Remove Captcha

Page 3 of 3 12 3
10/16/2021 10:03 tehpwnerer69#31
Quote:
Originally Posted by Luke View Post
Unfortunately, we aren't able to reproduce this issue (even with active adblocks), we eased some settings on cloudflare, but that is all we can do for now. The captcha is to combat ddos attacks. On a ongoing attack, the settings are set more strict, we don't show captchas annoy you, it's to keep the site online.
If it is for the sole purpose of combating DDoS attacks, could we request a simpler captcha, maybe FlipCaptcha or a sliding one like Binance has.

I haven't had any issues since whenever the change occurred.
I've been living in a captchaless bliss for the past week or so.
Had one or two here and there but overall much better for this user :handsdown:
10/16/2021 10:42 Nekogirlmujuuryuko#32
I just put my experience about the captcha
Personaly i have 0 problem with the captcha when i am on my computer but when i am on my phone I had to repeat the captcha 5 times before i succeeded.
I don't know if some people had the same problem as me.
10/16/2021 18:18 *1*#33
Quote:
Originally Posted by Nekogirlmujuuryuko View Post
I just put my experience about the captcha
Personaly i have 0 problem with the captcha when i am on my computer but when i am on my phone I had to repeat the captcha 5 times before i succeeded.
I don't know if some people had the same problem as me.
I have the opposite, no problems mobile, and big problems on computer.
10/18/2021 12:51 Luke#34
Quote:
Originally Posted by tehpwnerer69 View Post
If it is for the sole purpose of combating DDoS attacks, could we request a simpler captcha, maybe FlipCaptcha or a sliding one like Binance has.

I haven't had any issues since whenever the change occurred.
I've been living in a captchaless bliss for the past week or so.
Had one or two here and there but overall much better for this user :handsdown:
We're using Cloudflare, which means we can't change the captcha. Are there any other cloudflare powered sites were you experience similar issues?
10/18/2021 16:58 tehpwnerer69#35
Quote:
Originally Posted by Luke View Post
We're using Cloudflare, which means we can't change the captcha. Are there any other cloudflare powered sites were you experience similar issues?
Only one but it's triggered by changing logins repeatedly.
I had a look for you through cloudflare but it seems custom challenge pages have been removed, I do recall them existing and found a page in cloudflare community confirming this as of two years ago..

But I did stumble across something [Only registered and activated users can see links. Click Here To Register...] that may help.

Quote:
Originally Posted by FHBS
The same thing happened to me, the problem was htt3/quic activated in the browser, and going back to http2 solved the problem.
But I'm not sure if that is related and could be site breaking given that it appears to be related to opportunistic encryption.

Can you possibly clone the site and test this on a replicated web server?
10/19/2021 20:33 Luke#36
So you actually solve the captcha successfully and it shows again infinitely? If you receive the captcha multiple times it is usually caused from old bookmarks, e.g. visiting [Only registered and activated users can see links. Click Here To Register...] (no https, no [Only registered and activated users can see links. Click Here To Register...], make sure your destination is [Only registered and activated users can see links. Click Here To Register...]
10/19/2021 21:23 tehpwnerer69#37
Well not infinitely on the second time, the second time around which it was about 20 times of successful attempts that were disallowed and probably an hour between the time where I was stuck infinitely and the time I wasn't (session related?), I should also mention that on the first tap, I wasn't given a captcha nor did it click, it seemed like a misfired event

After analysing, the urls used were always containing www

Lately now the issue is non-existent however I have since been using the desktop version by default by clicking the "Desktop Version" once down bottom, this setting has since stuck.

I would assume the moment I attempt to login from this same device outside of desktop version, the change in headers would cause cookies to be invalidated and require another captcha.

As this issue appears to relate to non-chromium headers triggering this, I can only assume there is some exploit ITW right now that is used by botters to execute these non-standard attacks.

Nevertheless, I highly recommend looking into LetzEncrypt for SSL certification. Whilst Cloudflare does provide us with a free, easy and professional solutions, it comes at a cost of managed ssl certification.

And let's be fair, if the end goal is simply for ddos protection, then wouldn't a decent host with a mitigated ddos attack plan, ip tables, f2b, lets encrypt and a standard Debian system be enough?

Interested to hear your take on this since it seems like you're making a trade off for ease of use (which I completely understand).
11/21/2021 19:26 bisko #EGG#38
It seems to be on some other websites aswell, so probably not the problem from epvpers but more of the ppl behind the captcha. hm
12/28/2021 04:00 HappyMajor#39
Captcha is still not working correctly i fail like 10 times before it works
even when selecting everything correct
its only on this site tho just remove it or change it please Hcaptcher is really bad
Page 3 of 3 12 3