this post was submitted on 22 Aug 2023
169 points (93.3% liked)

Technology

59257 readers
4619 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 51 points 1 year ago (3 children)

Except we know its not true.

Just one month ago, Lemmy didn't have CAPTCHAs, and we were hit by so many script-kiddies that signups to https://lemmy.world had to be disabled.

The hackers who will create thousands-of-accounts and make thousands-of-spam posts are largely low-quality hackers who don't know how to make an AI bot. Proof? When the Admins added the dumbest of CAPTCHAs to https://lemmy.world, those fake-signups stopped.

CAPTCHAs work, at least at the level that lemmy.world is at. We'll have to get better as we get more popular but there's an ocean of difference from wget/curl script-kiddie and AI-using bot master.

[–] [email protected] 18 points 1 year ago (2 children)

I suspect it is just a matter of time before someone makes the tech easy to use and affordable enough for the masses of bad actors.

[–] [email protected] 7 points 1 year ago* (last edited 1 year ago)

I totally agree.

[–] [email protected] 5 points 1 year ago

So basically just a cat and mouse game until the singularity?

[–] [email protected] 12 points 1 year ago* (last edited 1 year ago)

They work as in they raise the bar on how complex the bot needs to be.

Believe me, there's tons of spammers out there that have captcha cracking bots. They're just not as dumb as the basic skiddie that can barely make a http POST

[–] [email protected] 4 points 1 year ago

It's a very bad decision to not implement CAPTCHA when you are going to allow signups. There's always someone that will take advantage of this and annoy you with constant sign ups.