CAPTCHA CERTIFICATION CORRECT ALL TIMES

Could you put the internet url when you put the examples, to check it. I test these exaples and work perfectly.

This line in validate.asp or validate .php (if ($code==$_SESSION[code])) or (if code=session(code) then)make imposible validate the number if it isnt correct.

Waiting your answer.

The ISP I use require the form mail to include this line <form method='post' action='http://cadfhs.org.uk/cgi-bin/FormMail.pl'> when I includes the icaptcha <form action=save.php method=post name=validate> it seems to override the ISP requirements.

In the file save.php it as a line //Here put the php code to menage your form info;

I assume that this is where the ISP requirement should go, but what would be the code for my requirements?

You use a perl lenguaje to send email. This method of send email isn't compatible whith icaptcha. Icaptcha work with php methods to send email, but not with perl methods.

I am sorry very much.

I am trying to use the icaptcha php script in my website. But no matter what I try, I get WRONG CODE every time I press SEND. Can you help me?

Kevin

The page in question starts at http://roadrunner.comuv.com/bumpersnickersaddNEW2.php and the icaptcha code is implimented in the next page.

Kevin

Hello Kevin:

Hola Toni.

No se porque no te puede estar funcionando el captcha. Prueba a ejecutar el fichero icaptcha.php o icaptcha.asp directamente desde el explorador a ver si te da un resultado v=45234... con un monton de numeros y letras aleatorios, eso significaría que te esta funcionando esa parte y podriamos localizar el problema. Con respecto a lo de copiar yo si lo puedo hacer perfectamente desde el programa configutrator.exe.

Un saludo.

Whew...found your app, and love it but for some reason the .asp one will NOT run on my workstation. I have tried both the Config via the download to create the files, and even here on the website itself.

All looks okay, but the Flash never shows up? ie the box is there, but no contents show...

Using XPPro/SP3, IE 7 and lastest Flash player too...

Can you help here? I can NOT figure out what to try next...and can only use the .asp one...

???

Jim
PS and yes, the ones that you use here on your own site work fine for me...

Hello,

I have downloaded your captcha tool and successefully implemented in our web site:

http://www.yvettecomeau.com/guestbook/sign.asp

However we are still getting spammed in our guestbook. I think it's just the captacha might be not elaborate enough. A bot can submit all combinations without being redirected to another results page.

Is it possible to modify the security code, like make it two seperate groups of say 4 letters?

This way bots will have less chance of cracking the captcha.

Thanks for your reply.

Renaud

You have two steps in the page sign.asp. Probably the captcha are protecting step1 and it have to protect step2. Send me the page sign.asp and i reply you the correct code. Send my to support@icaptcha.com

In other hand you NOT need put this text in your page:

Internet Captcha Version 1.0
This Software is Freeware.
www.icaptcha.com
(c) 2008 icaptcha.com. All rights reserved

you can delete it.

Thank you.

Hola David

A ver si puedes ayudarme con mi icaptcha. De momento estoy intentando que se visualice (ya luego pasaremos a validar el código)

Te paso la URL:

http://cadistas1910.awardspace.com/modules.php?name=GbookMX&op=Add_Sign

Se muestra el objeto flash, con el fondo escogido...pero luego no muestra código ninguno!

He probado a ejecutar el icaptcha.php en el navegador, y me saca el chorizo ese de código

A ver si puedes echarme una mano por favor

Gracias!!!

El fichero icaptcha.php tiene que funcionar desde esta direccion y no lo encuentra:

http://cadistas1910.awardspace.com/icaptcha.php

Un saludo.

Hello,

I would like to use the asp Captcha for an aspx form.

Any help will be greatly appreciated

Thank you in advance

I think you havent any problem to implement icaptcha in aspx form, you can call to javascript code anyway. Try it and if you have any problem send me the code and we can be adapt to asp.net. You can use support@icaptcha.com.

Hello, I have configures icaptcha and it works fine in Mozilla, Google chrome but not in Opera, Safari and IE8. Can you help? I am in php windos xp. Thanks.

Ok, i havent tested these browsers. I am going to install to test it.

I test Safary, Opera and IE8 and work perfectly in all with default settings. Probably you have same html error which make these browser don´t work well. Tell us your web page and i could check it.

I dowloaded all files.  The PHP demo returns "Correct" no matter what numbers I put into the text box!  I also tried creating my own Captcha and I am seeing the same thing; i.e., always "Correct".  

Follow-Up:

URL: www.leisuresystemsinc.com/captcha_flash/PHP/example.html

Also, the link in safe.php returns to the icaptcha site and not to the site where the example is located!!!

