I can no longer solve ReCAPTHCA captchas
For a time there were lots of number based captchas on ReCAPTCHA using sites - presumably for Google Maps - but now they all appear to be a random mixture of letters. I can not solve them.
They're things like "rnmnnihmr" which is barely legible in plain text but when obfuscated - grunged, blurred and waved - I find it's taking about 8 tries before I guess the answer correctly.
Reportedly there are bots getting 90% correct.
Mainly this is just a statement of frustration but in part it's a question of "doesn't this mean we've largely solved OCR now?".
[I think the last time ReCAPTCHA was discussed was this - https://news.ycombinator.com/item?id=6615326.]
68 comments
[ 3.2 ms ] story [ 133 ms ] threadIf I have to reload because there's no way I can work out if that character is "in" or "rn" or "m" or "hi" or whatever then I'm not going to be coming back.
It has a direct benefit to users who are readers (since it reduces the spam they are subject to) and users who are contributors of things they want read (since it reduces the spam that their contributions would otherwise be buried in).
I started reading Engineering Security, by Peter Gutmann. Excellent book, btw. At the start of the book he discusses security theory vs. reality. One thing he describes is the "most ineffective CAPTCHA of all time" (according to mainstream security theory). This "ineffective" CAPTCHA on a blog required exactly one thing: the user had to enter the word "orange."
Surprisingly, the blog received zero spam. The reason it's so effective is because it's different. Whereas CAPTCHA is a monoculture. Standard CAPTCHA fits into the economic model for spammers. But for spammers to adjust their behavior for just this one blog? It's not worth it for them.
http://www.businessinsider.com/luis-von-ahn-creator-of-duoli...
And who's to say that the competitor site won't employ human verification more annoying than reCAPTCHA?
Of course this depends on personal preference, but for me I loathe being asked for my phone number.
http://googleonlinesecurity.blogspot.com/2013/10/recaptcha-j...
I guess google thinks you are a robot.
I dunno, in my experience I usually don't second-guess google. Sorry to break it to you.
But killing high-speed bots does seem achievable, and I'll bet that's all they really care about.
The other is so you translate for them digital photography into text. Those assholes make us waste time so they make money.
And for the love of all that's holy I wish they'd stop using characters that are impossible to distinguish in the mangled font. Is that 0? O? 1? I? l?.
Also, if they're going to make it case-sensitive, they shouldn't use ANY characters that look almost the same in upper and lower-case (especially when there's no baseline). Is that p? P? w? W?
If ACow_Adonis then recaptcha(warpandobliterate("mnmnvwvvo0Ol1I|"))
There is some sort of control though, going to the Google Account creation page will only give you easy captchas. Possibly an undocumented API or a custom build, we can't know for sure.
http://www.getelastic.com/6-captcha-alternatives-to-improve-...
http://areyouahuman.com/demo-playthru/
EDIT: I found their demo page.
I'm a big fan of Funcaptcha, it's much easier to solve.
http://funcaptcha.co
I hate CAPTCHA, and avoid using sites that require me to use them every time I post a comment even though I'm a registered user of the site.
but that aside, I have the same problem you have, can't solve them :S which is retarded, because they are meant to tell humans and robots apart, but apparently "everyone is a robot" is good enough.
It's not hard to combat spam without forcing such nefarious acts onto your users.
My biggest frustration with captchas isn't even having to try multiple times, it's having to enter most or sometimes all my info again and again.
I know this is not really reCAPTCHAs fault but the font-end guys, still what I would love to see is an independent reCAPTCHA-submit, meaning I don't have to submit the complete form and hope I guessed correctly, instead I only submit after I know I nailed the challenge. Similar to email-verification or password-strengh-checks it could report this to me on-the-fly.
http://www.nucaptcha.com/
A MILLION times better. It's actually a pleasure to use. I've had no problems with it at all. Go to my website websmithing.com if you want to see it in action.
Death to reCaptcha. Your usefulness as a product is diminishing.