retitle 637880 python-recaptcha must be updated to use current URLs reassign 637880 python-recaptcha severity important thanks
On Fri, Aug 26, 2011 at 08:46:20AM -0500, John Goerzen wrote: >Hi Steve, Hey John, >Thanks much for this patch. I had been wanting something better than >textchas, as spammers are cracking them on occasion. > >I read the source, which seemed to suggest I needed to add a >recaptcha_public_key and recaptcha_private_key to my config. >(Incidentally, it would be good to document that somewhere.) Yeah, true. :-) >Anyhow, it's creating: ><strong>ReCaptcha (required)</strong></td><td><script >type="text/javascript"src="https://api-secure.recaptcha.net/challenge?k=6Lf3fccSAAAAAOwC9aTpkl8NaySeBwFjcdzOangU > ><view-source:https://api-secure.recaptcha.net/challenge?k=6Lf3fccSAAAAAOwC9aTpkl8NaySeBwFjcdzOangU>"></script> > >but no graphic is showing up, and no recaptcha entry box is showing up either. > >I don't know exactly what is wrong; I've verified the keys but >nothing is showing up. I've tried it on two of my sites with the >same result on both. Hmmm. This was working flawlessly for me when I first hacked on this, but now my own test moin isn't showing a graphic either. :-( As you can see in the output HTML it is including the js version of the recaptcha challenge, and also a noscript version. I'm curious if there's something changed on the recaptcha side. I can see that the packaged version of python-recaptcha is a version behind upstream; maybe that's involved. Oh... I see - the cert on https://api-secure.recaptcha.net/ looks to have been replaced: api-secure.recaptcha.net uses an invalid security certificate. The certificate is only valid for www.google.com. Switching to the latest version of python-recaptcha (which uses a new google.com URL instead of api-secure.recaptcha.net) fixes things for me here. Sigh. They've deliberately broken the API, apparently very recently. Reassigning this bug to python-recaptcha now to get an updated version packaged. Vincent, if you need help with that then please shout; we'd like to get this code up and running for wiki.debian.org ASAP! -- Steve McIntyre, Cambridge, UK. st...@einval.com You lock the door And throw away the key There's someone in my head but it's not me -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
