CloudFlare shows Tor users the way out of CAPTCHA hell CloudFlare has backed up its promise to get rid of the CAPTCHAs that Tor users complain discriminate against them. The content distribution network's (CDN's) hated CAPTCHAs make browsing an unhappy experience for Tor users by offering rather too many challenges. Worse yet, they drop a cookie on validated users' browsers and …
I never fail to giggle at it, but 'nonce' is a long established term in the fields of crypto based authentication. It is just a random blob of data that is generated on demand. basically it is unique and unpredictable so it can be used to establish a challenge for proof of possession of a key and a differentiator between different transactions.
As the actual value is irrelevant I guess that the name comes from a contraction of nonsense.
It's not only Tor users that are afflicted with this scourge - VPN users get hit with it as well. Given that in Australia VPN use is practically mandatory thanks to Brandis' snoop laws, Cloudflare's fucking captchas have made surfing the internet a trip through hell.
I got to the point where, every time I faced one, I would deliberately spend at least 5 minutes reporting one after another as having no valid solution, just for the fun of screwing with their system. After my complaints to Cloudflare went unanswered, I found that posting this act as a suggestion on 4chan seemed to popularise this kind of attack. I wonder if the resultant mess this would have made of their captcha system being flooded with false invalidity reports had an effect on their decision to find another solution!
Try it with JS off: They make them longer and deliberately undecipherable then. The [data mining and/or NSA front] bastards.
Not convinced this "solution" is much of an improvement either. A fucking plugin?!?!?!!!one
Seems like some committee somewhere has spent a long time carefully contriving a gratuitously Machiavellian pseudosolution.
A blind person can't use the visual ones for obvious reasons, & the audio ones are often impossible to listen to such that you can't understand what the fuck they're trying to say in them. "Was that Bat? Cat? Hat? Chat? The warble tone in the background screws it up!"
And because THEY have created a challenge that only sight or hearing unimpaired people can deal with, suddenly the fact that I'm disabled means I'm no longer Human as far as the site is concerned.
Fuck that & fuck them. I fire off an angry email to the site's maintainer telling them of this artificial & discriminatory barrier, & why they need an ass kicking from anyone & everyone they have similarly disparaged.
If your CAPTCHA can be thwarted by a reasonably sofisticated ChatBot but not a Disabled person, then you're not keeping out the very elements you think are misusing your system.
*Extremely rude gesture involving a blind cane, a hearing aid, & an Assistive Technology device*
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
