FUCK RECAPTCHA

[Enerccio]

This is honestly the WORST fucking thing imaginable. According to it I am robot most of the fucking time. Not only it uses terrible images (how the fuck do I determine what is a storefront when I see kanji crap etc) it fails almost all the time, it won't detect corner cases like (like does fucking pedestrian traffic light apply? Do you select tile if just part of fucking thing is in the view?). It's absolutely fucking retarded. I would rather have fucking bots posting spam everywhere but this shit. Delete this google and start again.

[rowan-m]

This repo is for the client code for developer that need to verify their response to the API. I understand that the challenges can be frustrating. You might want to consider contacting the sites where you're experiencing this to advise them to update to the v3 version of the service which presents a confidence score rather than blocking with a challenge.

[Enerccio]

lol hilarious picture was removed

[tophat1986]

This is honestly the WORST fucking thing imaginable. According to it I am robot most of the fucking time. Not only it uses terrible images (how the fuck do I determine what is a storefront when I see kanji crap etc) it fails almost all the time, it won't detect corner cases like (like does fucking pedestrian traffic light apply? Do you select tile if just part of fucking thing is in the view?). It's absolutely fucking retarded. I would rather have fucking bots posting spam everywhere but this shit. Delete this google and start again.

We're missing ReCaptacha on here to stop angry abusive bots!

[amcgregor]

While the tone distracts from the overall feedback, the submitter’s concerns are entirely valid. Captcha hurts user experience. ReCaptcha is somewhat broken, with the “fix” only increasing success rates (~85% → 90%). If the problem is to slow down attackers while not unduly harming legitimate user experience, this system, as currently implemented, fails utterly and completely.

By comparison, “proof of work” systems such as this can be transparent to the user (“unlock” when focusing the first field) and completed by the time the form is filled out, if legitimately typing as a human do. Additionally, you can adjust the work difficulty based on request rates; clients trying to go too fast can be directly slowed down. (Plus replay / stale use prevention, avoidance of pre-calculation by use of challenges, …)

[Enerccio]

This is honestly the WORST fucking thing imaginable. According to it I am robot most of the fucking time. Not only it uses terrible images (how the fuck do I determine what is a storefront when I see kanji crap etc) it fails almost all the time, it won't detect corner cases like (like does fucking pedestrian traffic light apply? Do you select tile if just part of fucking thing is in the view?). It's absolutely fucking retarded. I would rather have fucking bots posting spam everywhere but this shit. Delete this google and start again.

We're missing ReCaptacha on here to stop angry abusive bots!

I wish I was a bot so it would be justified. On my work laptop I simply skip all websites that require captcha because I know I will spend 10 minutes at least getting it. If I will ever be able to. That is a huge issue and sometimes I it just boils over and I get really angry and vent my frustration (like here). It is incredibly slow, annoyingly vague (lot of the times part of hydrant or traffic lights goes over tile and then what?) and even worse, sometimes if you don't solve it in time, the original website will time you out, issuing another captcha. How utterly ridiculous is that?

[ghost]

The swearing is a bit much!

But the sad truth is a university project created a bot that can trick Google ReCaptcha with a success rate of 91% accuracy for V2.

You can see the full details here: https://github.com/ecthros/uncaptcha2

I am sure they can get a high success rate with the V3 as well.

The things I hate about Google ReCaptcha:

• Their CSP is poor on a broad range of browsers e.g. This github repo suggests Nonces but there are known issues with IE11, Edge and Safari IOS.
• The Widget is not properly responsive. You have to hack it to make it work for Mobile devices!
• No proper AMP-HTML module yet for Google ReCaptcha (so makes their AMP Forms Pointless and Open to Spam).
• Actually has a poor success rate against bots in many public and private studies.

[FatBirdie]

Enerccio completely agree. Trying to install it on a website, having issues with PHP. Should take 5 min to fix. Its been an hour now, still clicking these god damn fucking images. May whoever made reCaptcha burn in hell, seriously, in hell.

[tophat1986]

Enerccio completely agree. Trying to install it on a website, having issues with PHP. Should take 5 min to fix. Its been an hour now, still clicking these god damn fucking images. May whoever made reCaptcha burn in hell, seriously, in hell.

