Just a quick post to announce the release of the latest version of CodeBetter.CommunityServerExtensions which includes some bugfixes and the much anticipated CAPTCHA validation on the server via Ajax stuff.
I knew it was time when I started getting comments like this to the original announcement:
sorry brendan, using a cookie to store the captcha code sucks.
and "probably not something that a spammer would be motivated to
do.." would maybe be true of you had written your own proprietary
system, but this being the best available captcha control for cs 2007
... come on.
jacob
The previous solution did rely on the CAPTCHA text being stored in a cookie, which was an easy way to enable the validation at the browser. I had always maintained that a spammer wouldn't be motivated to write the code to break the CAPTCHA in this implementation, but it was breakable. Jacob was right about the sucking part, but it *did* work pretty well to kill comment spam. The new version will allow you to use AJAX to validate the CAPTCHA on the server. It's a much better solution.
There are some other bugfixes too, including support for forum posts as well.
You can get the dll and source code here *.
* Latest Version - 1.1 December 5, 2007