CAPTCHA Anti spam v1

Snitz™ Forums 2000
https://forum.snitz.com/forumTopic/Posts/62445?pagenum=1
05 November 2025, 01:40

Topic

Podge
CAPTCHA Anti spam v1
29 July 2006, 14:53


CAPTCHA Anti spam v1
Because of accessability issues this mod is no longer being updated. please use the Gatekeeper mod instead
This mod may help prevent bots (web robots) from doing the following on your forum;

1. Registering accounts automatically
2. Posting link spam automatically
3. Emailing your members automatically

It does this by asking the user to read an image and type the characters into a textfield. The characters are designed so that a computer cannot work out what they are. This is called a CAPTCHA test - Completely Automated Public Turing test to tell Computers and Humans Apart. For more information on Captcha's see - http://www.captcha.net/

There are four captcha patterns included in the form of sub's; Grid, Lines, Circles and drawCode. If you wish to write new captcha patterns you will find the code in captcha.asp. Please share any patterns you create, the more patterns included the harder it will be for robots to crack.
Download here: http://www.snitzbitz.com/mods/details.asp?Version=All&mid=230<

 

Replies ...

Podge
29 July 2006, 15:05


Example CAPTCHA's
<
HuwR
29 July 2006, 17:46


one word of warning, this kind of Captcha does not comply with usability standards as visually impaired or colour blind users may have difficulty reading the letters<
Podge
30 July 2006, 07:55


Agreed. I use visual and audio captchas by using this - http://www.lanapsoft.com/ - Its fairly easy to implement, its cheap but not free.
If you only enable the captcha on post_info.asp then visually impaired people should never encounter it as its only shown to users who are not logged in.
<
dayve
30 July 2006, 23:44


I've seen problems in the PHP community, but has anyone really had bots register accounts on a Snitz forum?
BTW, here is a free version I came across awhile ago:

http://www.u229.no/stuff/Captcha/<
Podge
31 July 2006, 05:05


There is an application available ($199 retail) which automatically registers accounts and posts multiple messages. Its capable of automatically detecting whether the forum is phpBB, Invision Power Board or Snitz.<
Webbo
13 August 2006, 17:13


There are no edits for the file: pop_config_help.asp within the readme or download..
..should there be?<
Podge
16 August 2006, 06:14


Yes there should. They are not vital for it to work.

I'll update the zip when I get a chance.<
bobby131313
22 August 2006, 22:27




Hey Podge,

Quick question, if I'm only going to use the CAPTCHA for registration can I leave out the edits in some of the other files not marked required?
If so, do I just modify config.asp, admin_config_features.asp, and register.asp? I'm thinking I might have to do inc_profile.asp too, but I'm not sure.<
Podge
23 August 2006, 05:40


If you're just using it for registration you can leave out post.asp post_info.asp and pop_mail.asp. You need to do inc_profile.asp. It would be best if you made all the changes required in all files. You can turn off the captcha on post.asp and pop_mail.asp in the admin area.<
bobby131313
23 August 2006, 10:33




Thanks Podge.
It's just that I've seen many threads here about the "weight" of post.asp, I thought if I was never going to use it there, maybe I shouldn't add it there.
<
bobby131313
23 August 2006, 11:10


Great mod Podge, but I just installed it and I'm afraid I won't be able to use it.
Some of the images are way too hard to read. A lot of our members are of the older generation, and I gotta tell you, I'm relatively young with good eyes and had a lot of trouble reading a lot of them.
Also, there are no instructions on what to do with the letters, unless you happen to hover over the image. Non-computer savvy people (like our older generation) will certainly be confused. (just an observation, not a deciding factor, could be easily remedied)

If you happen to hover over the image, it says you can click to reload, but at least in IE, you get the "page has expired do you want to retry" message. When you retry, all the info you input is gone and has to be redone.
<
Podge
23 August 2006, 11:38


The Gatekeeper mod is probably better because it doesn't have the accessability issues. I need to update the zip for that mod with proper instructions though.<
bobby131313
23 August 2006, 17:15




Yeah, I think that one will be good. I will wait until the readme is fixed. Thanks!
<
PowerRun
02 October 2006, 15:40


I have installed it and after fixing all the buggy code I found it still doesn't work. If I enter a wrong number of characters and then enter the correct number, but all wrong letters, it'll let me send e-mail<
Podge
02 October 2006, 16:40


What bugs did you fix ? You could share them for the benefit of others.<
JohnC
05 December 2006, 10:17


Podge, I am currently implementing your Captcha mod but have a question. In your directions for post_info.asp you say the following:

Code:
Around line 815 find these lines
------------------------------

		if strSignatures = "1" and strDSignatures <> "1" then
			if Request.Form("sig") = "yes" and GetSig(strDBNTUserName) <> " " then
				txtMessage = txtMessage & vbNewline & vbNewline & ChkString(GetSig(strDBNTUserName), "signature" )
			end if
		end if
------------------------------
After them add
------------------------------
		'CAPTCHA Mod
		on error goto 0
		if strLinkSpamCaptcha = 1 then
		Dim strUsersInput
		strUsersInput= Request.Form("captcha")
		Select Case len(trim(strUsersInput))
		case "4"
				If Session("Snitz.captcha") <> "" then
					If UCase(strUsersInput) <> UCase(Session("Snitz.captcha")) then
						Go_Result "You entered the wrong Anti SPAM confirmation code !", 0
					End if
				End IF
		case "0"
					Go_Result "You did not enter the Anti SPAM confirmation code !", 0
		case else
					Go_Result "You entered the wrong amount of characters for the Anti SPAM confirmation code !", 0
		End Select
		End if
		Session.Contents.Remove("Snitz.captcha")
		'CAPTCHA Mod
In my version (3.4.03) there are two of the above lines (at 777 and 937), which might be the same for the latest version but just different line numbers. Would I put he Captcha code after the first instance or second?<
Podge
05 December 2006, 11:16


I don't have a copy of the 3.4.03 version but its the first instance in the 3.4.05 version.<
JohnC
05 December 2006, 11:29


Thanks for your quick reply, Podge!
I've run into another snag:

Code:
Microsoft VBScript compilation error '800a03ea' 

Syntax error 

/forums/pop_mail.asp, line 80 

'Captcha Mod		"              <tr>" & vbNewLine & _
^
I thought you could just put an apostrophe in front of a line that you don't want to be processed?<
Podge
05 December 2006, 11:50


Do you have a & _ on the preceeding line ?
<
JohnC
05 December 2006, 12:27


Yes. blush<
Podge
05 December 2006, 12:50


For the benefit of others....
Remove the & _ and it should work.<
JohnC
05 December 2006, 13:13


I added "'Captcha Mod" at the beginning of the lines you said to delete and got that error. I just deleted the lines now.
I have another problem and have narrowed it down to your config.asp mods, as such:
Code:
Around line 123 find this line
------------------------------
Dim SubCount, MySubCount
------------------------------
After it add
------------------------------
Dim strLinkSpamCaptcha, strRegisterCaptcha, strPopMailCaptcha
------------------------------
Around line 388 find this line
------------------------------
strShowQuickReply = Application(strCookieURL & "STRSHOWQUICKREPLY")
------------------------------
After it add
------------------------------
strLinkSpamCaptcha = Application(strCookieURL & "STRLINKSPAMCAPTCHA")
strRegisterCaptcha = Application(strCookieURL & "STRREGISTERCAPTCHA")
strPopMailCaptcha = Application(strCookieURL & "STRPOPMAILCAPTCHA")
------------------------------
Finished config.asp
When I do them it gives me the following error:
Code:
Microsoft JET Database Engine error '80004005' 

'c:\inetpub\vhosts\mydomain\httpdocs\forums\databasefolder\database.mdb' is not a valid path. Make sure that the path name is spelled correctly and that you are connected to the server on which the file resides. 