I test again example.php and in my server work fine. Yo have same problem in validate.php. Check your sintax are like this:

<?
session_start();
$code=$HTTP_POST_VARS["code"];
if (($code==$_SESSION["code"]) and ($code<>"")) {
 echo "ok=True";
 $_SESSION["code"]="ok";
} else {
 echo  "ok=False";
 $_SESSION["code"]="";
}
?>

May by you have a very old version of captcha with same bug. I the code of validate.php is like before,

I am using iCaptcha 1.2 .  What is the "old captcha" that you are talking about?

you are using a correct versión, but your server have same config problem with session variables.

This line always is true in your server:

if (($code==$_SESSION["code"]) and ($code<>"")) {

this is because SESSION code arent saved well.

im sorry.

O código original da página inicial do icaptcha possui um formulário que especifica a página save como action; este formulário não tem um botão submit. Desta forma, teclar ENTER sempre leva à página save, porém sem conteúdo útil. Para enviar o formulário corretamente, com a validação do captcha, só clicando no botão. Achei um desperdício ter que usar o mouse. Então fiz as seguintes alterações:

1. Não especifiquei o action no formulário;
2. Especifiquei a função checking em onsubmit do formulário;
3. Transformei o botão SEND em tipo submit;
4. Removi o onclick do botão SEND;
5. Acrescentei a linha return false ao final da função checking;
6. Acrescentei a linha document.validate.action=save.asp (ou .php) no início da função send;

Funcionou perfeitamente, tanto clicando no botão SEND quanto teclando ENTER.

A versão é 1.3.

A propósito, há como mudar o nome da função send? Eu mudei e o código parou de funcionar... Outra coisa que eu queria mudar é a variável SESSION usada na verificação, o nome code é muito comum, se mudar dá certo?

Probably your changes are well and are better than mine. Could you send the page when your use your code because i wold like to check. The variable code can be changed by other you want.


Sincerilly

Sure, I'll send the code as soon as I finish it.

Como vi que você entende bem outros idiomas, vou continuar com português, melhor que escrever em inglês talvez com sintaxe ruim.

Pelo que percebi, o funcionamento do icaptcha.swf depende da existência de uma função javascript com nome send na mesma página do formulário e de uma página validate.asp (ou .php) para funcionar corretamente. A função send faz o envio do formulário após o tratamento pelo FLASH. E a página validate faz a verificação do captcha digitado com o armazenado na váriável SESSION e exibido pelo FLASH.

Eu não entendi bem como funciona a icaptcha.asp (ou .php), pois não domino a iteração entre o ASP (ou PHP) com FLASH (acho que está na hora de aprender).

Eu fiz várias alterações no código, algumas estéticas (como nomes de funções, variáveis e arquivos) e outras para deixar o código do meu jeito (eu costumo usar ASP com Javascript em vez de Basic, então diferencio identação, letras maiúsculas etc).

A principal alteração foi em relação ao formulário, para que aceitasse a tecla ENTER e não apenas o clique do mouse no botão do formulário para enviar.

A seguir, o código das páginas. Gostaria de saber se você cederia o código fonte do FLASH. Grato.

Ah! Não poderia esquecer: parabéns, seu captcha funciona muito bem, gostei mesmo.

Como ficou a HTML com formulário (renomeei para ASP):

<%
'Alterações feitas:
'1 - Apenas novos nomes
'    a - Função again renomeada para GeraNovoCaptcha; consequência: referência no link do formulário alterada
'    b - Função checking renomeada para VerificaCaptcha; consequência: referência no atributo onclick do botão SEND alterada (desnecessária, pois era tipo button e passou a ser tipo submit)
'    c - Formulário validate renomeado para ValidaCaptcha; consequências: referências nas funções VerificaCaptcha e send alteradas
'    d - Botão send renomeado para OK
'    e - Página save.asp renomeada para verificado.asp; consequência: atributo action do formulário alterado (o resultado pode ser qualqur página)
'2 - Formulário aceitando ENTER para enviar e não apenas clicando no botão como era antes
'    a - Formulário sem especificar atributo action
'    b - Formulário com atributo onsubmit chamando função VerificaCaptcha
'    c - Função VerificaCaptcha terminada com linha return false; para evitar erro 405 (sai da função e prossegue pelo Flash)
'    d - Função send iniciada com linha document.ValidaCaptcha.action=save.asp; para especificar a ação do formulário
'    e - Botão OK tipo button passou a ser do tipo submit e ficou sem o atributo onclick
'Observação: ao tentar mudar o nome da função send, o formulário não funcionou; o mesmo acontece se tentar renomear validate.asp
%>
<head>
<script language=JavaScript>
<!
function GeraNovoCaptcha()
    {
    document.icaptcha.SetVariable(again,OK);
    }
function VerificaCaptcha()
    {
    document.icaptcha.SetVariable(code,document.ValidaCaptcha.Captcha.value);
    return false;
    }
function send()
    {
    document.ValidaCaptcha.action=verificado.asp;
    document.ValidaCaptcha.submit();
    }
//>
</script>
</head>
<body>
<form method=post name=ValidaCaptcha onsubmit=return VerificaCaptcha()>

