Probably tripping some client fingerprinting/fraud detection system because it thinks of it as an anomaly mistaking it for a bot or something. Unlikely to be intentional malice against Asahi users.
so the question is should fraud protection err on the side of too lenient, allowing _some_ fraud to go thru to ensure zero innocent users get marked?
Or should fraud protection err on the side of stringency, where all fraud gets caught, but at the cost of getting innocents blocked too (in some greater number)?
I think the real problem is that any website can get a ton of information on your GPU, including vendor, model, supported extensions etc. via WebGL/WebGPU.
Why would anyone use PayPal at the first place? I have only negative experiences with them. Constant blocking, freezing account and then unfreezing it with no explanation why it was frozen in the first place just panacea "fraud detection", chargebacks months after the purchase.
> A lot of people do not have a negative impression of Paypal. They think it always works.
I, for myself, i read a lot of negative stuff about it: accounts blocked because of various reasons, people denied access to their money because of various reasons.
They are not treated as a bank so they evade financial regulations.
For small merchants, it's really easy and convenient for accepting credit card payments from customers. You don't needs sophisticated card-processing stuff on your end (you just send the invoice and redirect the customer to paypal.com), and the fees are (relatively) low and simple, unlike traditional credit card processors that are really geared for big customers. There just isn't much competition in this space, maybe Stripe.
I'd guess this is due to some Paypal fraud protection thing thinking that Linux on M1 is an "impossible" configuration to have and that anyone with that configuration must be spoofing their hardware.
If you click onto the bug she filed, it's also kind of sad/funny that the Mozilla employee responding to it ALSO assumes that nobody can actually run Linux on M1 and renames the bug to "paypal.com - Spoofing as Apple M GPU breaks the login process by triggering a block to the security challenge".
It's a shame because Asahi runs really well on M1 & M2. I hope that they're able to get this resolved and that other issues like this don't pop up in the future.
Wouldn't be a problem if everyone wasn't probing every bit of the User's system for their own ends, but given the incentives we've put in place, that ship has sailed.
12 comments
[ 2.0 ms ] story [ 39.3 ms ] threadGlad to hear that's going to change as well.
It changed a long time ago.
Or should fraud protection err on the side of stringency, where all fraud gets caught, but at the cost of getting innocents blocked too (in some greater number)?
> A lot of people do not have a negative impression of Paypal. They think it always works.
I, for myself, i read a lot of negative stuff about it: accounts blocked because of various reasons, people denied access to their money because of various reasons.
They are not treated as a bank so they evade financial regulations.
Thanks, but no thanks.
If you click onto the bug she filed, it's also kind of sad/funny that the Mozilla employee responding to it ALSO assumes that nobody can actually run Linux on M1 and renames the bug to "paypal.com - Spoofing as Apple M GPU breaks the login process by triggering a block to the security challenge".
It's a shame because Asahi runs really well on M1 & M2. I hope that they're able to get this resolved and that other issues like this don't pop up in the future.