this post was submitted on 22 Sep 2023
297 points (97.7% liked)

Privacy

32173 readers
807 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 99 points 1 year ago (2 children)
[–] [email protected] 17 points 1 year ago (1 children)

So there is one, very nice!

[–] [email protected] 9 points 1 year ago (1 children)
[–] [email protected] 5 points 1 year ago

Not sure why they used sha256 though, it mostly defeats the goal of protecting from bots (those can get access to ASICs, as oposed to regular users).

[–] dot20 8 points 1 year ago

Does it work well?

[–] Asudox 65 points 1 year ago* (last edited 1 year ago) (3 children)

Is it open source? If no, proton can suck my stroganoff.

Edit: The official subreddit of Proton says that it is a proprietary CAPTCHA system. Great.

[–] [email protected] 27 points 1 year ago (1 children)

Proton has opened sourced everything so far and I would expect them to do that here. They have whole pages written on why they open source everything and why that helps privacy.

[–] Asudox 15 points 1 year ago (2 children)

It's a proprietary CAPTCHA, the sources say.

load more comments (2 replies)
[–] [email protected] 15 points 1 year ago

Stroganoff is quite good if cooked correctly, may I try a taste of it? I'm messing with you

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago) (1 children)

Does it say that both the front end and back end are proprietary, or just the back end? I'd be fine with a closed source back end

[–] Asudox 5 points 1 year ago* (last edited 1 year ago)

Nothing is mentioned other than "proprietary system". Probably meaning that both ends are closed source. I don't see how I can verify whether it respects my privacy or not. I don't see a reason to implement this instead of mCAPTCHA, which is fully FOSS.

[–] dukethorion 50 points 1 year ago (4 children)

I'd be much happier if they'd finish building Drive to have auto-upload like every. other. cloud. service.

We keep hearing "small team" so why do they keep adding half-done products and services?

[–] [email protected] 16 points 1 year ago (1 children)
load more comments (1 replies)
[–] [email protected] 8 points 1 year ago (1 children)

Proton finishing drive would be nice.

In browser file editing is the biggest feature I’m missing from Google Workspace.

[–] [email protected] 3 points 1 year ago (3 children)

That can't be done without a massive, massive amount of engineering hours well beyond proton's size. There's a reason only huge software companies like Google or Microsoft are able to offer that.

[–] [email protected] 5 points 1 year ago

it's a half done google in terms of functionality

[–] [email protected] 33 points 1 year ago* (last edited 1 year ago) (1 children)

Other than making the web tedious to use, my biggest CAPTCHA complaint is that it puts the main providers in a position to monitor everyone's web use. The blog post doesn't address that, but it does say this:

No third-party services

Perhaps they mean it's self-hosted? That would be very welcome. It might require open source code to catch on, since many site owners are uncomfortable running mystery code on our servers. That would be very welcome, too.

Here's hoping it's good.

[–] [email protected] 10 points 1 year ago (1 children)

since many site owners are uncomfortable running mystery code on our servers

And yet Node.js exists and flourishes.

[–] [email protected] 6 points 1 year ago (3 children)

What do you mean by that, isn't node open source as well?

[–] 8rhn6t6s 17 points 1 year ago (1 children)

The joke is a lot of devs import random node modules hahaha

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago) (1 children)

I wonder if it's really true that this practice is particularly prevalent in JavaScript development or just a false impression caused by it being one of the most, if not the most, used programming language

[–] [email protected] 4 points 1 year ago (1 children)

is-odd has entered the chat

[–] [email protected] 4 points 1 year ago

is-even has too because it had to be a dependency 💀

load more comments (2 replies)
[–] [email protected] 23 points 1 year ago (1 children)

New captcha designs should require you to beat a dark souls boss

[–] [email protected] 10 points 1 year ago

Next one will be to 100% every Assassins Creed game.

[–] FrankTheHealer 21 points 1 year ago* (last edited 1 year ago)

This is amazing. Great to have more alternatives to Google's crap

[–] [email protected] 13 points 1 year ago (1 children)

No third-party services

Support for alternative routing

(following link)

alternative routing requires us to use third-party infrastructure and networks we do not control

huh

[–] [email protected] 10 points 1 year ago

That just means they're using other servers to route traffic. It doesn't mean those servers are third party services.

[–] [email protected] 8 points 1 year ago (1 children)

I often won't touch websites with captcha as its used to train ai for google so if I see open source captcha solutions of which I doubt I will see as often as id like as googles strong hold

But proton keep up the good work

[–] [email protected] 4 points 1 year ago (3 children)

hCaptcha is catching on pretty quickly.

load more comments (3 replies)
[–] [email protected] 7 points 1 year ago (1 children)

Nice, but captchas are never a good measure to avoid bots, only to annoying users, apart from spying them, if it is from Google. Long before AI, bots could solve captchas better than humans. It is a clearly obsolete method. Apart the system used by Proton is impossible for blind users, Google captcha at least had an auditive captcha too.

[–] [email protected] 6 points 1 year ago (1 children)

It does stop bots, but only extremely simple bots that for instance scrape data. That's mostly it though, more sophisticated bots can easily beat Captchas

[–] [email protected] 8 points 1 year ago

This is the problem. I remember a very simple method to avoid spambots on a forum with great success. It is based on the following idea: A spambot or even a spammer necessarily uses a disposable email to register. These emails are usually not valid for more than 10-30 minutes, just to be able to receive the confirmation link. In this forum, the sending of the confirmation email has been delayed for half an hour due to this and with this the spam problems have ended. A normal user, if they really want to sign up, waits this time without problems. Then the usual 50 messages before being able to put a link as an additional measure. Simple and without third party apps.

load more comments
view more: next ›