Why is my recaptcha missing. Captcha doesn't work. How RuCaptcha fights incorrect-captcha-sol
Hello dear readers of the blog site. Literally I want to devote a bit of time to a relatively new captcha from Google (it was announced about a year ago), which replaced the old and confused one. Previously, probably few bloggers in their minds could put the brainchild of Google on their website or blog - it was very dreary to solve the letter puzzles offered there. All the convenience of commenting was lost.
Actually, at that distant time, I still used a perfectly working one. To complete it, you just had to put a tick in the "I am not a robot" field and all (of all possible). If the checkbox was not checked, then the message fell into the basket in the WordPress admin panel, or when the basket was disabled (as in my case), it was simply not added to the database. The ideal option, in my opinion, because it did not create any particular inconvenience to the commentator.
Then this plugin stopped working, and I used it with success for about six months, but this method also stopped working after updating WordPress to version 4.4. During this time, I tried a couple of plugins that filter out spam based on recipient and content analysis (Antispam Bee and CleanTalk). The first one was quite confused (spam is not spam, but non-spam is spam), and the second, contrary to expectations, did not reduce, but increased the load on the server (and even paid for it).
In general, I decided to go back to the proven method - installation of the simplest existing captcha... DCaptcha no longer works, but the giant Google has seriously simplified its initially monstrous reCAPTCHA and reduced the entire check to the very same checkbox "I'm not a robot". Unfortunately, I'm too stupid to understand how to attach this thing to a site without a plugin (although I tried it), so I had to use the services of the No CAPTCHA reCAPTCHA plugin. But first things first.
Spam load reduction methods and why reCAPTCHA?
As you probably know spam can be manual or automatic... You can protect yourself from the first only by enabling the mandatory moderation of all incoming messages before publishing them on the blog - then, for sure, no "radish" will break through.
But manual spam, as a rule, is a frail trickle compared to the full-flowing river of auto spam. The latter can be generated, for example, by Hrumer in fantastic volumes. Personally, I am more annoyed not even with the fact that several hundred spam comments come to my WordPress admin area per day, but that they can be monstrously long and you get tired of scrolling to the "Delete" button. In general, this problem is real and the more relevant the more popular your blog is.
There is no point in fighting manual spam (because this fight is doomed and because of its insignificant volume), but something needs to be done with auto spam. Here, as it were two main approaches:
- Filter comments already added to the WordPress database for spam / non-spam and push them into the appropriate folders. Unfortunately, plugins that work on this principle give out a lot of rejects and you simply won't be able to empty the Spam folder without viewing its contents if you don't want to lose dozens of really valuable comments sent by active readers of your blog.
- Attach an additional check to the form for adding a comment as to who exactly leaves this message - a live person or a bot. The task of identifying this difference is called the Turing test and is solved in the vast majority of cases using the so-called captcha (derived from CAPTCHA, which is an abbreviation for a set of smart words). The main problem with this method of fighting spam is that you annoy the commentators with solving the "rebus" (captcha), which can discourage him from continuing to try to leave a message at all.
However, captchas, as I said, are quite simple. Google has taken a major step in this direction and now his new reCAPTCHA just an example of simplicity and grace for the vast majority of users who visit your site (although a small number of them may still be asked to enter characters from the picture if the algorithm has doubts about its humanity).
This is how Google's reCaptcha will look for 99.9% of your website visitors:
Well, like this, in the event of force majeure (if the algorithm, after conducting a dozen tests for humanity, nevertheless becomes confused):
The durability of this protection can be judged by the fact that on services for recognizing captcha (or) they charge twice as much money for a recap. A very telling indicator.
Well, as if the choice is made - you need to implement it.
Registering a site in reCAPTCHA and installing it on your blog
Registration is simply an indication of the name and domain name of your site, where you plan to use this captcha itself:
After that, you will be taken to the admin panel of the reCAPTCHA service for your site (it probably makes sense to add it to your browser bookmarks). Over time, statistics on the work of this captcha will be displayed there, but for now the most important thing that we can learn from here is just the same keyswithout which "I am not a robot" will not work:
Below are the installation instructions. In the area of \u200b\u200b"Integration on the client side" everything is clear, but simply installing the above code in the specified places is not enough. Captcha will be displayed, but spam will not be filtered. In the area of \u200b\u200b"Integration on the server side" I do not understand anything at all. I'm dumb for that.
Therefore the decision was made use a plugin to integrate reCAPTCHA in WordPressFortunately, there are a lot of options for such plugins (read). True, three of them did not work for me (captcha did not appear in the comment area). After several unsuccessful attempts, I had to turn to smart people for a solution, where I was noticed and subsequently successfully installed a plug-in with an intricate name (like oil is not oil) -.
Setting up and working of the No CAPTCHA reCAPTCHA plugin in WordPress
Well, actually, go to the WordPress admin panel, select "Plugins" - "Add new" from the left menu, enter No CAPTCHA reCAPTCHA into the search box and install. Do not forget to activate it, and then go to its settings in the usual way (at the bottom of the left menu you will find a new item "No CAPTCHA reCAPTCHA").
Actually, here of all the settings, the most important is, again, to enter the keys obtained just above on the reCAPTCHA website:
After saving these changes, the plugin will immediately defends your comments from spammers.
And not just comments. In the settings you can protect with this captcha and the WordPress admin login form:
Even in the settings, you can replace the light color scheme of the recaptcha with a dark one, and also either allow the captcha to guess the user's language itself, or set it forcibly.
Actually, that's all. I have not yet started to forcibly reset the cache in WordPress (I updated only those articles to which Hrumer is traditionally not indifferent), so reCAPTCHA is not displayed on all pages. So far, no complaints have been noticed in the work.
Good luck to you! See you soon on the pages of the blog site
You might be interested
How to get rid of WordPress comment spam in 5 minutes (no captcha and no plugins) Where to download WordPress - only from the official site wordpress.org Left menu disappeared in WordPress admin area after update
How to log into the WordPress admin panel, as well as change the administrator login and password given to you when installing the engine How to automatically add Alt attribute to your WordPress blog Img tags (where they are not present) Free WordPress themes and templates - where to download them How to disable comments in WordPress for individual articles or the entire blog, as well as remove or vice versa, enable them in the template Emoticons in WordPress - which emoticons codes to insert, as well as the Qip Smiles plugin (beautiful emoticons for comments) How to find the ID of a category, category, post or page in WordPress and how to return the column with ID to the WordPress admin panel Blank page when viewing large posts (articles) in WordPress
How to update WordPress manually and automatically, as well as the Database Backup plugin for backups
+1 Under consideration
If the support request form contains Google captcha, and hidden mode is enabled in the store's captcha settings, the form does not work (writes the error "This field is required", although all fields are filled in. To temporarily fix the situation ...
Captcha is not displayed
Found that when using the PHP ImageMagick extension, the captcha in the feedback form ($ wa-\u003e block ("site.send_email_form")) does not work. As soon as I switched to GD, the captcha started working. Is it something wrong with me or is it better ...
There is a solution
Writes Captcha is entered incorrectly Standard captcha produces the same Tried cleaning the browser cache and deleting the contents of the wa-cache folder did not give any results http://fluxor.ru/signup/
Check with the developer of your design theme. In the source code of the page, the captcha is requested twice, the second time by clicking the Feedback button at the bottom of the page. It is not visible there, but it is in the source code.
There is a solution
I add a captcha in the form of a stream (Support module), but it is not displayed on the site on the stock template ..
There is a solution
Hello! Some time ago I noticed that the captcha on the site is not working correctly. Whatever code you enter in this field (correct code and not correct), captcha does not pass the check ... and ...
($ wa-\u003e storage (["captcha", $ wa-\u003e app ()], "")) why such dances with tambourines?)) you can simply not insert ($ wa-\u003e captcha ()) into the form. problem maybe if you are trying to use several captchas on the page - the solution came across on the forum ... maybe a plugin ... or maybe a cache ... you can guess for a long time :)
There is a solution
In connection with the last update to version 1.8.4.225, in which some issues with reCAPTCHA were solved and the subsequent quick update to version 1.8.5.226, the following problem arose. If you enable the store in Settings -\u003e Checkout display ...
In the meantime, they rolled out the new thing. I hope nothing new is broken. I'll put it on test hosting for now. :)))
+1 Fixed
When adding a review with a customized invisible captcha from Google at the first submission of the form, the captcha passes, but if there were errors in the form (fields were not filled in), then when the form is sent a second and subsequent time, the captcha does not pass ...
+1
And no matter what happens - entering ANY captcha code is ALWAYS wrong.
⭐ In this video, you will see how with the help of one free widget you can solve the problem of reCaptcha 2.0 in the forms located in the Adobe Muse lightbox.
👉Additional: How to set up ReCaptcha 2.0 for use on your site:
Adobe Muse Help: https://goo.gl/coFJf2
Google service: https://goo.gl/n6g7fZ (you must have your own account and your site must be added to the Google panel).
ReCaptcha 2.0 in lightbox. About the lesson, an example.
This tutorial is especially for those who don't have ReCaptcha 2.0 working when placing a form in a lightbox in Adobe Muse. We need to use ReCaptcha 2.0 in the form of Adobe Muse to fight spam. But when this form is placed in the lightbox, ReCaptcha 2.0 stops working.