Why are you not using reCAPTCHA v3 which does not use images? All these concerns and frustration are now gone as it runs invisibly in the background giving you control on the scoring and actions to take now.

[Enerccio]

Enerccio completely agree. Trying to install it on a website, having issues with PHP. Should take 5 min to fix. Its been an hour now, still clicking these god damn fucking images. May whoever made reCaptcha burn in hell, seriously, in hell.

Why are you not using reCAPTCHA v3 which does not use images? All these concerns and frustration are now gone as it runs invisibly in the background giving you control on the scoring and actions to take now.

I am not using anything, I am being affected by other websites using this shit,

[asdfzxh8]

This is honestly the WORST fucking thing imaginable. According to it I am robot most of the fucking time. Not only it uses terrible images (how the fuck do I determine what is a storefront when I see kanji crap etc) it fails almost all the time, it won't detect corner cases like (like does fucking pedestrian traffic light apply? Do you select tile if just part of fucking thing is in the view?). It's absolutely fucking retarded. I would rather have fucking bots posting spam everywhere but this shit. Delete this google and start again.

We're missing ReCaptacha on here to stop angry abusive bots!

u fking retax idt, anything who supports recaptcha is stupid

[asdfzxh8]

lol hilarious picture was removed

no such thing as hilx or not

[faelnor]

I would like to reopen this issue as recaptcha is the fucking worst. I will now give up on logging into most websites because of how many series of buses or fire hydrants I need to recognise. I am not here to spend several minutes (no exaggeration, I just went through four series of grid recognition and ended up giving up) to train your AI.

Steps to reproduce:

1. Use recaptcha

Now, I agree that ranting against open source software without doing anything is not productive, so in my spare time I have worked hard on a fix and I think I got it right. For some reason I cannot commit to a branch, so here are the full steps to reproduce the fix:

1. Completely delete this repository
2. Wipe recaptcha from the face of the Earth

Thanks in advance. 👍

[MasterSirae]

may I just download the code, completely erase it and push it to master and call it the V4 ? PLEASE !

[amcgregor]

@tsmith-starcard On one hand, double-posting an expletive-containing comment and cleaning up after yourself. On the other hand, twice as much e-mail dissatisfaction that can't be unsent. On the gripping hand, uncaptcha has been linked several times in this thread, and someone's even done you the favour of packaging it up as a browser extension to eliminate the problem for you, across the web, with the minimum amount of effort possible. But please do RTFM and see the warnings there.

[zavan]

https://kevv.net/you-probably-dont-need-recaptcha/

[Enerccio]

https://kevv.net/you-probably-dont-need-recaptcha/

very nicely written article!

[amcgregor]

https://kevv.net/you-probably-dont-need-recaptcha/

I wish it did more than mention Proof-of-Work in a single sentence second paragraph from the end, which I see as the ultimate solution to this problem. Zero friction for real, naturally born humans, since they type at a slow and predictable rate, all the friction for automated agents, dynamically adjustable difficulty for abusive humans (and abusive agents). But otherwise, indeed, a nearly exhaustive summary! Well done!

There's two additional non-technical "breaks" in ReCaptcha that are worthy of mention, though: social engineering (putting the captchas you want to automate solving as a gateway to something users don't mind a little friction to access, such as porn), or Amazon's Mechanical Turk by filing HITs to solve the captchas. (Between 5 and 15¢ for 1-1000 solutions.)

Both approaches have been utilized in the past. (Notably, a porn site was caught automating Yahoo! Mail captchas this way.)

[Fyrestar]

Seriously Recaptcha is the most stupid verification "solution" existing, neither does it tell if minimally intersecting tiles do count, nor does it even work correctly. And the audio challenges are mostly impossible to understand as human.

[Photogad]

Just came here to say fuck captcha, as well. Whoever invented it should have never been born. Ive actually done some math. I spend on average 7 minutes of my life every day solving captchas. With 365 days in the year, thats 42 hours per year; 210 hours in the last 5 years (8.75 days) of my short life here on Earth that I will never get back. Fuck you . 😁

[amcgregor]

…I actually care about the world, unlike Google here.

