Security Check?

http://www.clicktothemoon.com/

Is there any way to improve the security for that?

What would you recommend for making sure they're not "false" clicks from things like auto-clickers, etc..?

Store last click time in cookie/session and then you can evaluate it through PHP

Well, I made it so there can only be a maximum of 1000 clicks per user session, if that is similar to what you mean? Any other ideas?

People using scripts/bots or whatever to falsify the counter will likely not be storing cookie data or passing along a session cookie. You could throttle the clicks by IP, even to something relatively small like 1 click per second.

In the end, whatever a normal user can do in a browser can be scripted - the web server won't know the difference. If it's really a huge problem, you could put a captcha image on there but that seems like more hassle for the regular visitor than anything else.

You have contributed 50 clicks

and now i'm bored.
good concept though

It seemed like I was getting spammed from about 5 ips at once.. so i've set a new maximum limit of 500 by ipaddress

Since I have to get to 1bill anyways.. I figured 500 spams wont hurt..

and since jd. got bored after 50, I dont think others would do much more than that.

So yeah.. but definately not a captcha.

Well a 1 time captcha might work? or a captcha every 50 clicks.. something like that wouldn't be a big hassle