{"id":230,"date":"2012-05-24T07:42:59","date_gmt":"2012-05-24T14:42:59","guid":{"rendered":"http:\/\/shanelabs.com\/blog\/?p=230"},"modified":"2012-05-24T07:42:59","modified_gmt":"2012-05-24T14:42:59","slug":"is-qaptcha-secure","status":"publish","type":"post","link":"https:\/\/shanelabs.com\/blog\/2012\/05\/24\/is-qaptcha-secure\/","title":{"rendered":"Is Qaptcha secure?"},"content":{"rendered":"<p>We all hate captchas, so when I saw a new captcha alternative called Qaptcha I was slightly intrigued. Instead of typing in mangled words, you simply slide a slider bar to prove you are human. How simple!<\/p>\n<p>See the <a href=\"http:\/\/www.myjqueryplugins.com\/QapTcha\/demo\" target=\"_blank\">demo here<\/a>.<\/p>\n<p>But the more I looked at it, the more I thought about how it could be easily faked. All it&#8217;s doing is requiring a simple action on the client-side which would just call some ajax or something to set a cookie that you&#8217;re human. So why can&#8217;t a bot just call that javascript?<\/p>\n<p>Turns out this is not secure at all. I<a href=\"http:\/\/stackoverflow.com\/questions\/10609201\/qaptcha-is-it-effective\" target=\"_blank\"> posted on stack overflow<\/a>\u00a0and someone responded with a hack within a few minutes. Pretty impressive, but also pretty disappointing that it doesn&#8217;t accomplish what it&#8217;s supposed to.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We all hate captchas, so when I saw a new captcha alternative called Qaptcha I was slightly intrigued. Instead of typing in mangled words, you simply slide a slider bar to prove you are human. How simple! See the demo here. But the more I looked at it, the more I thought about how it [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[3,4],"tags":[],"class_list":["post-230","post","type-post","status-publish","format-standard","hentry","category-software","category-web"],"_links":{"self":[{"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/posts\/230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/comments?post=230"}],"version-history":[{"count":2,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/posts\/230\/revisions"}],"predecessor-version":[{"id":232,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/posts\/230\/revisions\/232"}],"wp:attachment":[{"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/media?parent=230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/categories?post=230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/shanelabs.com\/blog\/wp-json\/wp\/v2\/tags?post=230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}