973 posts
  • United Kingdom
  • Attended a Community Meetup
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
  • Sold between 5 000 and 10 000 dollars
  • Has been a member for 3-4 years
  • Envato Studio (Microlancer) Beta Tester
  • Bought between 100 and 499 items
  • Referred between 10 and 49 users
  • Exclusive Author
aaranmcguire says

Devs explained the need of a somewhat-hard-to-solve captcha system a while ago. The list of marketplace usernames is very easy to collect automatically, so crackers were trying every available username against common passwords. Bound to find someone on here that is using a common password.

I agree, I have a list of all author usernames on all the marketplaces, very easy, took 5 minutes on a Macbook Air. Yes, Captcha’s can be hard to guess but I bet it keeps a lot of hackers away.

293 posts
  • Author had a Free File of the Month
  • Sold between 10 000 and 50 000 dollars
  • Indonesia
  • Referred between 200 and 499 users
  • Bought between 10 and 49 items
  • Has been a member for 3-4 years
  • Exclusive Author
amatyr4n says

Gmail also showing captcha in their login but only after some failed attempts, so unless you’re a spambot or forgot your password you won’t get the captcha

1685 posts Time is what you desire most, but waste carelessly.
  • Sold between 100 000 and 250 000 dollars
  • Elite Author
  • Bought between 50 and 99 items
  • Referred between 100 and 199 users
  • Grew a moustache for the Envato Movember competition
  • Exclusive Author
  • Has been a member for 4-5 years
  • Envato Studio (Microlancer) Beta Tester
  • Europe
+1 more
Firsh says

Recaptcha used to be the best now it’s even worse than google’s. The good thing is that they show 2 words: one is known, the other is for manual OCR while you help them analyze scanned books or somethin like that. The known word is usually readable. You only have to enter that right, the other doesn’t matter. One time I got CHINESE characters to solve. Thanks.

The only thing I don’t like is that at first it doesn’t show, I enter my password correctly, then it shows up and needs my password again. It makes me believe that I entered the wrong password, but I didn’t. Aargh.

4 posts
  • Bought between 10 and 49 items
  • Has been a member for 4-5 years
  • India
  • Referred between 50 and 99 users
suraj78 says

Gmail also showing captcha in their login but only after some failed attempts, so unless you’re a spambot or forgot your password you won’t get the captcha

This will be much better option.

360 posts
  • Envato Staff
  • Reviewer
  • Sold between 10 000 and 50 000 dollars
  • Has been a member for 5-6 years
  • Bought between 50 and 99 items
  • Contributed a Tutorial to a Tuts+ Site
  • Beta Tester
+4 more
Philo01 Reviewer says

Soms improvements where made though :) : http://notes.envato.com/general/captcha-changes

3716 posts Community Moderator
  • Author had a File in an Envato Bundle
  • Grew a moustache for the Envato Movember competition
  • Community Moderator
  • Referred more than 2000 users
  • Has been a member for 5-6 years
  • United Kingdom
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
  • Contributed a Blog Post
+4 more
quickandeasy Volunteer moderator says

Soms improvements where made though :) : http://notes.envato.com/general/captcha-changes

Yh, but the current captcha is hard most of the time, the support one is nice and easy

731 posts
  • Elite Author
  • Attended a Community Meetup
  • Has been a member for 4-5 years
  • Sold between 100 000 and 250 000 dollars
  • Bought between 50 and 99 items
  • Exclusive Author
  • Most Wanted Bounty Winner
+2 more
mordauk says

To be honest, I guarantee that every single person has much better things to do than complain about a captcha system. Sure they can be a pain, but in the end they are very, very effective.

And come on! Saying that users who use weak passwords deserved to get hacked is just wrong. Should they use weak passwords? Absolutely not! Does everyone know better than that? No! So please, stop being so high and mighty and go be productive instead.

My two cents.

293 posts
  • Author had a Free File of the Month
  • Sold between 10 000 and 50 000 dollars
  • Indonesia
  • Referred between 200 and 499 users
  • Bought between 10 and 49 items
  • Has been a member for 3-4 years
  • Exclusive Author
amatyr4n says

Even having extremely strong password will not guarantee our account is safe from attack as long as the login page is still not sent through https :p

1685 posts Time is what you desire most, but waste carelessly.
  • Sold between 100 000 and 250 000 dollars
  • Elite Author
  • Bought between 50 and 99 items
  • Referred between 100 and 199 users
  • Grew a moustache for the Envato Movember competition
  • Exclusive Author
  • Has been a member for 4-5 years
  • Envato Studio (Microlancer) Beta Tester
  • Europe
+1 more
Firsh says

Even having extremely strong password will not guarantee our account is safe from attack as long as the login page is still not sent through https :p

+1 It’s amazing how something that handles money is not via https.

731 posts
  • Elite Author
  • Attended a Community Meetup
  • Has been a member for 4-5 years
  • Sold between 100 000 and 250 000 dollars
  • Bought between 50 and 99 items
  • Exclusive Author
  • Most Wanted Bounty Winner
+2 more
mordauk says


Even having extremely strong password will not guarantee our account is safe from attack as long as the login page is still not sent through https :p
+1 It’s amazing how something that handles money is not via https.

Totally agree that it should be, but technically they don’t really handle any money. They just keep a number that says how much you have. All payments are processed off site through merchants.

by
by
by
by
by
by