Create a problem, sell a solution. I've seen this tactic before in videogames. Make a game grindy as all hell, then offer a "time saver" DLC for a price.
And then they push Yubikey of all things.
this post was submitted on 20 May 2021
14 points (88.9% liked)
Technology
35770 readers
132 users here now
This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.
Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.
Rules:
1: All Lemmy rules apply
2: Do not post low effort posts
3: NEVER post naziped*gore stuff
4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.
5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)
6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist
7: crypto related posts, unless essential, are disallowed
founded 5 years ago
MODERATORS
I clicked on their demo page and couldn't prove I'm a human. Their CAPTCHA is just as shit as all the others.
I also honestly don't know why every service needs a CAPTCHA. Just design your stuff in a way it can't be abused. Not every site has to have a comment section, profiles, APIs and whatnot.
I'm so old I even remember a time where CAPTCHAs were just an idea and nobody used them because they couldn't see the point.
Doesn't the idea of needing a piece of hardware for every CAPTCHA seem even worse? They claim that's going to take 5 seconds?
There are a lot of people pushing for replacing passwords and all sorts of logins with such tokens, so I guess the idea is that if everyone has one of these on their keychain anyways...
I can see the advantages security wise, but I fear that it will lead to a culture of always using the same token and linking that to some official ID. This sounds like something governments would really like, but it would have a lot of privacy disadantages obviously.
On a side note: if that happens, these keys will become fashion accessiors very soon ;)
Why should I destroy my USB slot by constantly pulling the thing out, sticking it in, wiggling with my finger and whatnot?
I have a FIDO2 USB dongle, but I rarely use it. Sonetimes I use the TPM or fTPM of my mainboard. If people used password managers, they wouldn't need these hardware tokens. Apart from the fact you can only store a very limited amount of keys with limited encryption algorithms on them, and I bet the marketing industry finds a way to track you through them.
Captchas are obsolete today. For a long time there have been bots that solve them better than a human. The best example is the browser extension Buster, which solves Google re-Captchas with one click, including the auditory one.
CloudFlare captcha only appear because page ADMIN HAS SET IS firewall on if they change it to low on cloudflare panel captcha will dissapear
But the default setting is still sufficiently annoying for a lot of people. I agree that for most cases they can be reduced.
Plus if you use their IPFS gateway the domain owner doesn't have control of this (and the settings are quite aggressive).