|
Posted by tom pester on 09/08/05 02:17
Hi Phil,
> On the other hand, extracting two numbers from the HTML source of a
> web page and adding them together is ridiculously easy. A combination
> of file_get_contents() and simple string matching is all you need.
My point is that there is no real difference between the turing numbers and
the addition other than turing number are more difficult to read (fo now).
> Well I suggest you start by learning how to write secure code before
> you publish all this stuff. You're really asking for trouble.
I don't think the script will get abused easily.
I'll monitor the script and see if it gets abused though.
>> Can you think of another way to circumvent the test other than to
>> parse the file and let a computer to the addition?
> Do I need to think of another way? It would take me 5 minutes to write
> a script to crack your "security". In another 5 minutes I could have
> sent hundreds of emails from your site.
Can you take these 5 mintues to come up with a script that cracks the security
without parsing the numbers and do the addition?
Thx for your time!
Cheers,
Tom Pester
Navigation:
[Reply to this message]
|