<! Here put form's imputs to send //>

<object classid=clsid:d27cdb6e-ae6d-11cf-96b8-444553540000 codebase=http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=8,0,0,0 width=250 height=70 id=icaptcha>
<param name=FlashVars value=ok=OK!&wrong=Código Incorreto&c1=2&c2=2&c3=9&c4=2&c5=2&mar=10&gro=30&vel=90&vim=25&leng=asp&color=16711680>
<param name=movie value=icaptcha.swf />
<param name=bgcolor value=#7FFF7F />
<param name=scale value=exactfit />
<embed src=icaptcha.swf FlashVars=ok=OK!&wrong=Código Incorreto&c1=2&c2=2&c3=9&c4=2&c5=2&mar=10&gro=30&vel=90&vim=25&leng=asp&color=16711680 scale=exactfit bgcolor=#7FFF7F width=250 height=70 name=icaptcha type=application/x-shockwave-flash pluginspage=http://www.macromedia.com/go/getflashplayer />
</object>
<a onClick=GeraNovoCaptcha() style=cursor:pointer><u><font color=#0000FF>Gerar novo captcha</font></u></a>
<input type=text name=Captcha size=7 maxlength=5 value= />
<input type=submit name=OK value=OK>
</form>
</body>

As outras páginas:

icaptcha.asp:

• apenas alterei a linha da variável SESSION para Session(Captcha)=code

Em consequência, as outras páginas foram alteradas:

validate.asp

<%
'O nome da variável SESSION code foi alterado para Captcha, assim como em icaptcha.asp e verificado.asp

code = Request.Form(code)
If ((code = Session(Captcha)) And (code <> )) Then
    Response.Write(ok=True)
    Session(Captcha)=ok
Else
    Response.Write(ok=False)
    Session(Captcha)=
End If
%>

save.asp (renomeada para verificado.asp)

O nome desta página pode ser um parâmetro recebido pela index.asp e colocada como atributo action do formulário dinamicamente. Desta forma, uma página X pode redirecionar para o index.asp do icaptcha (a página com formulário captcha), que fará a validação do captcha e redirecionará de volta para a página X.

<%
'O nome da variável SESSION code foi alterado para Captcha, assim como em icaptcha.asp e validate.asp

If Session(Captcha)=ok Then
    Session(Captcha)=0
    Response.Write OK
    %>
    Configuração:
    Movement speed 90 (todos)
    BG img speed 25 (mix)
    Distroção 25
    Distância 50
    Spin 75
    Ruidos 15
    <%
Else
    Response.Write Ñ OK!!!
End If
%>

Só para terminar:

Eu ainda estou montando uma página que deverá depender de uma validação por captcha, para então depois publicar em site na internet. Por enquanto, está só em testes no meu micro.

I cannot get the captcha work.

I've downloaded and installed the example.

The numbers of the security are NOT visible, only the background of the security code is visible.

I'm using PHP 5.0.2 and Apache 2.0 on Windows XP.

Try write in you web browser icaptcha.php in the same directory of the web page with flash captcha. ¿do you see same number or nothing?

Hello

Thank you for all your work.

I copied the code from your simulation, I installed on my local server, so far no problem with the control code works well.
When I transfer these files on the server of a website it does not work normally: no matter the code entry, it is always true ...
serialrider.ch / livre_or.php

Would you give me a clue?

Thank you again.
(Icaptcha v1.2)

This line is true ($code==$_SESSION[code]) in validate.php and would be false if the numbers are wrong. I don´t know because you server do this. Sorry.

Hello,

I have downloaded your captcha tool and successefully implemented in my web site:

http://www.musicusconcentus.com/default.asp?modulo=registrazione

In the last days I received a lot of spam in my newsletter.

There is someone else with the same problem?

Thank you, Musicus

ERRATA CORRIDGE.

Correct link is:

http://www.musicusconcentus.com/default.asp?modulo=registrazione

In validate.asp, in second line, is your code like this?

if ((code=session(code)) and (code<>)) then

Waiting your reply, sincerelly Daypo.

Yes, my validate.asp code is:

<%
code=Request.Form(code)
if ((code=session(code)) and (code<>)) then
    response.write(ok=True)
    session(code)=ok
else
    response.write(ok=False)
    session(code)=
end if
%>

Thank you, Musicus

If your send mail code is into if session(code)=ok then i don´t know how is 

possible you had spam problems because variable session code is in server side and 

cant be managed by clients. Is it posible that same people write a lot of security 

codes manually?. How many time was between one mail and another.?

