To protect online submission forms from spam bots and other auto-posting programs, webmasters result more and more to the implementation of captcha on these forms. Although it keeps the simplest programs and bots out, it also turns away a lot of real people.
Captcha stands for “Completely Automated Public Turing test to tell Computers and Humans Apart” and now you know why no one ever refers to Captcha with the non abbreviated form. Sometimes it’s referred to as Turing Test or reverse Turing test, In its most common form, you, the user, get some garbled text presented and you are supposed to type that into a box and submit it, just to prove that you are a real human.
Problem with Captcha is that sometimes the letters are 우머나이저 real difficult to read, especially for people with less than 10/10 vision. Me, personally, if the Captcha is too difficult to read, I just click the back button. For example on those “report broken link” links you often see in software directories, I will not go through with the report if the Captcha is too difficult. I mean, come on… I’m doing the webmaster a favor here, helping to clean up his site and he wants me to guess 5 or 6 unreadable codes before I can actually help him? No way, my time is far more valuable than that! I’m pretty sure there are lots of people just doing the same thing.
Now the webmaster could make the Captcha easier, but easy Captchas can be easily hacked with standard Linux tools like GD. Actually, even medium hard ones are being hacked. But it gets worse. Indian and Pakistan have now datacenters dedicated to resolving Captchas. A spammer can now buy an API (a piece of code on another computer that you can remotely use in your own software) through which his software can send the Captcha image to one of those datacenters where a real human will solve it. Cost of this: a measly 1 or 2$ per 1,000 Captchas resolved (Yes, that is one thousand).