[159845] in North American Network Operators' Group
Re: Suggestions for the future on your web site: (was cookies, and
daemon@ATHENA.MIT.EDU (Rich Kulawiec)
Thu Jan 24 08:48:42 2013
Date: Thu, 24 Jan 2013 08:48:22 -0500
From: Rich Kulawiec <rsk@gsp.org>
To: nanog@nanog.org
In-Reply-To: <CACg3zYF13jCWNuWiq58Er4pUX_2udqG_h5nnx=hhrTPRQavGfA@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Wed, Jan 23, 2013 at 01:20:07PM +0100, . wrote:
> CAPTCHAS are a "defense in depth" that reduce the number of spam
> incidents to a number manageable by humans.
No, they do not. If you had actually bothered to read the links that
I provided, or simply to pay attention over the last several years,
you would know that captchas are not any kind of defense at all.
They're like holding up tissue paper in front of a tank: worthless.
(Yes, yes, I'm well aware that many people will claim that *their* captchas
work. They're wrong, of course: their captchas are just as worthless
as everyone else's. They simply haven't been competently attacked yet.
And relying on either the ineptness or the laziness of attackers is
a very poor security strategy.)
---rsk
