- This topic is empty.
-
Posts
-
Hi,
Can you please remove the CAPTCHA from the login area? StatsRemote can’t read this, and really there is no reason to have someone type in a random security code when they are logging in to view their stats. The username and password combination should be sufficient. This isn’t a form that can be spammed; it’s just the place where existing affiliates log in.
CAPTCHAs are generally used at the point of sign-up (not sign-in), to prevent bots from creating thousands of accounts. What you are using it for doesn’t really make sense; it’s more annoying than anything.
As far as I know, Trident Share is the only other program that does this, and I don’t see the point of their CAPTCHA either. It’s just an extra, unnecessary step that slows existing affiliates down. (I would ask Trident to remove the CAPTCHA also, but I’m not sure if anyone works there anymore).
Thanks. :satisfied
Hi Engineer,
Many thanks for your feedback. Whilst the CAPTCHA adds a step to your login process, it was added to our program as a privacy enhancement feature.
As an independent affiliate network, it is important to protect the privacy of our affiliates’ and merchants’ data.
Do you see any major issues with this? Your opinion is always highly valued and respected as ever.
Thanks Dave,
Fina
Hi Fina,
I agree with Dave. The CAPTCHA feature is more of a henderance then a help to us that have to log in.
Hi Sara,
I guess I don’t understand. :tooconfus I think passwords alone a great security feature… Set up the right way, passwords are very effective at keeping sensitive data safe. You can set it up so that after “X” incorrect login attempts, no additional attempts can be made for an hour (or longer). You can also force passwords to be “strong” by requiring letters, numbers, special characters, and both uppercase and lowercase letters.
If someone already has my user name and password, the CAPTCHA isn’t going to stop them from getting in. So, unless I’m missing something, I don’t really see how it enhances privacy.
When I visit Gmail, or Yahoo Mail, or even my online bank account, they only ask for a user name and a password. Sometimes a birthday, too, but everything they ask for has a constant value — it isn’t something random. Aside from IA and Trident, I can’t think of one other place where I have to go through a CAPTCHA to log in. I’ve gone through many CAPTCHAs when signing up for new accounts at various sites, but it’s very rare to go through this when logging in (like I said, IA and Trident are the only ones I know of).
The main reason why I want it removed is because StatsRemote can’t read the CAPTCHA, which means I have to manually log in to IA to view my stats.
That is soooo old school, Sara. (LOL) :tongue:
Actually StatsRemote does save me a lot of time, and more time saved means more time spent promoting casinos such as Jackpotjoy. :wink-wink
Thanks for hearing me out. Have a good weekend. :1Dialog:
I agree. CAPTCHA is proving nothing in this scenario and really doesn’t make any sense nor offer any more protection.
I don’t want to stir the pot, but if it is protection you were looking for – do what banks do:
1. Allow users to set up a graphic and tagline (this ensures that when they login, they are not actually logging into a fraud site… does this by giving you that image and tagline as a familiarity factor)
2. Give the user a set of 5 questions that they have answers to. Then randomly ask the questions prior to submittal of the actual password.
That’s it, really. However, you are not a bank
You don’t need this level of protection – so please remove!! I use Statsremote as well and do not promote any program that I cannot track through it.
The only possible reason for the CAPTCHA would be to take care of brute force bots or bots trying a series of exploits on the login forms but as Engineer already said there are more elegant PHP based ways of preventing that.
If it’s bots you want to stop there are many ways to install bot traps, invisible form fields etc. But then again that probably wouldn’t help Statsremote a great deal :tongue:
I guess the best thing to do would be to get rid of the CAPTCHA and install a few PHP rules for the number of incorrect logins, security questions and require strong passwords etc.
But don’t make it ridiculous like Goldenpalace who lock your account after two failed logins, have a faulty unlocking routine and to make things worse have a case sensitive login form….
Bump. :wavey:
yeah im writing my own version of stats remote for my portal and I would hate to have to write a captcha piece to go with it
Hello one and all,
Thank you all very much for your opinions and comments. As ever, they are invaluable and greatly appreciated. :hattip:
We are currently using some of the secure password features mentioned in the thread and are working on incorporating your other suggestions for enhancing the password feature in our next software upgrade release.
In addition, we’ll look at alternatives to replace CAPTCHA as it is not our intention to create any hindrances.
More time to promote Jackpotjoy and others would be fabulous Dave. 
We cannot, however, allow a third party to harvest stats from our site due to our position as mentioned in the thread. Hope you can appreciate that.
We are exploring ways to get your stats delivered to you personally in a seemless fashion, e.g. daily email report of all your stats across the various merchants in the network, and would be happy to hear any suggestions you might have.
Thanks again for your comments and sentiments, and not to worry kwblue, you aren’t stirring any pots by expressing yourself along with Dave, Robin et al. We value all your opinions and are always happy to receive them.
Thanks again.
Kind regards,
Sarafina
The pesky CAPTCHA is still there… :unhappy:
Hi Engineer,
We haven’t forgotten about you. Apologies for the tardy response.
We are working on this as well as the alternatives mentioned earlier that will make accessing your reports more convenient.
Thanks for the persistence and patience. :hattip:
Cheers,
Sara
LOL Dave you crack me up! :tongue:
I really hope that they remove this feature soon. I rarely log in to the site now because of the hassle. I use roboform to access my accounts and I guess i’m to lazy to deal with extra stuff like this more than once or twice a month. :Cry:
Hi Sara,
Thanks for the update.
Thanks for the update, Sara. :inlove: :hattip: :wavey:
It’s always a pleasure Dave. :hattip:
Cheers,
Fina