It looks like this. when we click on the "Lightbox with a form" button and try to click on "I'm not a robot" here, we have such constant scrolling, and ReCaptcha 2.0 does not work. This is a regular lightbox and hosts an Adobe Muse Recaptcha form. Therefore, we cannot submit the data of this form here. How to solve this problem, see further in this video tutorial.
ReCaptcha 2.0 in lightbox. Decision.
I found a solution to this question on one of the Adobe Muse forums. And in order for us to solve this problem, we will need to download one widget. The widget is called "Page in a frame", you can download it on this site .
ReCaptcha 2.0 in lightbox. We create pages.
So, we go to the Adobe Muse program, where I already have a project prepared. The Adobe Muse form itself is located on a separate page. I called the page "form", placed a form and one text block with this text here. In this form, in the settings I have ReCaptcha 2.0 enabled. The recaptcha is configured for my domain. To set up recaptcha, you need two codes: a public key and a private key if you host it on your website. We fix this form together with this text in the center of the page, for this we have enabled the "Pin on page" function, in the center there is an icon here. I made the page 360 \u200b\u200bpixels wide and flexible. That's all.
The next page, which I made additionally, is the "spasibo" page. The width of this page is also 360 pixels. And a flexible width value is selected for the layout. I click "OK". This text frame on this page is also docked in the center. This is the page to which when you go from the form in the form settings, the page is located after the thank you page is sent.
So we have two pages. One page with a form and one page "spasibo". And the main page, on which we have the lightbox itself. Here I will dwell in more detail. Now you see what I have in this lightbox, as if the form is set. But actually here I have not a form set in the target of this lightbox, but a widget set. The widget that I talked about at the beginning of this tutorial. The widget is called "Embedded Page". You just drag and drop it onto the page. Here, uncheck the "Disable scrolling" checkbox and in the URL of this page you will have to specify the URL of the page on which the form will be placed. In this case, this is our "form" page in which we placed our form.
ReCaptcha 2.0 in lightbox. Placing a widget in a lightbox.
This widget itself you place in the target of the lightbox. I will not do this now, since I already have a widget there. I will delete this one, but here I will show that in the settings of this widget (this is now the lightbox settings) scrolling is disabled and the URL is written:, because my page with the form is called "form". Until you publish this site, the form in this lightbox will not be displayed in your project.
Since I have already published this site at the address indicated there, I now have a form displayed in this lightbox. That is, if I now even slightly change the name, for example, remove the letter "l", that is, if I write here clearly the address of my page, which is already hosted, then with the help of this widget it happens here as would be the translation of the page "form" into this widget. And we have the widget placed in the target object of the lightbox. Here, in principle, everything.
ReCaptcha 2.0 in lightbox. Placement of the site on hosting.
Next, we place our site on our hosting. After placement it will look like this. I have this site located in the "rec" subfolder of my domain, and when I click on the "Lightbox button with a form in a frame" button, a pop-up window appears, showing the form with the recaptcha. Now, when starting on the recaptcha itself, the recaptcha works, and we can safely send this form.
The only drawback of this method is that when you place several such lightboxes on one page, they will all be sent to one “form” page. In order for you to be able to keep track of which form the application came from, you will need to create one more page "form". For example, duplicate it and name it "form1". Make changes in the settings of the form, for example, here write "Form form1" so that they differ in name. And make another lightbox on the main page with the widget installed in it, or simply duplicate it by clicking "Copy" and "Paste".
We get another button with a lightbox. I'll post it just below. And already in the settings of this widget, which is placed here in the target object, we will have to specify the address of the page "form1". By the way, now you will see that since I have not yet published this page on my site, the form is not displayed here in this lightbox yet. After posting you will see exactly the same picture, only in this target of the second lightbox we will have "form1" placed.
ReCaptcha 2.0 in lightbox. Features of the method.
All these form pages that we created are part of the same site, so you can also track the conversion from each of these forms when setting up in Yandex.Metrica.
Also for each form you can create a separate "spasibo" page. Let's see how it will work already on the site. You click on the button "Lightbox with a form in a frame", confirm that you are not a robot, the recaptcha is triggered. Write the name. I will write "Dmitry" and write here any e-mail address, for example, "123@mail.ru", I click "Send". And after sending, the page "Thanks for your order!" - this is the page that we configured for this form, i.e. separate page "spasibo". The transition to it is configured for this form.
Link to the forum where I found a solution to this issue. And on this I say goodbye, Dmitry Shapovalov was with you. Watch my previous and next lessons on my channel, like and write comments on this video.
The company claims that its reCAPTCHA system can distinguish a person from a machine without any complicated tasks or checks.
