tachyon,
Thanks this helps alot, I am pretty sure i will be using GD::SecurityImage to take pre-made images and add text that is blurred and mutilated in real time.
avitar.net

Before you spend a lot of time on this, you might want to have a look at A little fun with merlyn and the discussion around it. In my opinion, it's just not all that hard to OCR even "obfuscated" text.

As far as munging images goes, GD seems to be a popular choice. (GD::SecurityImage seems to do what you want, in fact, though I don't know whether its images are sufficiently "obfuscated" for your taste. Is that the module you were talking about?) For procedural image generation, especially unique image generation, this book is the best reference I've ever found.

Going a bit off topic, I wonder what sort of "security images" one could come up with that would be reasonably secure, yet easily recognizable? You'd probably have to get into audience-specific content; for instance, a site for gamers might use screenshots from computer games, and ask the user to identify the level shown. Any ideas?

Merlyn's script has a few problems, but it does give me a good baseline. TY very much.
avitar.net

Consider accessibility when doing this. The W3C has a discussion document about using mangled images and suggests a few alternatives: Logic, word, or trivia questions, sound, credit-card checks. All of these have difficulties at least as great as with the images, but could get one thinking.

Also see the links at the bottom of that document, especially the CAPTCHA project

These are captchas (or something like that) that you are talking about. Bet if you google around, you will find someone has already made a module.

Good luck.

The problem with this method is it isn't as elegant as generating a single image on the fly, and perhaps not as efficient either if the images are very small and easily merged.

Or you could dispense with the human segment entirely and base your pass-fail on how long it takes for the form to be submitted. An automatic script will probably submit in under a second, while even the fastest person is going to take at least a couple seconds to type his response.

I already have a better script in place; please read the topic. I wanted image generation on the fly not a scrambled link or image copier.
avitar.net

<img src="/cgi-bin/imgrefer.pl?woijfoeiwjim32&keypart1">

you can randomly change the image names every time you send the page. Key part 1 (passed) plus key part 2 (contained in the image referral script) will decrypt the hash into whatever the actual name is, and there should be no way for the spider to guess which image it is without much more advanced processing.

I don't know why I didn't think of this before :)

I already have this please read the topic. I wanted image generation on the fly.
avitar.net

Mousing around constantly pisses me off (and aggravates a mild rotator-cuff injury I picked up a month or so ago). Give me a console and a well-designed text editor, and I'm much happier than if I have to constantly click and drag. (After all, communication has evolved past the level of crude gestures and pictograms... perhaps interfaces should, too. :-)

Of course, you can do all that on a Windows system (and I have); cygwin (or msys, which I prefer), bluebox, and a slew of smaller extensions let you make a Windows box feel fairly Unix-like, and still be able to play new-release commercial games. It's just nice not to have to go to all the trouble.

--
F o x t r o t U n i f o r m
Found a typo in this node? /msg me
% man 3 strfry