Good implementation, but spammers are better

I used SI Captcha for several years and it served me well. However, spammers got through more and more, to the point of dozens every day. Inspecting the logs, I could see them requesting the post, requesting the captcha image, and then posting spam comments. Either there are smart bots and the captcha isn’t hard enough, or spammers have an easy way to get humans to complete these captchas en masse…

I switched to Conditional Captcha, which I’ve configured to use reCaptcha, and I haven’t had spam since.