[tor-talk] How do tor users get past the recapacha and it's super short 2min exemption

grarpamp grarpamp at gmail.com
Tue Jul 17 23:30:53 UTC 2018


On Mon, Jul 16, 2018 at 3:08 PM, Dave Warren <dw at thedave.ca> wrote:
> The whole point of tor is that you are anonymous just like everybody else.
>
> Privacy Pass attempts to allow you to bypass CAPTCHAs by providing you with tokens that anonymously prove you have solved CAPTCHAs recently.
> https://support.cloudflare.com/hc/en-us/articles/115001992652-Privacy-Pass

Presumably those tokens get passed to all participating sites,
so all your sessions across them all are easily linkable
by cloudflare, the sites, their backend databrokers, etc.
"Privacy Pass"... lol.

> https://support.cloudflare.com/hc/en-us/articles/200170136-What-will-changing-the-Challenge-Passage-TTL-do-

>>> To their credit

Cloudflare and Google and all the rest of the "passive" censorship
providers are in a position to influence by setting defaults for
their subscribers, by setting out objective descriptions of different traffic
cases in the instruction manual, by any public statements, etc.

>>> they do make it easy for site operators to approve tor
>>> traffic in a more general way (by treating tor as a separate country in
>>> their whitelisting system).

So what are the default settings provided to new cloudflare /
recaptcha subscribers?

And how do they describe Tor [traffic / users] in the manual?

What do they say in public?

> https://support.cloudflare.com/hc/en-us/articles/203306930-Does-CloudFlare-block-Tor-

ps: Cloudflare and Google are so fucked you can't even read their own
sites via tor without minutes worth of captcha work.


More information about the tor-talk mailing list