Hacker News new | past | comments | ask | show | jobs | submit login

This is why Microsoft's requirement to drink a verification can was so genius. Imagine being a hacker and have to drink multiple verification cans to be able to proceed throughout multiple transactions. "Hacker dies from overdose due to ingestion of too much Doritos and Mountain Dew"

https://imgur.com/dgGvgKF




It’s basically what modern ddos protection does - the WASM computational calculation is a digital dew can.


Wait, so you're telling me that Cloudflare interstitial is running some PoW check on my client? I always thought that was just a way to let the user know they're being rate limited on Cloudflare's end.


I haven't heard of Cloudflare doing that, but it's the concept behind mCaptcha: https://mcaptcha.org/


Effectively yes. Not mining bitcoin, but modern bot detection works by asking your browser to do various tasks and comparing the results to a known good sample.

It could be a complex math problem, or another common trick is to purposely trigger bugs like a javascript engine not rounding numbers correctly in edge cases.


Not sure if cloudflares does it but disable WASM/JavaScript and you’ll find some that do.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: