[wp-testers] WordPress 2.0.1 Remote DoS Exploit?
Roy Schestowitz
wp-lowtraffic at schestowitz.com
Mon Mar 13 05:03:39 GMT 2006
___/ On Sun 12 Mar 2006 19:53:07 GMT, [ Gregory Wild-Smith ] wrote : \___
> Mike Little wrote:
>> It is usually not usability but *accessibility* which becomes a
>> problem with captchas.
>>
>> That is, if the capcha is an image based one, then people with vision
>> problems, including but not limited to the blind, cannot use the
>> system.
Give the visitor a simple math riddle instead. Or take the approach of Eric
Meyer, who *does* understand usability, and re-use Gatekeeper (a WordPress
plugin) to pose a trivial question.
Also see: http://www.trenholm.co.uk/?p=113
> Also, aside from the more obvious problems, most capucha's can be
> defeated pretty easily if you actually want to devote some cpu cycles
> to it. They really only protect from really basic scripting attacks.
The following is a rather popular proof-of-contention page:
http://sam.zoy.org/pwntcha/
More information about the wp-testers
mailing list