Create a problem, sell a solution. I’ve seen this tactic before in videogames. Make a game grindy as all hell, then offer a “time saver” DLC for a price.
And then they push Yubikey of all things.
I clicked on their demo page and couldn’t prove I’m a human. Their CAPTCHA is just as shit as all the others.
I also honestly don’t know why every service needs a CAPTCHA. Just design your stuff in a way it can’t be abused. Not every site has to have a comment section, profiles, APIs and whatnot.
I’m so old I even remember a time where CAPTCHAs were just an idea and nobody used them because they couldn’t see the point.
Doesn’t the idea of needing a piece of hardware for every CAPTCHA seem even worse? They claim that’s going to take 5 seconds?
There are a lot of people pushing for replacing passwords and all sorts of logins with such tokens, so I guess the idea is that if everyone has one of these on their keychain anyways…
I can see the advantages security wise, but I fear that it will lead to a culture of always using the same token and linking that to some official ID. This sounds like something governments would really like, but it would have a lot of privacy disadantages obviously.
On a side note: if that happens, these keys will become fashion accessiors very soon ;)
Why should I destroy my USB slot by constantly pulling the thing out, sticking it in, wiggling with my finger and whatnot?
I have a FIDO2 USB dongle, but I rarely use it. Sonetimes I use the TPM or fTPM of my mainboard. If people used password managers, they wouldn’t need these hardware tokens. Apart from the fact you can only store a very limited amount of keys with limited encryption algorithms on them, and I bet the marketing industry finds a way to track you through them.
Captchas are obsolete today. For a long time there have been bots that solve them better than a human. The best example is the browser extension Buster, which solves Google re-Captchas with one click, including the auditory one.
Just turn it off on your website https://lemmy.ml/post/64884
CloudFlare captcha only appear because page ADMIN HAS SET IS firewall on if they change it to low on cloudflare panel captcha will dissapear
But the default setting is still sufficiently annoying for a lot of people. I agree that for most cases they can be reduced.
Plus if you use their IPFS gateway the domain owner doesn’t have control of this (and the settings are quite aggressive).