/forums/inc_header.asp, line 115
Yes I know, I'm still using Access. blush But I've never had a problem with it.
P.S. Line 115 of my inc_header.asp is:
Code:
my_Conn.Open strConnString
<
Podge
05 December 2006, 14:17


The problem is caused by having an incorrect path to your database, not by the captcha mod.
Check that you haven't accidentally changed your database connection string when editing config.asp<
JohnC
05 December 2006, 14:23


I'm confused, how can my forums be working fine before the mod? And they have been for the last several years... question<
Podge
05 December 2006, 14:28


You must have inadvertently edited one of these lines

Code:
'## Make sure to uncomment one of the strConnString lines and edit it so that it points to where your database is!
'strConnString = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Server.MapPath("snitz_forums_2000.mdb") '## MS Access 2000 using virtual path
'strConnString = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Server.MapPath("/USERNAME/db/snitz_forums_2000.mdb") '## MS Access 2000 on Brinkster
'strConnString = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=c:\inetpub\dbroot\snitz_forums_2000.mdb" '## MS Access 2000
'strConnString = "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=" & Server.MapPath("snitz_forums_2000.mdb") '## MS Access 97 using virtual path
'strConnString = "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=" & Server.MapPath("/USERNAME/db/snitz_forums_2000.mdb") '## MS Access 97 on Brinkster
'strConnString = "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=c:\inetpub\dbroot\snitz_forums_2000.mdb" '## MS Access 97
<
JohnC
05 December 2006, 15:52


Wow, I just found out that my host just moved me off a VDS server and onto a shared server! They edited my files without telling me! angry<
AnonJr
05 December 2006, 16:10


No warning?!?!?! No notice?!??! shock<
JohnC
05 December 2006, 16:18


Not a darn thing! angry
Edit: Had to edit the word that in place of "darn" because it got caught by the bad word filter.<
Podge
05 December 2006, 16:20


Scoundrels!!!!<
Gizbit
07 December 2006, 14:20


I have the spam filter running and it works fine except when you go to add a new topic then you get an error There has been a problem! You did not enter the Anti SPAM confirmation code ! There is no place to enter this code.
Any Ideas..
Thanks

-john<
Podge
07 December 2006, 16:38


In topic.asp in the very beginning of the file after
Code:
%>
<!--#INCLUDE FILE="config.asp"-->
<%

add
Code:
'CAPTCHA
Session("Snitz.captcha") = ""

post any errors here.<
Gizbit
07 December 2006, 18:52


Podge

It didn't change anything. I still get the same error.
There has been a problem!
You did not enter the Anti SPAM confirmation code !
Go back to correct the problem.
Thanks

-john<
Podge
08 December 2006, 02:58


Where is your forum ?<
Gizbit
08 December 2006, 06:40


Podge

http://www.sayreville.com/forum/login.asp?target=default.asp

Thanks again

-john<
Podge
08 December 2006, 07:13


Do you have a test account ?<
Gizbit
08 December 2006, 10:08


Podge

Unfortunately I had to back out this mod. Things just started not working. Hopefully I will update the forum this week with the new version and try to put the spam mod back in. Thanks for the Help.
Have A Great Holiday Season

-john<
JohnC
08 December 2006, 11:03


I have yet to get this mod to work correctly but I'm not going to give up until it does! smile
1. When I added the lines to my pop_mail.asp it wiped out my Googiespell MOD, which was working great! Has anyone figured out exactly which lines of the Captcha mod are effecting the Googie Spell mod?
2. There's no Captcha Help "question" in Admin Config. Missing pop.config_help.asp mods in instructions. question
3. How exactly is the "Link Spam" prevention supposed to work? I'm not sure if mine is working.<
Podge
08 December 2006, 13:56


