Spam comments now getting through?

Hmmm, I haven't been experiencing this. Try updating to the 4.7.x-1.x-dev version?

ok, I'll give that a shot. If the problem continues I'll post back.

Ok, I've upgraded to the 4.7.x-1.x-dev version as requested, but these spam comments still seem to be getting through. I haven't deleted the comments this time, so if you would like any details on them I can get them for you. All comments were made on the same node from the same IP address from the Ukraine with about 2 hours between each of them. Don't know why these bots are getting through reCaptcha where they are not getting through the standard Textimage module, but I've been seeing this with other captcha tasks as well such as with the Gallery2 photo album software.

You might want to bring up the issue on the reCAPTCHA Google Group as they might be able to help you. If the spam is coming from a computer, then it's something that they might have to fix. Worse comes to worse, they can add the IP to the reCAPTCHA IP block list.

Ok, posting there now. Hopefully I don't get the same outcome as the Wordpress user did...

Got a reply from reCaptcha support who think it is a problem with the Drupal module. The IP address that all this spam is coming from does not show up in their logs, yet all the other IP addresses of successful attempts do. Would seem this bot has found a way to circumvent the captcha process with this module?

Hmm, I had a look at the code and the 4.7 branch is using the API correctly, the best guess I have is that the Captcha API of the 4.7 branch is acting up. Considering 4.7 is going to be deprecated once Drupal 6 is released, have you considering making the update to 5?

An upgrade to Drupal 5 is on the cards, but not in the short term. I might go back and look at the Akismet or Spam modules as they do a fair job of spam detection without requiring any special user input.

A combination of both reCAPTCHA and Akismet would do well, as reCAPTCHA would keep the bot spammers out, while Akismet would keep the human spammers out.

Ok, I'll give this a shot. Would it be possible that this bot has actually found a captcha work around similar to the one described for the Captcha module here;

http://drupal.org/node/114364

It looks like they're getting through again, since at least june 2009. Strangely enough, most commenters getting through have their email address pointing to "http://recaptcha.net" or "http://wordpress.org/extend/plugins/wp-recaptcha/" . Looks like a new exploit.

Actually, this is with 6.x-2.0-rc2, not 5.x, but strangely enough it is not suggested in the list of versions for issues.

Could you please try out the lastest dev snapshot? I committed a patch yesterday that brought it back to play more nicely with the CAPTCHA API.

Updated and reactivated instead of the Math captcha (to which I had returned in the meantime). I'm usually spammed every day, so we should know whether this fixes the problem in a few days.

Four new intrusions. I can't but think the problem lies in reCaptcha itself. Maybe the problem popularized by the TIME exploit hasn't been fixed? http://musicmachinery.com/2009/04/27/moot-wins-time-inc-loses/

After a few days back with Math, it appears the problem is not with reCaptcha, but with captcha itself. Spammers go through whatever the captcha used. Recreating issue in Captcha.

We are seeing the same problems on our site using reCaptcha...

Running Drupal 6.9, Captcha 6.x-2.0 and reCAPTHCA 6.x-1.3.

Comments are coming through.. I have a hard time believing it is reCAPTCHA failing, though I suppose it is possible.