PHP Captcha without session
Posted
by Anton N
on Stack Overflow
See other posts from Stack Overflow
or by Anton N
Published on 2009-09-23T12:32:31Z
Indexed on
2010/03/27
0:43 UTC
Read the original article
Hit count: 233
Ok, here is an issue: in the project i'm working on, we can't rely on server-side sessions for any functionality.
The problem is that common captcha solutions from preventing robotic submits require session to store the string to match captcha against.
The question is - is there any way to solve the problem without using sessions? What comes to my mind - is serving hidden form field, containing some hash, along with captcha input field, so that server then can match these two values together. But how can we make this method secure, so that it couldn't be used to break captcha easily.
© Stack Overflow or respective owner