-
-
Notifications
You must be signed in to change notification settings - Fork 190
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Investigate OSS Captcha options or build an OSS captcha to use on open source design's jobs form #237
Comments
thanks for opening this @m1guelpf ! we do need to do something about that spam |
Is there any good captcha which is open source and not maintained by Google? |
I'd like to try creating a captcha on my own. Can you please assign this to me and give me some time to complete this task ? |
@amrs-tech go ahead and give it a try. let us know about your progress. |
@evalica Okay |
@amrs-tech Did you get anywhere with the captcha development? It would need to be usable by all - visual and hearing impaired, and keyboard only users. If you have something to test, I'd be happy to do an accessibility review of it with you. |
@ei8fdb Sorry, I was busy with my exams, so couldn't do that. Sure, I'll report the status to you after February 16 |
OK not a problem! I'm in no rush ;) |
Hi yall! Stumbled on a smart solution that can kinda solve the bot submission problem: put an input field that is not visible or reachable by human users and use that as a flag for form-filling-bots detection. If the field is filled on submission, you'll know it was a bot and can disable the submission button. What do you think? Have someone seen anything like that? Is it safe to use? If this is not unsafe I think it would be a very much simple and quick solution. Edit: sry for the closing/reopening, mouse issues :/ |
Works for me, but I think this may be a problem for padding on mobile |
@elioqoshi one alternative to that would be hcaptcha |
hCaptcha is available, but it's still not an open source alternative for Google's ReCaptcha. |
Before a captcha is implemented - is the "automated job submission" issue still an issue? I'm not sure it currently is. I would agree with getting one ready, so we can turn it on or off, but I would disagree with implementing one forever. |
I think this issue can be updated to a sort of 'spike' to still investigate captcha for when we might need it or create our own. |
Recently we've been getting some automated-looking submissions. Maybe it's time to add a captcha?
Edit 22.06.2021
We don't think spam/automated job submissions are a problem anymore, however we're changing this issue to be more a dev 'spike' issue to investigate OSS captcha's or possibly look at building one 😄
The text was updated successfully, but these errors were encountered: