>>>Hi,
>>>
>>>A customer mentioned to me that they would like to improve security of my ASP.NET application by adding the "capture" feature (this is what it sounded to me like on the phone). Has anybody done this feature? What is involved?
>>>
>>>TIA
>>
>>I would recommend the Telerik Captcha control (not free) or this one:
http://www.codinghorror.com/blog/2004/11/captcha-control-coda.html (free).
>
>Thank you. But the more I think about this issue the more I am finding (in my memory) that I never see this type of entry validation on authenticated sites. That is, whenever I have to enter my user name and password I am not prompted to enter the "key" value. Only where the posting is anonymous (like making a comment to a blog or something like that) you have to enter the Captcha characters.
I can possibly see the use on a login form, when somebody could try some sort of brute force attack.