Such statements are hilariously self-defeating in their argumentum (reductio) ad absurdum. No corporation cares about the world, that's a silly basis for belief in their behavior. Corporations only have one actual duty: the fiduciary responsibility towards their investors. That's it, period, do not pass go, do not collect $200. And, unfortunately, once something exists and begins being widely adopted and used, it gains momentum. Just imagine all of the SLA contracts Alphabet/Google might be involved with which involve continued support of this system.

Whoever invented it should have never been born.

This is just terrible. In a web development chat room I moderate, we have a rule: you can go off on a tirade about a technology, or even a company (being a faceless non-human entity), but people aren't to be targeted. They're doing their job. You / we might not agree with it, but they still have a job to do. Don't make someone feel terrible for not getting fired, the developer themselves aren't responsible for how the resulting product is used. (Using figures I recall from US military estimates in the 90's, you're claiming that 8.75 days of your life is worth more than the ~1.9 million dollars of the entirety of someone else's life. Good. Lord. I'm hoping you just don't quite realize what you're saying.)

[Photogad]

…I actually care about the world, unlike Google here.

Such statements are hilariously self-defeating in their argumentum (reductio) ad absurdum. No corporation cares about the world, that's a silly basis for belief in their behavior. Corporations only have one actual duty: the fiduciary responsibility towards their investors. That's it, period, do not pass go, do not collect $200. And, unfortunately, once something exists and begins being widely adopted and used, it gains momentum. Just imagine all of the SLA contracts Alphabet/Google might be involved with which involve continued support of this system.

Whoever invented it should have never been born.

This is just terrible. In a web development chat room I moderate, we have a rule: you can go off on a tirade about a technology, or even a company (being a faceless non-human entity), but people aren't to be targeted. They're doing their job. You / we might not agree with it, but they still have a job to do. Don't make someone feel terrible for not getting fired, the developer themselves aren't responsible for how the resulting product is used. (Using figures I recall from US military estimates in the 90's, you're claiming that 8.75 days of your life is worth more than the ~1.9 million dollars of the entirety of someone else's life. Good. Lord. I'm hoping you just don't quite realize what you're saying.)

Life > All. You only live once. Sorry I don't believe in an afterlife. The fact that they designed a product that's main purpose seems to be forcing people to waste their time, is nothing less than evil and cruel.

[amcgregor]

You only live once. Sorry I don't believe in an afterlife.

Really not sure how you went from my use of military estimates of the sum total value of a human life (combining training costs + lifetime productivity) in relation to you claiming that a tiny fragment of your life is more valuable than the entire life of the developer(s) involved… to an afterlife… says more about you than me, I fear. My use of "Good. Lord." was purely as a generally understood mild expletive of disbelief. In French, there's an even more colourful go-to: tabernac! ;P

Yes, Captcha/reCaptcha "sucks". There seems to be a general consensus on that. But there's absolutely no need to specifically target individual human beings with hatred. Ever. Especially, especially when there are automated solutions to eliminating the problem everywhere, for example, the AntiCaptcha browser plugin. (See also the unCaptcha/unCaptcha2 links that have been supplied multiple times throughout this discussion.) I haven't been forced to solve one in two years, excluding one on a Blogger site I tried to "play nice" with to test, and ended up needing to solve just shy of 30 distinct object matches. (Test: failed. Plugin: re-enabled. ;)

[hwvs]

It's completely useless against bots (there are 3rd-world click farms to solve it) and it's hostile to real users (why would Google want bots training their self-driving cars?). Additionally the data collected is most likely a huge GDPR violation for any sites that use it. Almost anyone is better off rolling their own captcha.

[bs444]

you're claiming that 8.75 days of your life is worth more than the ~1.9 million dollars of the entirety of someone else's life.

Bad math, @amcgregor. 8.75 days... multiplied by the ENTIRETY of the human population is DEFINITELY worth more than "the ~1.9 million dollars of the entirety of someone else's life." The majority of the human population now relies on the Internet, and has two choices: 1) allow Goolag's EVIL cookies and submit to monkey training exercises that benefit Goolag, or 2) deal with being labeled "inhuman" and locked out of ESSENTIAL services, not just to "protect against bots", but as PUNISHMENT for blocking cookies/trackers. Do you realize many government services are now placed behind Goolag's EVIL cookies + captchas? If you don't let Goolag spy on you, and treat you as an AI-training bot, then no (healthcare, insurance, access to documents) for you!