Maybe I've found the error.

In file save.asp I wrote:

<%
if session(code)=ok then
session(code)=
end if
%>
Asp code to menage form info

Now I've correct it with:

<%
if session(code)=ok then
session(code)=
%>
Asp code to menage form info
<%
end if
%>

Is it right?

Thank you again, Musicus

Yes, that was the problem, now you have it right. I am glad that is resolved, sincerely David Arroni.

Ok, thank you very much David!

Best, Musicus

I would like to put the icaptcha files in another directory what should I change to make it work?

Also, if the user enters the wrong code you should generate a new code automatically then a bot cannot keep guessing for the same code.

Sorry de files have to be in same directory.

When you enter wrong code the sistem generate other code, you have to click over the captcha or implement the link (generate other code) to click it.

Greetings.

I am having very similar problems.  If I use .asp (either generator driven or example files downloaded from site) the numbers are not seen.  If I use .php  (either generator driven or example files downloaded from site) I get a Wrong Code regardless what is entered.  All different link examples have there own folder with all files include in that folder.  see screen shots:

http://www.mastercraft-kb.com/image1.jpg - Generator driven files

http://www.mastercraft-kb.com/image2.jpg - Example files downloaded from site (no changes made)

I have been able to use php in my website in the past.  Here are the links:

.asp files downloaded directly from site and uploaded to my server. (no changes made)

http://www.mastercraft-kb.com/icaptchaV1_3/ASP/example.html - blank numbers

.php files downloaded directly from site and uploaded to my server. (no changes made)

http://www.mastercraft-kb.com/icaptchaV1_3/PHP/example.html - always Wrong Code

.asp files created from generator

http://www.mastercraft-kb.com/contactform/icaptchaV1_3/ASP/example.html - blank numbers

.php files created from generator

http://www.mastercraft-kb.com/contactform/icaptchaV1_3/PHP/example.html - always Wrong Code

I really like this captcha but can't spend anymore time trying to figure it out.  Any help would be greatly appreciated.

Also my website is being hosted by Godaddy and my ISP is Verizon...If that makes a difference.

First, your server where you are hosted doesn't admit asp.

Second, you have to try one change. In -Validate.php-, change 

$code=$HTTP_POST_VARS[code];

by this other code $code=$_POST[code];

In some servers whith version php5 need this change.

Thank you for your response.  It worked great. Now I'm trying to incoroporate it into my contact form and get it to send the results to my email:

http://www.mastercraft-kb.com/contactform/contact_us2.html

the old .php which sent the results is:

http://www.mastercraft-kb.com/contactform/contact_us2php.html (I saved it as a html just so you could view it.  Original php is /contact_us2.php.

As you can see I'm not great with understanding php so any help is appreciated.

I think you have to do next:

First: rename contact_us2php.html by save.php

Second: Botton <?PHP write:

session_start();

Third: Botton # Email to Form Owner write:

if ($_SESSION[code]==ok) {

$_SESSION[code]=;

Fourth: Before # Include message in the success page and dump it to the browser write:

}

I think, with this you are protected.

Greetings from David

Thanks David, Worked perfect again.  One last thing...I would like to redirect user after form submission to contact_thankyou.html.  Thank you in advance.

You can delete all text botton:

mail($emailTo, $emailSubject, $emailBody, $emailHeader);

and replace by:

header(DestinationPage.php);

Where destination page is the page where you want to go.

Greetings from David.

Hey David, 

I'm back again...I love the captcha but I am having a difficult time with one last thing.  Here are links to my 2 forms and also the save.php files (I have copied them to a save.txt so you can view them from your browser).

Referal Form:

http://www.mastercraftremodeling.com/referralform/referral_program.html

http://www.mastercraft-kb.com/referralform/save.txt

Contact Form:

http://www.mastercraftremodeling.com/contactform/contact_us.html

http://www.mastercraftremodeling.com/contactform/save.txt

If I hit send the form is sent to my email regardless if the captcha is correct or wrong.  So I am still getting flooded with spam (1000's a day).  If you try it you will see it also is directed to a thankyou page even if the captcha is wrong.  Thank you in advance once again.

Joe

First:

In your forms the send button is type=submit and in icaptcha is type=button.

Second:

Your save.php referralform no is protected:

you need start the save.php with this: (before <!DOCTYPE html PUBLIC...)

<?php

session_start();

?>

And you need replace:

mail($emailadd, $subject, $text, 'From: '.$emailadd.'');

By:

if ($_SESSION[code]==ok) {

$_SESSION[code]=;

mail($emailadd, $subject, $text, 'From: '.$emailadd.'');

}

Sincerely, David.

David,

Everything works great.  Thank you for all your help.