Opened 9 years ago
Closed 7 years ago
#12054 closed enhancement (fixed)
patch to add QuestionRegisterPlugin-like functionality
| Reported by: | Dave Love | Owned by: | Steffen Hoffmann |
|---|---|---|---|
| Priority: | normal | Component: | AccountManagerPlugin |
| Severity: | normal | Keywords: | registration antirobot |
| Cc: | Jun Omae, Ryan J Ollos, Dirk Stöcker | Trac Release: | 0.11 |
Description
I've had spam accounts created, despite using the AcctManager BotTrapCheck. (I wanted something like QuestionRegisterPlugin, but that no longer works.) I hacked up this change to the current AccountManager to ask a project-specific question (e.g. "What's the command to ..."), which should make the BotTrapCheck more robust when it's appropriate.
Attachments (3)
Change History (14)
Changed 9 years ago by
| Attachment: | acct_mgr-question.patch added |
|---|
comment:1 Changed 9 years ago by
Thanks for you contribution, and especially the explicit sign-off to this plugin's license.
comment:3 Changed 9 years ago by
Consequently QuestionRegisterPlugin has been marked as deprecated now.
Changed 9 years ago by
| Attachment: | 20141110_acct-mgr_BotTrapCheck_dev.png added |
|---|
registration form with example for custom BotTracCheck description text
Changed 9 years ago by
| Attachment: | 20141110_acct-mgr_BotTrapCheck_admin-cfg_dev.png added |
|---|
option documentation as available in configuration admin section for acct_mgr-0.5
comment:4 Changed 9 years ago by
| Cc: | Jun Omae Ryan J Ollos Dirk Stöcker added; anonymous removed |
|---|---|
| Keywords: | registration antirobot added |
| Status: | new → accepted |
| Trac Release: | 0.12 → 0.11 |
Better luck with SPAM fighting to all of us.
comment:5 Changed 9 years ago by
With the above question you have probably a 80% chance to also reject any valid user.
And are you sure the question is right. Nobody knows it :-)
comment:6 follow-up: 7 Changed 9 years ago by
Hm, I bet, the majority of trac admins will not copy this example but take it for what it was meant: An example question you shouldn't use. Or: Better find an individual question yourself. But maybe I'm assuming too much.? ;-)
comment:7 Changed 9 years ago by
Replying to hasienda:
Hm, I bet, the majority of trac admins will not copy this example but take it for what it was meant: An example question you shouldn't use.
Yeah I took it for just a joke. Either way, if the admin hears many complaints to a poor question I'm sure they will change the question.
comment:8 follow-up: 9 Changed 9 years ago by
One small thing regarding the configuration wizard. Looking at [14245] I can see that I should leave reg_basic_question blank if I want the standard prompt, but that's not obvious in the configuration wizard. Maybe it would be useful to have a Specify custom question checkbox that enables the reg_basic_question field when selected.
comment:9 Changed 9 years ago by
Replying to rjollos:
One small thing regarding the configuration wizard. Looking at [14245] I can see that I should leave
reg_basic_questionblank if I want the standard prompt, but that's not obvious in the configuration wizard. Maybe it would be useful to have a Specify custom question checkbox that enables thereg_basic_questionfield when selected.
It smells like option overkill and I'd rather extend options description to make it clear.
comment:11 Changed 7 years ago by
| Resolution: | → fixed |
|---|---|
| Status: | accepted → closed |
specify bot trap question