Also. Fuck recaptchas.

Also, being a reddit moderator doesn't make you special.

[sysdl132]

please see: before you say "fuck recaptcha"

[Enerccio]

the biggest issue is that google is too big of a company to lodge ANY customer feedback at all

[amcgregor]

Glad this was finally closed; may be worthy of locking, as the earlier turnaround from strongly-worded negativity to constructive discussion has broken down. Commentary like @bs444's makes it difficult for me to not more directly violate the code of conduct.

deal with being labeled "inhuman" and locked out of ESSENTIAL services…

Then… get better at humaning? :winces and hopes that's the closest she gets with tongue in cheek: Anything worth doing twice is worth building a tool to do it for you: tool building and use is the hallmark of the human being. If it's essential, that only increases the importance of automation.

Tools such as the ones mentioned and linked here and here (even packaged up as a trivial browser extension) within this very thread—scroll up, or casually searched for—"solve" this inconvenience. Easily. Which is ironic given the purpose of this "protection", sure.

While, yes, there is fairly universal agreement as to the harm to user experience captchas… incur… the level of frustration and tilting at windmills frequently demonstrated is unconstructive. A reaction (i.e. 👍) is a vote; it might not always require more (debatably unhinged) tilting:

allow Goolag's EVIL cookies and submit to monkey training exercises that benefit Goolag

Like, get a cookie blocker or configure your browser's policies correctly. Or… what?

Also, being a reddit moderator doesn't make you special.

Reddit? Yours is the first mention. The actual reference you may be confused about was the context of IRC channel moderation for an example on the limitations of acceptable conduct in regard to expressions of exceptional displeasure. Tilting at the context of an example… of a policy on strong language use… is also rather conversationally unproductive, I am very sorry to say. 😕

I am going out of my way to provide/share/point out actual solutions to these frustrations, and heck, I don't even work for Google (if they even seemed to care about the user experience in this situation). Get a solver extension and live a happier life in a world largely free of captchas. Edited to add: and take complaints about captcha use to the sites making use of them. Not the software provider providing the tool. Evil is in how it's used, abused, mis-used, or over-used.

[bs444]

Evil is in how it's used, abused, mis-used, or over-used.

Duh. Goolag witholds the keys to the doors of critical websites so long as one doesn't submit to storing and letting Goolag read pieces of information on my user agent related to my browsing. Don't pretend you don't know how this very repo is used to propagate Goolag's agenda.

Thanks for your concern; I do have my browser configured 'correctly' for me. 'Incorrectly' in the opinion of Alphabet.

Example on why Recaptha is Evil: Build Chromium from source, preventing communication with all of Goolag's servers other than www. Navigate there for simple search test (to see if results are no longer bubble-ified) -> captcha that resets every 5 mins; or takes 10 AI-training sessions; or worse, never lets me through. Same policy applies to any site that uses recaptchas.

Example on why Goolag cookies are evil: Watch over-the-air tv with an internet-connected (mandatory or it won't work) spy-smart-tv, watch a random show out of curiosity. TV tells Goolag what this IP watched, through some closed-door business deal. Use same IP address to go to youtube.com on separate device. Go to new network under new IP address, private mode. Sign into youtube. "Suggestions" for topics regarding random TV show I watched. THIS. IS. EVIL. Period.

Freedom. As a user, I should be free, or be ABLE to be free, from cookies of, without punishment or retribution.

Usability. As a user, I should be able to... use... critical websites completely without sacrificing my decision to boycott and remove Goolag from my life. As one user said, having bots on a site is better than dealing with recaptcha.

Clarity. As an institution, Goolag should publish EXACTLY how they use the cookies. Not just "we collect info to improve user experience." But something like, "we use the user id to match your smart device recordings to every move you make in your home, across the internet, and in your work, in your most intimate settings. we store this unencrypted in a database we cross reference every time you visit any site with a doubleclick cookie. this database is accessible to three-letter-acronyms at any time. we also trade information to and from companies like mastercard and experian."

