Tuesday, February 26, 2008
Google's Captcha broken
This is a really interesting analysis of the methodology of breaking Google's captcha for account creation. What I don't understand about all these hacking attempts is that all Google needs to do is change their captcha even slightly and it will most likely break the attempts to hack it. It is a big chicken/egg problem. If they want to try out my Kaptcha project, they are welcome to do it. Personally, I think their captcha is pretty weak. Although, I do like the fact that they encode a timestamp in the creation of the captcha so that it is only valid for a short amount of time. I might add that feature to Kaptcha and an option for people who want it.