Hi Folks,
Last version from Captcha had an PHP 4 incompatibility.
Sorry to all problems it had gave to you folks, and I really suggest you to upgrade your php version (or ask your provider to do so).
PHP4 is deprecated.

We were using a function added in PHP5, and PHP4 was complaining that it doesn't exist. Our are developers are using PHP5, so nobody noted it before. This is an example of how important is that you users always try the last version of captcha, and give us your feedback.

Cross-posting here:
I'm proud to say you we have a new Captcha version.
Besides the API, most of changes are user centric, we improved the help pages, improved the usability of module, and fixed some bugs.

And now, we need that you, our users, download, test it, find bugs, suggest improvements, and please say what you think of about our work...

Thanks,
Fabiano

Hi folks,
I'm planning to put Captcha's v3 in code freeze with the release of Captcha 5.x.3.0, which should be released this Sunday.
If you have any feature that you really want to see implemented, please, submit a patch as soon as possible.

..drop (as much as possible of) $_SESSION dependency.

Thilo Wawrzik has been a great committer/user/reviewer from Captcha/Textimage modules for almost a year.
Today I was replying his issue about Captcha v2 then I figured out that I hadn't documented/explained to my users why the hell I did change the Captcha API.

Early this year, some security flaws was discovered in Captcha and Textimage, it's was a quite simple bug related with an trim() that was used to verify if the form was submitted. Note that captcha 4.6, captcha 4.7 and captcha 5.1 are basically the same module.

There is a new captcha available for download.

Here is some improvements:

• Full FAPI compliance
• Easier API
• DRY compliance ;)
• Fixed problems with form_set_error
• Form Store integration

* Textimage (as any other module using Captcha API) is still INCOMPATIBLE with this version of the API *

Since the first version of captcha there wasn't any easy way to add captcha pointers in other forms rather than the default. Now this is past, I was working for some weeks in this issue, when I found the great Form Store Module from Heine Deelstra.

Captcha CVS is now integrated with Form Store, allowing users to easily add and remove (and rename) captcha points.

There is new version of Captcha in CVS, it's the first release candidate of with the new Captcha API.
Here is some improvements:

• Full FAPI compliance - no more dirty hook_form_alter magics.
• Easier API
• No code duplication - DRY compliance ;)
• Fixed problems with form_set_error

Yesterday we released a new version of Textimage and Captcha modules, those release fix some security bypass, everyone use any version of those module MUST upgrade.

If you have doubts about how to proceed, contact me and I help you. ;)

Thanks Heine Deelstra and the folks from Drupal Security team for the great work.

Below the security releases:

Textimage - response validation bypass
Captcha - response validation bypass

There is a new version of captcha avaliable for download, it's just a port of the old Drupal 4.7 version.
Thanks for the patches and reviews.

We are planning an API update for the next version, if you have any sugestion now is the time to say. ;)