Solved

Random code in a graphic for verification purposes on a webpage

Posted on 2007-03-20
8
819 Views
Last Modified: 2013-12-25
I need to implement the a code verification system that webpages have to ensure "human" input. I know that a series of numbers and letters are randomly generated an stored in a gif file, then the user interprets the garbled code and enters it into a text box.  Does anyone have any experience with this?  How do I create the random code in the graphic?

Thanks
0
Comment
Question by:onemorecoke
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 1

Accepted Solution

by:
TylerP earned 500 total points
ID: 18763476
You could create about 10 deferent Gifs in photoshop and just randomly display the image so the user can read and enter the correct characters.
I've used asp.net to generate image files before but this solution might be simpler for what is needed.
 
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18763504
I was thinking that but what if a hacker figures all 10 codes and just tries them all in their code?  I am wondering if I am over-thinking this.
0
 
LVL 1

Expert Comment

by:TylerP
ID: 18763868
Its always good to keep security in mind. My thought is that this random image generation main purpose was to keep automated systems for hacking to be able to read the text. By just using any image with text only readable by the human eye would keep this type of hacking from being effective because you would still need the hacker to go to the website and read each image with his own eyes. Then also keep from displaying all the images on the same day. It just depends on how much time you want to spend on this part of development and what value you see in it and most importantly what value a hacker might see in it.
0
Don't Cry: How Liquid Web is Ensuring Security

WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.

 
LVL 26

Expert Comment

by:David Brugge
ID: 18773756
> I was thinking that but what if a hacker figures all 10 codes and just tries them all in their code?  I am wondering if I am over-thinking this.

This is easy to test for. If a user mistypes an image that you are displaying, the odds are increadibly small that by accident he typed in the exact same code as on another image. In your scenereo, the hack would test with one code that had been known to be good, then use another. It would be save to surmise that anyone who enters an otherwise good code as a response to another being shown is up to no good and can be blocked for a period of time.
For example Todays code is ABC, yesterdays was XYZ. If you show a gif of ABC and get a response of XYZ you know that was not a simple mistake.

David B
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18774507
That is true, but it would still be nice to find an activex control that would produce a gif automatically each time.  There has to be something like that out there....
0
 
LVL 2

Expert Comment

by:khoama
ID: 18782460
I suggest that you generate image at runtime using some library (GD for PHP for example) at runtime and display to the user. I'll send you the code in PHP if needed.
0
 
LVL 3

Author Comment

by:onemorecoke
ID: 18783643
khoama,

I dont use PFP and would not know what to do with it!  Thank you anyway.

0

Featured Post

Learn by Doing. Anytime. Anywhere.

Do you like to learn by doing?
Our labs and exercises give you the chance to do just that: Learn by performing actions on real environments.

Hands-on, scenario-based labs give you experience on real environments provided by us so you don't have to worry about breaking anything.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Today, the web development industry is booming, and many people consider it to be their vocation. The question you may be asking yourself is – how do I become a web developer?
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
This tutorial demonstrates how to identify and create boundary or building outlines in Google Maps. In this example, I outline the boundaries of an enclosed skatepark within a community park.  Login to your Google Account, then  Google for "Google M…
This video teaches users how to migrate an existing Wordpress website to a new domain.

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question