The CAPTCHA is a feature intended to distinguish human from machine input and protect websites from the spam and different types of automated abuse. Imunify360 uses reCAPTCHA service.
There are two layers in CAPTCHA behavior:
1. If a user of a website is added to the Grey List (the access is blocked), then the CAPTCHA allows him to unblock himself. When he tries to get to the website he is redirected to the Captcha Server by ipset, where he can see the protection page asking to confirm that he is not a robot by ticking a checkbox.
Note. The IP address on the screenshot above is given as an example.
If successful, a user is redirected to the website, which means that the access is unblocked and the IP address of this user is removed from the Grey List.
It is also possible to enable the invisible reCAPTCHA via the Imunify360 Settings page. With the invisible reCAPTCHA enabled, a human user is not required to go through human confirmation - the process will pass under the hood and a user will be redirected to the website. In case if invisible reCAPTCHA failed to detect if a user is a human or not, then visible reCAPTCHA appears.
2. The CAPTCHA is always on guard of the websites and checks the activity of each IP. With the help of reCAPTCHA it blocks bots and protects websites from spam and abuse. To learn more about reCAPTCHA follow the link.
The reCaptcha supports localization. Depending on user’s browser settings, reCaptcha will use the browser default language and allow to change it:
To modify footer, header or body of the CAPTCHA use the templates in /var/imunify360/www/captcha/templates/.
There are three files:
•body.tpl - main template file, modify it as you wish. CAPTCHA goes above all the layers.
To find information on supported browsers follow the link - https://support.google.com/recaptcha/answer/6223828.