• jwt@programming.dev
    link
    fedilink
    English
    arrow-up
    3
    ·
    4 months ago

    So we just invert the logic now, right?
    Make the captcha impossibly hard to get right for humans but doable for bots, and let people in if they fail the test.

  • Bone@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    4 months ago

    Bro, everytime I get the select all the ‘x’ tiles (motorcycle, bicycle, bus, etc) one I never know if it means “all” of them, like even ones with just a little bit on the tile. Does it want the tires, too? It’s bullshit. Never seems to be correct, what I select.

    • Ad4mWayn3@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      4 months ago

      Do it slowly and don’t be consistent, sometimes I select the tile with 3 pixels of the thing its supposed to contain, sometimes I leave 2 or 3 tiles that clearly contain the thing, sometimes I just select a tile that doesn’t even match. Idk, it always works, I suppose the erratic behavior is what shows them I’m human or smth

    • kambusha@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 months ago

      I don’t think it matters, as that isn’t the real test. Instead, it’s testing whether you are “behaving” as a human. Mouse movements, hesitation etc.

    • ultranaut@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      4 months ago

      I’ve always done any square that includes any part of the thing, so the tire on the bus or the helmet of the motorcycle rider. That no longer works for me though, recently I keep getting more images and they seemingly never stop so I just give up on whatever I was trying to load. Its pretty ridiculous how shit the internet has become.

      • FutileRecipe@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        4 months ago

        so the tire on the bus

        Ok, part of the bus.

        the helmet of the motorcycle rider

        The helmet is not part of a motorcycle. I will fail that captcha every time if it requires it.

      • Eril@feddit.org
        link
        fedilink
        English
        arrow-up
        0
        ·
        4 months ago

        By now I’m up to filling one of these things. If they show me a second one, I’m out. Not wasting my time training some AI

        • hendrik@palaver.p3x.de
          link
          fedilink
          English
          arrow-up
          0
          ·
          4 months ago

          I think they don’t train AI with captchas anymore. That used to be the case 10 years ago when we put in all the house numbers for google maps. but as far as I know they learned to do it cheaper without the captcha service. as of now (and for some time already) the results are just wasted.

          • webghost0101@sopuli.xyz
            link
            fedilink
            English
            arrow-up
            0
            ·
            4 months ago

            Half of them are literally traffic identification and i am skeptical of those 3d orientation ones also.

            • hendrik@palaver.p3x.de
              link
              fedilink
              English
              arrow-up
              1
              ·
              4 months ago

              For some time I’ve occasionally used the ones for the visually impaired because they were easier to get right. But they also messed those up. I get a load of fire hydrants, cars, stairs and bicycles and motorcycles and traffic lights. Sometimes the pictures just repeat. I don’t think the stock of images is that big. But they could look at other things instead of just correctness. Like your mouse movement and how long it takes you. Not sure if they do that.

    • CosmoNova@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 months ago

      You‘re doing it too fast most likely. Try doing it very slowly instead. I recently realized most captchas are designed for seniors, not tech savvy people. They will keep throwing them at you if you‘re too good at them. I think the joke that one day only AIs can solve captchas so you have to fail at them in order to be recognized as human has long become a reality in a way. Hope that helps.

    • Dark Arc@social.packetloss.gg
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      4 months ago

      I hate that captcha – the Google captcha where a single image (like a picture of a street with traffic lights, bikes, buses, etc) is divided up – it is the worst one by far.

      • GamingChairModel@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        4 months ago

        I’ve always thought it was intentional so that humans could train the edge detection of the machine vision algorithms.

      • locuester@lemmy.zip
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        4 months ago

        You can just click a couple squares and hit ok. It doesn’t have to be right.

  • FuzzyRedPanda@lemm.ee
    link
    fedilink
    English
    arrow-up
    1
    ·
    4 months ago

    If some sites only need me to click the one checkbox to prove I am a human, why aren’t ALL sites using this method?!

    • kiagam@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      4 months ago

      when you have to click once, means they have been gathering all your actions up to that point, and for sure you are human. If you get asked to click images, means they don’t have enough information yet, or you failed some security step (wrong password) and the site told captcha to be extra sure

  • A_Random_Idiot@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    4 months ago

    am I gonna need an AI to solve captchas now?

    cause they’ve gotten so patently stupidly ridiculous that I cant even solve them as a somewhat barely functional biological intelligence.

  • Wistful@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    0
    ·
    4 months ago

    So what would be a good solution to this? What is something simple that bots are bad at but humans are good at it?

    • theneverfox@pawb.social
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 months ago

      I think this is a non-issue

      Captchas aren’t easy to bypass - run of the mill scammers can’t afford a bunch of servers running cutting edge LLMs for this

      Captchas were never a guarantee - one person could sit there solving captchas for a good chunk of a bot farm anyways

      So where does that leave us? Sophisticated actors could afford manually doing captchas and may even just be using a call-center setup to do astroturfing. My bigger concern here is the higher speed LLMs can operate at, not bypassing the captcha

      Your run of the mill programmer can’t bypass them, it requires actual skill and a time investment to build a system to do this. Captchas could be defeated programically before and still can now - it still raises the difficulty to the point most who could bother would rather work on something more worthwhile

      IMO, the fact this keeps getting boosted makes me think this is softening us up to accept less control over our own hardware

    • OsrsNeedsF2P@lemmy.ml
      link
      fedilink
      English
      arrow-up
      0
      arrow-down
      1
      ·
      edit-2
      4 months ago

      I work in a related space. There is no good solution. Companies are quickly developing DRM that takes full control of your device to verify you’re legit (think anticheat, but it’s not called that). Android and iPhones already have it, Windows is coming with TPM and MacOS is coming soon too.

      Edit: Fun fact, we actually know who is (beating the captchas). The problem is if we blocked them, they would figure out how we’re detecting them and work around that. Then we’d just be blind to the size of the issue.

      Edit2: Puzzle captchas around images are still a good way to beat 99% of commercial AIs due to how image recognition works (the text is extracted separately with a much more sophisticated model). But if I had to guess, image puzzles will be better solved by AI in a few years (if not sooner)

  • Lvxferre@mander.xyz
    link
    fedilink
    English
    arrow-up
    0
    ·
    4 months ago

    Ditching CAPTCHA systems because they don’t work any more is kind of obvious. I’m more interested on what to replace them with; as in, what to use to prevent access of bots to a given resource and/or functionality.

    In some cases we could use human connections to do that for us; that’s basically what db0’s Fediseer does, by creating a chain of groups of users (instances) guaranteeing each other.

    • shortwavesurfer@lemmy.zip
      link
      fedilink
      English
      arrow-up
      0
      ·
      4 months ago

      Proof of work. This won’t stop all bots from getting into the system, but it will prevent large numbers of them from doing so.

      • Dark Arc@social.packetloss.gg
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        1
        ·
        4 months ago

        Yeah proof of something (work, storage, etc) seems like the most promising direction… I think it’s definitely going to raise global energy consumption further though which kind of sucks.