Hi All,

I have multiple Drupal installations on a VPS account and they have all been experiencing the same problem with admin accessibility to Image CAPTCHA. The symptom of the problem is the inability to access the Image CAPTCHA admin interface as runs indefinitely. I have tried re-installing CAPATCHA but that did not help. There were instances were ultimately the interface finally allowed me access. I am suspecting that this may be a PHP problem. Are there any specific dependencies there?

CAPATCHA itself work fine and as expected. Any hints as to what is causing the problem and how to resolve it?

Thanks,
~DrupalFan

CommentFileSizeAuthor
#10 captcha-737832-nofilesscan.patch2.13 KBsoxofaan
#9 www.patch3.19 KBabautu
#7 image_captcha_files_dir.patch935 bytesjaperry

Comments

soxofaan’s picture

soxofaan commented

The Image CAPTCHA admin page scans for available fonts in various places: 

//(from image_captcha.admin.inc around line 235)

  // We only show the name of fonts from the files directory
  // and do not provide a preview for security reasons:
  // files in files directory can be uploaded by normal or even anonymous
  // users and should not be trusted.
  $fonts = _image_captcha_get_available_fonts_from_directories(array(file_directory_path()));
  foreach ($fonts as $font) {
    $available_fonts[$font->name] = $font->name ." ($font->filename)";
  }

Maybe you have a huge "files" directory and it's the scanning of that directory that takes all the time?

Can you try disabling the scanning of the files directory and check if that fixes your problem:

//  $fonts = _image_captcha_get_available_fonts_from_directories(array(file_directory_path()));
//  foreach ($fonts as $font) {
//    $available_fonts[$font->name] = $font->name ." ($font->filename)";
//  }
eldrupal’s picture

eldrupal commented

Right on @soxofaan. Yes, the files dir is linked to an image dump containing thousands of files! Disabling the scanning code solved the problem. Thank you for providing rapid support and thank you for creating this wonderful spam-killing module :-)

I would like to suggest that you consider i) making the search optional with a check box; and 2) permit the admin to specify the directory targeted for search. That would be awesome!

Cheers,
~DrupalFan

soxofaan’s picture

soxofaan commented
Title: Image CAPTCHA Admin Interface Inaccessible - Runs Indefinitely! » Make scanning of files folder for fonts optional (D6) or drop it altogether (D7)
Version: 6.x-2.1 » 6.x-2.x-dev
Category: support » feature

I'm even tempted to just drop the scanning of the files directory.
In #496204: Configurable font storage location (eg. /usr/share/fonts), we added scanning in folders sites/all/libraries/fonts and sites/example.com/libraries/fonts. This is much better than the files directory, which was the only option originally.

But maybe it's best to make it optional for the Drupal 6 version
and drop it for the Drupal 7 version

eldrupal’s picture

eldrupal commented
Status: Active » Closed (fixed)

Sounds good and it is in very good hands. I am closing this issue since you have already address it. I look forward to future releases of a module that make it possible to run interactive websites (and without relying on external services).

Cheers,
~DruaplFan

soxofaan’s picture

soxofaan commented
Status: Closed (fixed) » Active

Please leave it active, because It's not fixed yet :)

soxofaan’s picture

soxofaan commented
Title: Make scanning of files folder for fonts optional (D6) or drop it altogether (D7) » Make scanning of files folder for fonts optional for D6 version (already dropped in D7 version)

commit http://drupal.org/cvs?commit=453490 from #670810: Port to Drupal 7 removed support for the files directory, so this issue is fixed for the Drupal7 version.

japerry’s picture

japerry
Location KOMK
commented
Status: Active » Needs review
StatusFileSize
new image_captcha_files_dir.patch935 bytes

This issue is not fixed for 6.x version. And causing issues. The default array for scanning has the correct paths entered, but the admin page that calls the function passes in the files directory, negating the default paths.

Attached is a patch to remove that call and use the defaults only.

Status: Needs review » Needs work

The last submitted patch, image_captcha_files_dir.patch, failed testing.

abautu’s picture

abautu commented
Status: Needs work » Needs review
StatusFileSize
new www.patch3.19 KB

I have this issue too. Our files directory is on a SAN with 20GB+ and 200K+ files. Scanning all them by default would take ages. I created a patch that allows users to set extra folders to scan (one or more local dirs and/or the drupal files (sub)folders). By default it turns off files scanning thus breaking compatibility with current code (intentionally). It's patched against 6.0-2.5.

Cheers,
Andrei

soxofaan’s picture

soxofaan commented
StatusFileSize
new captcha-737832-nofilesscan.patch2.13 KB

I'm not sure if this is worth all the hassle of making it optional (note that explode(":", ..) of an empty string does not return an empty array).

Why not just drop support for the files directory in D6 completely?
There are security and performance reasons to do so.

abautu’s picture

abautu commented

I personally don't use the files feature, but I didn't want to just take it away since D6 version has it already. Maybe others rely on it.

I also wanted to make it customizable in case other want to use some different folders.

Related to explode and empty string, there is a if ($extra_paths). I think that's ok, right?

wundo’s picture

wundo commented
Issue summary: View changes
Status: Needs review » Needs work
wundo’s picture

wundo commented
Status: Needs work » Closed (outdated)