Well fair, I do know Asirra is much more difficult to break then reCaptcha for computers. It might also be easier for humans to do as well ( a few clicks instead of the need to type). It could replace the two captcha systems with one (math+reCaptcha with Asirra).
But I am not going to push the topic if no one else thinks it is a good idea. I do not know the compatibility or reliability of the system, and there is always the ever present "don't fix what isn't broken" mantra as well.
I'd prefer math+Asirra over just Asirra, because I'm pretty sure simply making the system on this wiki slightly unique, can break a significant subset of ageneric wiki-spamming setups. It's not like we're in the situation of wikipedia or other large sites where people would modify their spam tools specifically for this site.
I'm also pro-Asirra, but also content to leave our current setup if it's working.
I don't know if it's machines or people cracking the captchas. I know there exist people cracking captchas, but I'm not sure if we're a high profile enough target to make that worth while. I use Asirra on the BerryBots wiki and it's completely shut down any spammy registrations. (I think I was getting ~1 a day before that.)
From what I hear, the people-cracking of captchas are usually done by embedding the captcha from another site into a site for warez or porn, then the customers solve them to 'prove they are human' or whatever without realising they are facilitating spam.
I'd also rather do something custom, simply because it means that automated tools will never be able to crack it if they haven't been designed for it. It's only a matter of time before Asirra is cracked and we have revolutionary advances in object recognition =)
Are you? I didn't know you were using it on the BerryBots Wiki.
I would still like to see if it by itself can completely mitigate the spam here on the wiki by itself (if only because I am curious now).
If you want, I would be okay with trying a switch to just Asirra for account registration, so long as we keep the UrlStopper extension to block external links from brand-new users. That way no damage can be caused. I could also set up UrlStopper to log events when it is triggered, to confirm whether random user names that registered try to spam. I'm feeling like behavior-based filtering like UrlStopper is really much more effective than "figure out if you're a human" systems can ever be anyway.