Solved

Random code in a graphic for verification purposes on a webpage

Posted on 2007-03-20
8
786 Views
Last Modified: 2013-12-25
I need to implement the a code verification system that webpages have to ensure "human" input. I know that a series of numbers and letters are randomly generated an stored in a gif file, then the user interprets the garbled code and enters it into a text box.  Does anyone have any experience with this?  How do I create the random code in the graphic?

Thanks
0
Comment
Question by:onemorecoke
8 Comments
 
LVL 1

Accepted Solution

by:
TylerP earned 500 total points
ID: 18763476
You could create about 10 deferent Gifs in photoshop and just randomly display the image so the user can read and enter the correct characters.
I've used asp.net to generate image files before but this solution might be simpler for what is needed.
 
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18763504
I was thinking that but what if a hacker figures all 10 codes and just tries them all in their code?  I am wondering if I am over-thinking this.
0
 
LVL 1

Expert Comment

by:TylerP
ID: 18763868
Its always good to keep security in mind. My thought is that this random image generation main purpose was to keep automated systems for hacking to be able to read the text. By just using any image with text only readable by the human eye would keep this type of hacking from being effective because you would still need the hacker to go to the website and read each image with his own eyes. Then also keep from displaying all the images on the same day. It just depends on how much time you want to spend on this part of development and what value you see in it and most importantly what value a hacker might see in it.
0
Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

 
LVL 26

Expert Comment

by:David Brugge
ID: 18773756
> I was thinking that but what if a hacker figures all 10 codes and just tries them all in their code?  I am wondering if I am over-thinking this.

This is easy to test for. If a user mistypes an image that you are displaying, the odds are increadibly small that by accident he typed in the exact same code as on another image. In your scenereo, the hack would test with one code that had been known to be good, then use another. It would be save to surmise that anyone who enters an otherwise good code as a response to another being shown is up to no good and can be blocked for a period of time.
For example Todays code is ABC, yesterdays was XYZ. If you show a gif of ABC and get a response of XYZ you know that was not a simple mistake.

David B
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18774507
That is true, but it would still be nice to find an activex control that would produce a gif automatically each time.  There has to be something like that out there....
0
 
LVL 2

Expert Comment

by:khoama
ID: 18782460
I suggest that you generate image at runtime using some library (GD for PHP for example) at runtime and display to the user. I'll send you the code in PHP if needed.
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18783643
khoama,

I dont use PFP and would not know what to do with it!  Thank you anyway.

0
 
LVL 16

Expert Comment

by:kiranvj
ID: 18865109
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
contractual requirements for app hosting 3 103
Cordova Camera plugin fails 2 117
tag title an image 13 30
show form submit button based on jquery sum 5 28
Boost your ability to deliver ambitious and competitive web apps by choosing the right JavaScript framework to best suit your project’s needs.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
Any person in technology especially those working for big companies should at least know about the basics of web accessibility. Believe it or not there are even laws in place that require businesses to provide such means for the disabled and aging p…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question