phpBB3 CAPTCHA Cracked
Another milestone clocked up for spammers across the world as the phpBB3 GD CAPTCHA has been officially cracked, causing an explosion of extra spam registrations and posts that most phpBB3 owners haven’t seen thus far. Unfortunately it was only a matter of time before the spammers’ automated tools were tailored to be able to read the phpBB3 CAPTCHA; however if you are keeping up with phpBB development you would have seen some interesting improvements going into trunk for 3.0.5 that hopefully will help with this spammer plague that we all seem to have come down with.
In another spammer experiment I’ve added another phpBB3 board with the GD CAPTCHA enabled on its default setting to the rotation script that governs which honeypot the spammers get sent to. The CAPTCHA settings are the same ones that are distributed with the phpBB (3.0.4) download package (GD set to on, foreground noise set to off, and X and Y noise set to 25).
Of course, I’d love nothing more than to present all of you with the opportunity to use bbProtection however we aren’t quite at that stage yet. However, now would be a great time to lend us a hand by contributing to our ongoing “bbProtection Needs You” campaign; more information available on that over at the bbProtection Blog 
.
