Comments - The Cutest Human-Test: KittenAuth

#1 — Author comment /* 3 years, 8 months ago */

If you wish to test KittenAuth without actually submitting anything try my test harness:

http://www.thepcspy.com/kittenauthtest

Quote Site Profile

Oli Numero Uno

#2 /* 3 years, 8 months ago */

It's a sexeh piece of authentication if I may say so.

Quote

Seopher Anonymous User

#3 /* 3 years, 8 months ago */

Enlarge your penis! male-help-pills-fake-url-just-a-joke.com

Quote

JustAJoke Anonymous User

#4 — Author comment /* 3 years, 8 months ago */

:P You bastard!

There's been quite a good extension point made on digg from a user called liquidpenguin saying that instead of using just "kittens another other animals" you have different sets that are randomly chosen and the user is dynamically told which ones to click.

I've gone on to suggest that instead of perhaps using 2 directories, there are directories for each group of choices. When the session is made, it selects which group is going to be the active group for this choice and when the image is loaded it sees if the "correct" image. If it is, it loads it from the session-determined folder. if its not, it randomly picks from all the other folder.

This would stop possible learning of kittens as the "correct" answer would be ever-changing.

Good work there liquidpenguin.

Quote Site Profile

Oli Numero Uno

#5 /* 3 years, 8 months ago */

One small problem. If someone really wanted to write an app to automatically post spam on your messages then all they have to do is brute force your authentication system. 84 combinations is abysmally low, leaving the system with a 1/84 chance of guessing it every time it attempts. So, assuming they do want to brute force your authentication system, they'll not only succeed (it may take a few minutes or so, but who cares, it's automated), but they'll be Denial of Servicing you in the same step!

Don't get me wrong, it's a nice idea and it will work so long as too many people don't start using it. However, there will be a certain point where it's just too cost effective for the spammers to write their easy little app to brute force/DOS you in the same step.

Cheers,
Ivan.

Quote

Ivan Bindoff Anonymous User

#6 — Author comment /* 3 years, 8 months ago */

It would be pretty easy to block people off from the site completely after x bodged attempts.

Quote Site Profile

Oli Numero Uno

#7 /* 3 years, 8 months ago */

You stole images from cuteoverload… EDIT(Oli): Yes its true… Well my housemate did… but guilty as charged

Quote

anon Anonymous User

#8 /* 3 years, 8 months ago */

"If you do make a reusable system for wordpress and you're thinking of selling it, I just want to remind you that this information is given under a noncommercial share alike Creative Commons license. If you need me to relicense it, contact me and I'll be more than happy to help as much as I can."

You can't license just any information under a Creative Commons license, that's just not how it works. Well I mean, you can try, but you'll get thrown out of court faster than you can say wtf. You haven't written any code that is shared either, just put an idea down on paper, which at most is covered by copyright laws.

Quote

mrlegalman Anonymous User

#9 /* 3 years, 8 months ago */

What about blind people? You need a tactile interface for them!

Quote

Sean Lynch Anonymous User

#10 — Author comment /* 3 years, 8 months ago */

>> What about blind people?

Yes there could easily be a sound bank available for kittens and non-kittens but I fear that this would be easier for a bot to decipher.

Under these specs disabled people are left in the dark -- I admit it.

Quote Site Profile

Oli Numero Uno

Comments for The Cutest Human-Test: KittenAuth

Latest Posts

Greatest Posts

Latest Elsewhere