha being expired when I enter a captcha for a comment or a new user (that is all I tested the captcha on).
With logging enabled I also get the message in the captcha log file:
CAPTCHA: Detected an attempt to use an expired CAPTCHA in comment - IP Address:
This was an upgrade from 3.4.0 I believe and the previous version was working.
I also checked the captcha table and their is a record with the correct captcha code and I assume the correct session id.
Tom
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 04/10/13 01:37pm
By: ::Ben
I sent you a new archive. A $_CP_CONF['expire'] was missing. Everything seems to work now on my testing platform.
Ben
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 04/10/13 04:12pm
By: Laugh
Yup it works. I updated the download on Geeklog.net with the new version (3.4.1).
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 11/20/13 06:02pm
By: Laugh
Feature request:
For some reason Google has stated crawling my installed captcha plugin:
/captcha/captcha.php
/captcha/captcha.php?c
When accessed directly if produces the error (which Google complains about in Webmaster Tools):
Invalid session id
Can we return a 404 error if it is accessed directly? Geeklog 2.0 has the new function COM_handle404 which is used by all of the core plugins.
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 11/21/13 04:13am
By: ::Ben
As COM_handle404 function seems to be only available for Geeklog 2.1 I will add this feature in the next release.
In captcha.php file start by:
Text Formatted Code
if (strpos(strtolower($_SERVER['PHP_SELF']), 'captcha.php') !== false) {
COM_handle404();
}
meanwhile we can add in the curent release
Text Formatted Code
if (strpos(strtolower($_SERVER['PHP_SELF']), 'captcha.php') !== false) {
die('This file can not be used on its own!');
}
Ben
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 11/21/13 06:41am
By: Laugh
Actually that doesn't work since that file gets called by the script through html
For now I have just replaced
die("Invalid session id"
;
with
COM_handle404();
Re: Captcha plugin 3.4 for Geeklog 2.0
Posted on: 11/21/13 09:02am
By: ::Ben
+1
Text Formatted Code
// see if an existing session_id is passed
if (isset($_GET['csid']) ) {
$csid = COM_applyFilter($_GET['csid']);
} else {
COM_handle404();
}
Ben