theymos (OP)
Administrator
Legendary
Offline
Activity: 5446
Merit: 13587
|
|
October 03, 2018, 01:49:32 AM Merited by cellard (10), ChipMixer (10), sister1001 (5), bob123 (3), LoyceV (2), BitMaxz (2), ABCbits (2), DarkStar_ (2), Mr. Big (2), crairezx20 (2), AverageGlabella (2), Polar91 (2), Cøbra (2), mprep (1), xandry (1), seoincorporation (1), Marvell1 (1), DdmrDdmr (1), sncc (1) |
|
You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.phpIf it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.
|
1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
|
|
|
angel55
|
|
October 03, 2018, 02:43:01 AM |
|
You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.phpIf it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it. Excellent. CAPTCHAs can be quite infuriating at times.
|
|
|
|
Cøbra
Bitcoin.org domain administrator
Full Member
Offline
Activity: 123
Merit: 474
|
|
October 03, 2018, 02:44:22 AM |
|
Thank you!
The captcha on the log in page was driving everyone crazy, especially Tor users.
|
|
|
|
eddie13
Legendary
Offline
Activity: 2296
Merit: 2271
BTC or BUST
|
|
October 03, 2018, 03:06:54 AM |
|
Great! Hope it works because these are exactly the type of people whose posts I like to read.. Maybe nullius will come back..
|
Chancellor on Brink of Second Bailout for Banks
|
|
|
mk4
Legendary
Offline
Activity: 2940
Merit: 3883
📟 t3rminal.xyz
|
|
October 03, 2018, 03:41:04 AM |
|
This is a huge lifesaver for the Tor users, for those who want to hide their crypto-related activity from their ISPs. You can never have enough opsec. +1
|
|
|
|
Little Mouse
Legendary
Offline
Activity: 2296
Merit: 2378
Marketing Campaign Manager |Telegram ID- @LT_Mouse
|
|
October 03, 2018, 05:18:18 AM |
|
Will hacking an account through this link be easy than previous? I'm not a hacker Just trying to know. BTW, it's a great edition, no doubt. Lots of people were looking for a solution to this. Some even asked for a paid solution.
|
| .SHUFFLE.COM.. | ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ | ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ ███████████████████████ | . ...Next Generation Crypto Casino... |
|
|
|
InvoKing
Legendary
Offline
Activity: 2142
Merit: 1065
✋(▀Ĺ̯ ▀-͠ )
|
|
October 03, 2018, 05:27:48 AM |
|
Will hacking an account through this link be easy than previous?
Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not.
|
PSPD:law and order enforcement! Press Section Police Department!
|
|
|
The Cryptovator
Legendary
Offline
Activity: 2436
Merit: 2228
Signature space for rent
|
|
October 03, 2018, 05:36:53 AM |
|
Will hacking an account through this link be easy than previous? I'm not a hacker Just trying to know. Not really, it's just for bypass captcha. Still you need login details for enter the website. I think it will be more easy to save your account from phishing site. Because you already bookmarked original link. Also ddos attacker will not able to attack by this link, because this link generated for each account. Before get this link you have to login first. So ddos attacker will not able to bypass captcha.
|
Signature Space for Rent
|
|
|
tactac
Full Member
Offline
Activity: 448
Merit: 121
self made Full member (^-^)v
|
|
October 03, 2018, 05:40:48 AM |
|
Thank you!! Perhaps I am not a bot, but it was sometimes difficult to clear the CAPTCHA... (Especially the stage of checking the shop's signboard was difficult )
|
|
|
|
Lizzylove1
Member
Offline
Activity: 858
Merit: 13
Christ The King
|
|
October 03, 2018, 08:29:32 AM |
|
Thanks for this. I will show it to my BTT friends. There are days I get frustrated when logging in because of captcha and I will just chill hoping to get a quick verification later on. There are days I will have to severally close my browser.
|
|
|
|
LoyceV
Legendary
Offline
Activity: 3556
Merit: 18018
Thick-Skinned Gang Leader and Golden Feather 2021
|
|
October 03, 2018, 08:57:35 AM |
|
Great! Hope it works because these are exactly the type of people whose posts I like to read.. Maybe nullius will come back.. I've sent him an email already Will hacking an account through this link be easy than previous? You still need to set a decent password. If it's difficult enough, it can't be brute-forced.
|
| | Peach BTC bitcoin | │ | Buy and Sell Bitcoin P2P | │ | . .
▄▄███████▄▄ ▄██████████████▄ ▄███████████████████▄ ▄█████████████████████▄ ▄███████████████████████▄ █████████████████████████ █████████████████████████ █████████████████████████ ▀███████████████████████▀ ▀█████████████████████▀ ▀███████████████████▀ ▀███████████████▀ ▀▀███████▀▀
▀▀▀▀███████▀▀▀▀ | | EUROPE | AFRICA LATIN AMERICA | | | ▄▀▀▀ █ █ █ █ █ █ █ █ █ █ █ ▀▄▄▄ |
███████▄█ ███████▀ ██▄▄▄▄▄░▄▄▄▄▄ █████████████▀ ▐███████████▌ ▐███████████▌ █████████████▄ ██████████████ ███▀███▀▀███▀ | . Download on the App Store | ▀▀▀▄ █ █ █ █ █ █ █ █ █ █ █ ▄▄▄▀ | ▄▀▀▀ █ █ █ █ █ █ █ █ █ █ █ ▀▄▄▄ |
▄██▄ ██████▄ █████████▄ ████████████▄ ███████████████ ████████████▀ █████████▀ ██████▀ ▀██▀ | . GET IT ON Google Play | ▀▀▀▄ █ █ █ █ █ █ █ █ █ █ █ ▄▄▄▀ |
|
|
|
mk4
Legendary
Offline
Activity: 2940
Merit: 3883
📟 t3rminal.xyz
|
|
October 03, 2018, 09:17:00 AM |
|
Will hacking an account through this link be easy than previous?
Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not. It actually has an effect. If a hacker gets hold of the link, then the hacker can freely attempt to bruteforce your password; as they'd normally have to pay a good amount of money for captcha solvers(like 2captcha, deathbycaptcha, etc). It probably may not make it easier, but it's definitely a lot cheaper. This is why Theymos implemented a Reset feature for the link to be changed if ever you think someone else has your link.
|
|
|
|
Jet Cash
Legendary
Offline
Activity: 2870
Merit: 2474
https://JetCash.com
|
|
October 03, 2018, 09:27:52 AM |
|
Does the captcha vary between countries. Whenever I change login details, all I have to do it to tick the captcha box. I think I have only triggered the image verification extension on a couple of occasions since it was implemented.
|
Offgrid campers allow you to enjoy life and preserve your health and wealth. Save old Cars - my project to save old cars from scrapage schemes, and to reduce the sale of new cars. My new Bitcoin transfer address is - bc1q9gtz8e40en6glgxwk4eujuau2fk5wxrprs6fys
|
|
|
LoyceV
Legendary
Offline
Activity: 3556
Merit: 18018
Thick-Skinned Gang Leader and Golden Feather 2021
|
|
October 03, 2018, 09:31:08 AM |
|
Does the captcha vary between countries. It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time. That's why it's mainly a problem for Tor users, who share their exit IP with many others.
|
| | Peach BTC bitcoin | │ | Buy and Sell Bitcoin P2P | │ | . .
▄▄███████▄▄ ▄██████████████▄ ▄███████████████████▄ ▄█████████████████████▄ ▄███████████████████████▄ █████████████████████████ █████████████████████████ █████████████████████████ ▀███████████████████████▀ ▀█████████████████████▀ ▀███████████████████▀ ▀███████████████▀ ▀▀███████▀▀
▀▀▀▀███████▀▀▀▀ | | EUROPE | AFRICA LATIN AMERICA | | | ▄▀▀▀ █ █ █ █ █ █ █ █ █ █ █ ▀▄▄▄ |
███████▄█ ███████▀ ██▄▄▄▄▄░▄▄▄▄▄ █████████████▀ ▐███████████▌ ▐███████████▌ █████████████▄ ██████████████ ███▀███▀▀███▀ | . Download on the App Store | ▀▀▀▄ █ █ █ █ █ █ █ █ █ █ █ ▄▄▄▀ | ▄▀▀▀ █ █ █ █ █ █ █ █ █ █ █ ▀▄▄▄ |
▄██▄ ██████▄ █████████▄ ████████████▄ ███████████████ ████████████▀ █████████▀ ██████▀ ▀██▀ | . GET IT ON Google Play | ▀▀▀▄ █ █ █ █ █ █ █ █ █ █ █ ▄▄▄▀ |
|
|
|
jackg
Copper Member
Legendary
Offline
Activity: 2856
Merit: 3071
https://bit.ly/387FXHi lightning theory
|
|
October 03, 2018, 02:47:40 PM |
|
Does the captcha vary between countries. It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time. That's why it's mainly a problem for Tor users, who share their exit IP with many others. I don't think gmail would help too much with tor either. A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine...
|
|
|
|
RocketSingh
Legendary
Offline
Activity: 1662
Merit: 1050
|
|
October 03, 2018, 04:25:57 PM |
|
You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.phpIf it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it. Good job buddy. Good job. Just wanna know, do you have any formal PHP knowledge or its self-taught?
|
|
|
|
cellard
Legendary
Offline
Activity: 1372
Merit: 1252
|
|
October 04, 2018, 02:49:16 AM |
|
Does the captcha vary between countries. It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time. That's why it's mainly a problem for Tor users, who share their exit IP with many others. I don't think gmail would help too much with tor either. A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine... Captchas are hell with Tor. In most cases, you'll be forced to compromise your security by being forced to enable javascript, iframes and so on so the thing shows up, and hackers love javascript. But yeah, I just tried theymos' workaround and it will save me so much time. Recently I made a thread asking for some ideas to bypass captcha, I was even willing to pay. It's awesome that he is still adding things to the forum and he did it for free. Now I will no longer have nightmares with traffic signs and crossroads. The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?
|
|
|
|
theymos (OP)
Administrator
Legendary
Offline
Activity: 5446
Merit: 13587
|
|
October 04, 2018, 03:12:15 AM |
|
The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?
If your password is decent and unique to bitcointalk.org, then brute-forcing isn't going to be possible via the Internet. I can't imagine anyone being able to do more than a few hundred attempts per second, which is far slower than if you had the password hash. The main reason why the login captcha is necessary at all is that whenever some site's username/password database is leaked anywhere on the Internet, hackers would come and try all of those logins here, grabbing a few accounts from people who shared passwords, and sometimes slowing down the forum from the rapid barrage of login attempts. These codes are sufficient for preventing that on any large scale. For individual users, the main thing is to not share passwords, not even with minor variations between sites.
|
1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
|
|
|
|
Armagh1234
Jr. Member
Offline
Activity: 35
Merit: 1
|
|
October 16, 2018, 12:20:53 AM |
|
Doesn't that make it easier for scammer, bot accounts, farmers, etc. to shitpost constantly? I use the "always stay logged in" option and rarely have to see the Captcha
|
|
|
|
|