What is reCAPTCHA?
reCAPTCHA is the leading CAPTCHA service on the web. Probably, each of you has seen the so-called "captcha" many times while registering on a particular site. To automatically detect people from spambots, you are asked to enter words or numbers from an image in the required field, select several images containing the desired objects, or simply put a checkmark. But now captchas will appear less often, because Google made her hidden. However, it will not disappear.
How does it work?
The old reCAPTCHA was pretty simple - just a checkmark in the "I'm not a robot" box. The new version has become even simpler, there are no tasks or checkboxes in it. It works discreetly and separates bots from people. Google did not elaborate on how the system works.
The new version of the system combines machine learning and an advanced risk analysis tool that adapts to new threats.
More detailed information about the system will probably help bot creators come up with a way to get around it, so no details can be expected anytime soon.
Google bought the reCAPTCHA company in 2009. Some CAPTCHA systems ask users random questions, but the old version of reCAPTCHA was actually used to solve problems that Google needed to solve. Google digitizes millions of books, but sometimes OCR software fails to recognize a word and it is sent to reCAPTCHA. If you've ever seen a reCAPTCHA that looks like a bunch of numbers, it was Street View cars racing through the streets and identifying house numbers. If the software could not determine the house number, this photo was converted into a captcha for human recognition. Image sets with requests like "Select all cats" were used to train computer image recognition algorithms.
When sites switch to invisible captcha, most users won't see it at all. But if your system is marked as "suspicious", you will be prompted to solve one of the usual problems.
Description of the problem
In early July, several clients, independently of each other, complained to us that some of the tokens for passing ReCaptcha, which they receive from us, are not accepted by the sites where the captcha passes. We carried out a number of experiments and found that when verifying the response to ReCaptcha, Google.com may return the following error:
This problem affects not only our service for solving the captcha site, but also ordinary people who undergo recaptcha on any site, but the site does not accept a response to the captcha from them.
AT API ReCaptcha there is no description for this error. We do not know for certain its reasons, but we were able to find some dependencies.
What determines getting incorrect-captcha-sol
The appearance of incorrect-captcha-sol, according to our observations, is due to two factors:
1) Very bad IP
Google apparently has a rating for every IP address. If you solve ReCaptcha without errors and no more than 50 captchas per day, then this IP will be considered good.
If you do anything from this list:
make a lot of mistakes when deciding
open the captcha but do not resolve it to the end
solve more than two captchas per minute
Then your IP is either banned altogether, or begins to receive such tokens, which, upon further verification, receive incorrect-captcha-sol
2) Bad cookies
Besides IP rating, Google has user ratings. Everyone who visits google.com or a page with ReCaptcha installed is assigned their own cookie. Google analyzes your online activities and evaluates how much you look like a real person or a robot. If a user with one set of cookies solves captchas all day long, even if it is done from different IPs, then this is most likely a robot and such a user will solve captchas until the green checkmark, but upon further checking his response, Google will return
("success": false, "error-codes": ["incorrect-captcha-sol"])
The most offensive thing about this is that when you log in to the gmail.com google mailer, Google will associate you with your past actions and, if at least once in the past considered you a robot, now you will not make a ReCaptcha decision in 3 out of 4 cases.
How RuCaptcha fights incorrect-captcha-sol
To reduce the number of “bad” tokens in responses to customer captchas, we regularly clear cookies in the employees 'application, and also monitor the quality of employees' IP addresses. Let's talk about this in a little more detail.
Yes, some of our employees have “very bad” IP-addresses, when they decide from which ReCaptcha they receive tokens, which receive incorrect-captcha-sol upon subsequent verification. To combat this, we issue a test ReCaptcha for each unique IP address once an hour and verify the response to it in google.com. If we received incorrect-captcha-sol, then we stop issuing captchas for solving from this IP and this user can only solve captchas through a proxy (proxies, in turn, are also regularly checked).
Thus, we reduce the percentage of “bad” answers to 1-3%. Unfortunately, gone are the days when we proudly said that 100% of the responses to ReCaptcha from our service were correct.
Refunds for bad decisions
Since July, we have enabled the reportbad reception on ReCaptcha. Therefore, to reduce the cost of captcha, you can set up an automatic notification to us that the token received from us has not passed verification, how to do this is described in our .
Every hour we collect statistics on complaints about employees and return funds for those captchas that were solved by a "bad" employee.
Looks like Google thinks my IP / cookie is bad. I can't go through the captcha anywhere, what should I do?
Yes, many ordinary people have faced the problem that they cannot pass authorization / registration on sites where ReCaptcha is installed. We will tell you what to do about it in the next news. Stay tuned for updates on our blog!