1. Can you post a link to a text version of your pop_mail.asp
2. Sorry. I'll fix it. 3. Logout on your forum and see if a captcha is required to post.<
JohnC
09 December 2006, 15:39


1. Emailed you. Please let me know if you got my email. Thanks! smile 2. No need to be sorry. Just whenever. Thanks! smile 3. Membership is reguired to post on my forum so I guess I'm not concerned with the "Link Spam" feature.<
Nick Feakes
16 January 2007, 10:06


Hi Podge
apologies for being dense, but in your instructions for the Mod you say "Login to the Admin Area and run the dbs file "Captcha Mod v1.0 for Snitz 3.4.05 Compatible""
How exactly do you do this? There is nothing in the Admin section of my site. Did you mean here? Nick<
Shaggy
16 January 2007, 10:14


Upload the dbs file from the zip to your forum's directory then go to your forum's admin options and login. From your admin menu, follow the link to mod setup. Select "Captcha Mod v1.0 for Snitz 3.4.05 Compatible" from the combo box and submit the form. If nothing shows up in the combo, crack open the dbs in your text editor and copy the entire comtents. From your admin menu, follow the link to the alternative mod setup. Paste the contents of the dbs into the textarea presented then submit the form.
<
Nick Feakes
16 January 2007, 22:14


Thank you Shaggy. Had to make myself Super Admin but now successful. However, I am getting the error message when someone tries to post - will try the fix from above. I may be back for more help! Nick<
lovduv
01 February 2007, 03:49


Hi,
Love the mod it works perfect!
Just wondering if the pop.config_help.asp has been posted yet?<
garyrobar
06 February 2007, 18:06


Thanks for making this mod available. It is greatly appreciated.
I am getting the following error
Send an E-MAIL Message

Microsoft VBScript runtime error '800a000d'

Type mismatch: 'Go_Result'

/forum/pop_mail.asp, line 108





'CAPTCHA Mod-------------------------------------------------------------------------------------------
if strPopMailCaptcha = 1 then
Dim strUsersInput
strUsersInput= Request.Form("captcha")
Select Case len(trim(strUsersInput))
case "4"
If Session("Snitz.captcha") <> "" then
If UCase(strUsersInput) <> UCase(Session("Snitz.captcha")) then
Go_Result "You entered the wrong Anti SPAM confirmation code !", 0
End if
End IF
case "0"
Go_Result "You did not enter the Anti SPAM confirmation code !", 0
case else
Go_Result "You entered the wrong amount of characters for the Anti SPAM confirmation code !", 0
End Select
End if
Session.Contents.Remove("Snitz.captcha")
'CAPTCHA Mod------------------------------------------------------------------------------------------- <
Podge
07 February 2007, 06:55


Can you post a link to a text version of your pop_mail.asp

i.e. post a link to pop_mail.txt<
Skyhigh
20 April 2007, 13:06


Originally posted by garyrobar
Thanks for making this mod available. It is greatly appreciated.
I am getting the following error
Send an E-MAIL Message

Microsoft VBScript runtime error '800a000d'

Type mismatch: 'Go_Result'

/forum/pop_mail.asp, line 108

I had this same issue, what I ended up doing was changing all references to Go_Result to be:

Err_Msg = Err_Msg & "You entered the wrong Anti SPAM confirmation code !"

Make sure you remove the , 0 at the end of the line as well.<
Skyhigh
20 April 2007, 13:13


Originally posted by PowerRun
I have installed it and after fixing all the buggy code I found it still doesn't work. If I enter a wrong number of characters and then enter the correct number, but all wrong letters, it'll let me send e-mail

I fixed this issue by changing this:
Code:

