Hi I've some ideas and some time, so I'll try to make something about that (provide a patch).
About the general way we handle that: What do you think about creating a file on master.php.net that is responsible for handling such spam challenges. Things would work like that: add-note.php : asks spam-protection.php on master.php for a spam protection challenge. (using posttohost) spam-protection.php: generates a spam protection challenge(A), the answer(B), and a unique-id(C). (A) and (C) are returned to add-note.php while (B) and (C) are stored and timed on a database. user-note.php: makes the checks. Any comments ? -- Etienne Kneuss http://www.colder.ch/ [EMAIL PROTECTED]