a solution is committed to aiki, but still having some security issues, pushing
to 0.9 and will release sites wide once the security bug is solved.
actually many recaptcha systems suffer from the same thing because you need to
create a cookie or session before validation and it's a bit tricky to store the
form data and the captcha information before the validation happen so most
systems store the form data in the cookie which is dangerous and I don't want
to do in aiki.. need to figure out a better way, maybe by creating temp table
to store those data then move to the real table
** Changed in: aikiframework
Milestone: 0.8 => 0.9
--
You received this bug notification because you are a member of Open Font
Library Developers, which is subscribed to Open Font Library.
https://bugs.launchpad.net/bugs/684534
Title:
Prevent Spam Bot Registrants
Status in Aiki Framework:
Fix Committed
Status in Open Font Library:
Confirmed
Status in Scale Journal:
Confirmed
Bug description:
Native reCAPTCHA support might go a long way in solving this issue,
but aiki installations are being successfully targeted by spam bots.
There should to be preventative measures available to developers to
help deal with this & possibly built in function calls in forms (i.e.
:unique).
_______________________________________________
Mailing list: https://launchpad.net/~aikiframework.admins
Post to : [email protected]
Unsubscribe : https://launchpad.net/~aikiframework.admins
More help : https://help.launchpad.net/ListHelp
