So, do I need to add a Server Validation beyond what is automatically created using the defaults in From Builder (FB)? (if so, I guess I'm unclear which one to add) There is validation code for the Captcha and Question generated by FB
Here is a link to a stock FB contact form with the security features. I've not altered a thing except changing it from a 2 column to a 1 column format via the FB interface: testcaptcha.php
This sample exhibits the "anything goes" entries for the security features.