cross-posted from: https://lemmy.ml/post/47972724
i encountered this for the first time today while attempting to read something on archive.today.
i confirmed that decoding the qrcode using a computer and following the URL it contains is insufficient; the error it gave directed me here which is what the linked screenshot is of.
the old type of captcha remains available too, for now:
This is step one.
Step two is id verification via play services before you’re even allowed to scan the QR code.
This is going to erode privacy as we know it on the internet and I can’t see any feasible escape.
-
People without a mobile device are fucked out of being able to pass a captcha
-
As if this isn’t a way for them to associate multiple sessions on multiple specific devices with one another, this is just another avenue for data collection, period. Hidden under the guise of “more secure.”
I imagine scammers are already thinking of ways to use this for phishing too
notably, this kills any alternative to android.
not if you kill google first
that’s plan A
🟩 🧑🔧 🪠
You don’t have to drink a verification can, but you do need to buy a verification phone.
i have one. but it isn’t android, or ios, or ‘smart’ in any way. it doesn’t even text. it’s just a telephone that fits in my pocket and connects to the cellular networks. it’s all i want. it’s all i use. it’s all i’ve needed ever since i got my first one about 25 years ago.
Same! Except mine does do SMS text and has the other flip phone stuff like alarms, timer, calendar.
Don’t worry you’re included. Simply visit one of our Accessibility Centers between 8am-9am on odd Wednesdays, with a valid birth certificate, filled-out form from here, and a notarized Charizard.
It really should be illegal to build systems that require a user’s access to any unrelated technology. You shouldn’t be forced to have a phone to pay a parking fee or to get on the bus. You shouldn’t need an app to charge your car. You shouldn’t need to use proprietary software from one spesific company to pass a captcha on a random site.
Great, another shill for banknote technology. /s
I mostly use my phone (Pixel with GrapheneOS) as a dumb phone + calendar. But by far the biggest number of apps I have to have on it are the fucking car charger apps.
-
Looks like a very good way to shoo actual humans off of your website.
Nice captcha. Would be a shame if someone intentionally injected malicious code that had users scan a QR code under the guise of security.
And had the qr code rickroll them, because that’s really a good song and dude got pipes
There’s no way this is ADA compliant.
With the way the Trump admin is going I’m surprised they haven’t totallt dismantled the ADA already.
Verifying you have a phone doesn’t verify that you’re human.
How so?
Android emulators exist and are usable by bots.
So they SS the QR code, scan it and continue?
Without a google account there will be many sites I can’t visit. I’ll look at such sites the same way as I look at paywalled sites.
It is a paywall, you just pay with your data. Except Google gets the revenue and not the website so maybe a second paywall will be “necessary”
-
Hype up AI.
-
Everyone starts scraping the internet to obtain training data for their AI.
-
To block the scrapers, countless sites implement stricter bot detection tools.
-
The owners of the bot detection tools now effectively hold all of the internet by its throat, deciding who can access what and extorting more and more data from you to verify you’re human.
Fucking genius.
- Crypto comes out of nowhere with a steel chair and now we have to pay websites for access.
You can always build more bot detection tools, right? Or am I wrong?
-
One more reason to not use google anything
Any website that chooses to use this service will simply not get my traffic. If enough people feel the same, those websites will lose clicks and eventually tell Google to pound sand.
Imagine the utter hubris on these fuckers to think that people will get a google device just to access a website.
Or to think that an average user sitting at home would run to another room to grab their phone so they can verify themselves on the desktop just to visit blackcougar.com
1 year later
Government website you have to use to pay your water bill: “Confirm you are a human…”
I either use my banking website or go into city hall clerks office to pay it in person. I’ve never once had to go to the actual government website. It’s an option, but not mandatory.
No malicious site would ever fake this kind of flow in order to get someone to scan a dangerous QR code. Nope, that would never happen.
So Linux users are fucked?
No; they said you can use Android.
Android ≠ Linux
Android is based on a modified version of Linux, and owned by Google. Linux is independent.
Android is Linux. Not all Linux systems are Android, but all Android systems are Linux.
It’s not necessarily helpful to those on desktop Linux, but it is Linux if someone wants to be a purist about which operating systems run on their hardware.
Fuck absolutely everything about this.
LOL, fuck off. How about instead I move on to somewhere less hostile toward the user instead?