Knowledge. As a human, knowledge is the most important thing in this era. Goolag code is increasingly anti-knowlege-they-dont-want-to-deal-with. Stop with cancel culture. Stop with censorship.

[Enerccio]

Glad this was finally closed; may be worthy of locking

What is wrong with people who want to censor others?

[amcgregor]

To summarize a comment left elsewhere, sans… amusing railing against this kind of thinking:

…so long as one doesn't submit to storing and letting Google read pieces of information on my user agent related to my browsing.

• Learn what a "cookie" is.
• Learn about the cookie security model.
• Learn what a "user-agent" is.

Don't pretend you don't know how this very repo is used to propagate Google's agenda.

• Don't rope me into this. </Mr-Meseeks>
• Learn what a repository is / is for.
• Please load simple, useful words with less conspiracy theory. Not too dissimilar to the common misunderstanding over what "hearsay" means.

So forth, so on, already agree re: sub-optimal UX, already mentioned automated solutions which utterly resolve the issue several times, didn't bother reading the Chromium license agreement, something correlation / causation, …

As an institution, Google should should publish EXACTLY how they use the cookies. Not just "we collect info to improve user experience."

Let me actually stop you there. Like this? Please use a search engine to answer easily discoverable common public inquiries. Which I get some enjoyment out of being able to say, in this context. 😜

The reason I suggest this thread may be worthy of locking is that solutions have been provided, the point has been made and reinforced, further discussion is essentially moot. Though mildly entertaining, if simultaneously paradoxically sad-making.

[Enerccio]

You do realize all your "solutions" are treating symptoms instead of curing the real disease: retarded google captchas.

[merlox]

I just came here to say FUCK CAPTCHA i literally had to solve 20 consecutive fucking image games to create an account for gta 5. Fucking disgusting. Hope someone hacks this shit so it becomes fucking useless.

[clonesia]

• select street signs *
• select bus images *
• select car images*
• select stairs images*
• select crosswalk images *
• select your ass *
• try again* fkin moron !!!

[MunteanuAndreiStefan]

Can you please provide at least one service which is working ok :(. This kind of APIs should be made illegal. I have no problem training your AI. My problem is with your bad service :). Just make it snapy !

[IceCruelStuff]

Its not recaptcha's fault if you're a robot.

[Photogad]

Look, I don't mind captchas in places that make sense to prevent robots, like new account registration on forums and stuff.

But for example, why the fuck do I have to fill out a captcha when I renew my host name on dyndns, when I'm already logged into my account? Wtf. No robots are going to be using my account that I have had for 6 years. Ok, that's just an example. I've seen recaptchas in other places too that were even more retarded.

[Photogad]

Cars? Just "cars"? Do trucks and vans count as "cars"? Here in my region "car" is pretty much used for any motor vehicle.

What about the tiny car in the far distance in the top left tile that you need reading glasses to see?

[Photogad]

I think the bridge on the bottom left tile connects to a hill. I doubt its considered a hill by recaptcha though?

[dmknght]

so I'm the robot now? This kind of selection never works for me

[Fyrestar]

Maybe the ISS is orbiting through the picture.

[Enerccio]

This has to be the most stupid piece of software ever engineered: https://imgur.com/a/1UEPkIR

[tronjsdev]

really waste the time because of this sh*t

[zenkarsha]

who create this shit captcha service will go to hell after he died and solve those captchas over and over again for millions and millions of years

[sysdl132]

The person who created FUCK RECAPTCHA 's account will be blocked?

[Enerccio]

The person who created FUCK RECAPTCHA 's account will be blocked?

what for?

[IceCruelStuff]

The person who created FUCK RECAPTCHA 's account will be blocked?

what for?

for being toxic

[Enerccio]

The person who created FUCK RECAPTCHA 's account will be blocked?

what for?

for being toxic

word toxic lost all it's meaning in 2020 with snowflakes around

[urrri]

stop fucking recaptcha on search

[MasterSirae]

Just came here to add an extra layer of FUCK YOU AND YOUR FUCKING PIECE OF SHIT GARBAGE SOFTWARE

Because you know you might forget how SHITTY it is and you should NEVER forget that !

[Enerccio]

also, I have seen some new captcha software on some pages that work on first try! Beautiful, unlike this crap!