'CAPTCHA Mod
if strLinkSpamCaptcha = 1 then
Dim strUsersInput
strUsersInput= Request.Form("captcha")
Select Case len(trim(strUsersInput))
case "4"
		If Session("Snitz.captcha") <> "" then
			If UCase(strUsersInput) <> UCase(Session("Snitz.captcha")) then
				Go_Result "You entered the wrong Anti SPAM confirmation code !", 0
			End if
		End IF
case "0"
			Go_Result "You did not enter the Anti SPAM confirmation code !", 0
case else
			Go_Result "You entered the wrong amount of characters for the Anti SPAM confirmation code !", 0
End Select
End if
Session.Contents.Remove("Snitz.captcha")
'CAPTCHA Mod

To This
Code:

'CAPTCHA Mod
if strLinkSpamCaptcha = 1 then
Dim strUsersInput
strUsersInput= Request.Form("captcha")
Select Case len(trim(strUsersInput))
case "4"
		If Session("Snitz.captcha") <> "" then
			If UCase(strUsersInput) <> UCase(Session("Snitz.captcha")) then
				Go_Result "You entered the wrong Anti SPAM confirmation code !", 0
			Else
				Session.Contents.Remove("Snitz.captcha")
			End if
		End If
case "0"
			Go_Result "You did not enter the Anti SPAM confirmation code !", 0
case else
			Go_Result "You entered the wrong amount of characters for the Anti SPAM confirmation code !", 0
End Select
End if
'CAPTCHA Mod

The issue was that the captcha session variable is being removed as soon as the check is run. If the user then uses the "Go Back and ReEnter" link the submission is no longer checked.
This change only removes the session variable IF they correctly entered the code.<
endomorph
01 September 2007, 07:45


Just finished installing this MOD after being hit by spam bots over the last 6 weeks. After wading through the errors in the install notes, and after modifying code myself, I now have it running on the following -

1. Registration
2. Email
3. Create topic
4. Reply to topic (including quick reply)
5. Edit topic

The last 3 in the original MOD only worked if you were not logged in, whereas I have modified it to work for members who are logged in too. I have also changed it so admin and moderators do not see it (as they are trusted).
If your interested, take a look at www.timesharetalk.co.uk

Demo account Login: demo
Password: demo

If anyone would like help in doing the same, drop me a line and I'll be only too happy.



<
Podge
01 September 2007, 13:39


A captcha won't stop logged in users who want to spam your forum.<
endomorph
02 September 2007, 03:44


No, but nothing will. That has to be done manually. I have never had a problem really with manual SPAM, only bots<
Podge
02 September 2007, 13:36


I don't see the point in having a captcha for logged in users then.<
endomorph
13 September 2007, 16:31


To stop SPAM bots<
AnonJr
13 September 2007, 17:12


But if a spam bot isn't a registered user, they can't register/post anyway... and if they are a registered user, they've already gotten past the CAPTCHA, which would indicate a bigger problem.<
Podge
14 September 2007, 07:58


To stop SPAM bots
Spam bots won't be logged in and have to do a HTTP POST directly to post_info.asp. Having a captcha where you've included them e.g. quick reply, is just making your users enter the captcha and not preventing bots.<
earlabs
22 September 2007, 12:06


hi Podge

am in the process of implementing the captcha, which would be great if it worked... A snag I found. In pop_mail.asp you tell me to replace
if YEmail <> "" then Response.Write(YEmail)
et cetera
with something else. However: in my pop_mail.asp (version 3.4.06) there is no such line . There are only if YEmail = "" lines. So, what do I do?
Cheers
JS<
Podge
25 September 2007, 08:27


The captcha mod was for version 3.4.05.
For accessability reasons I don't intend to update it. Please use the Gatekeeper mod instead.<
earlabs
25 September 2007, 16:16


Well, that's interesting news.dead Perhaps you should edit your original post accordingly?<
Podge
25 September 2007, 18:15


The download page at SnitzBitz has shown that for some time but I have updated the original topic.
They are more or less the same changes as applied to pop_mail.asp for the Gatekeeper mod. If I get a chance I will post a fix tomorrow.<
earlabs
26 September 2007, 05:56


You're a darling.<
© 2000-2021 Snitz™ Communications