WTF??
Why your captcha pictures so freaking?
Some of them have bad quality ...

Agree with dislike of (especially Google one) captcha. Its one of the worst things about GOG IMO.

Please feel free to add your vote to the community wishlist item: Nip google Captcha in the bud

Hehe! I remember that one day I did over twenty of them in a row here on GOG.com. Got to love them.

I suppose the poor quality of the images is part of the whole stopping bots identifying the images.

As for captcha as a whole, I hate the stuff. If you have at least a normal modern connection speed they are just a mere nuisance but if you have an ancient slow connection they are site-breaking because google sets the timeout too low.

More people need to vote this, it makes the site and client look cheap.

Yet somehow it still knows if I miss some of them....I mean how would it know that unless the site already marked which show which for the app to know if you're wrong or not? And if so then what is the point in training google's AI if they already marked the pics yes or no themselves?

=======================Bots can more easily solve those, though.

Actually bots can solve most of these picture captchas too. I would even say, bots are better/faster at solving them than humans are. Sure, they stop some uninformed wannabe-spammers. But if someone uses good bots, captchas are pointless. And over time captchas will become more and more like DRM in their effect: they will only annoy those that they are supposed to 'protect'. While their intended targets (bots in this case, pirates in the DRM-case) remain unaffected.

True, but we still need protections.....I mean, you wouldn't suggest that we stop making door locks because people can get around them, would you?

There's a much better alternative out there that tests more than just basic image recognition. I just don't remember the name now...

The mission is simple for us humans but worse for a robot (so far) - you have two pictures of a gate but the other picture is twisted to a certain degree, and need to "draw" similar thin line around the inside of a gate. Those are much faster than these regular CAPTCHA from Google.

Unlike Google service, this one and those from SolveMedia aren't free, if my memory serves me right.

Another thing, GOG bases your account to the last known IP address. Logging in from the same IP will make you bypass 2FA at least, and to my knowledge, only certain IP addresses are on the blacklist when it comes CAPTCHA. I have seen Google's CAPTCHA only once or twice this year when logging in to GOG.

Poor design/implementation if you ask me...

There are professional captcha solving services in 3rd world countries (with low wages) whose services can be bought.

Googling (pun fully intended) "captcha solving cost" gives as officially supported (by Google - so it cant possibly be wrong of me to post this here?) answer: (Note that I have no association with this and dont know if this is true or reliable.)

But basically this means that GOG/Google are harassing people with their captchas for 0.0007 USD ~= 0.00064 EUR per harassment. This is IMO no sane relation. Why cant I just pay those 0.0007 USD instead? It would be easily possible to solve this kind of crap in a financial manner. There is no need to harass anybody. Its just one of those convolutions of society screwing itself (meaning its people) in some manner.

Behind closed doors perhaps...

If you're rich enough you can "bypass" anything, even parking ticket and murder. Harassing common people with kindergarten-mentallity is the very foundation of our civilization (or dare I say civility) :P

Same as with these annoying age-restrictions that popped up on the internet a few years back.

Speaking of further poor design/implementtation/security - BankID (based on what you are, what you have and what you know) is a nuisance in Norway when paying with a card. Logging in from outside Norway or using shopping sites without their services bypasses this entirely... And on top of that - they don't discern between capital and small letters... *ugh*.

I mean, why do we even bother with these things when we can just go around the corner... legally, morally and logically?

Of course we need some kind of protection against spammers and bots. But there are better ways than Google reCaptcha. Though probably sanscript is right and those alternatives cost money which is why Gog stays with the free but crappy option.

The idea of solving spam in a financial way is old - and has made some waves many years in the past. When e-mail spam was still a problem, Bill Gates suggested to make e-mails cost something. Not a lot, something like 0.1 cent per mail. Something that wouldn't really affect private mailing, but which would hurt spammers, who send out millions of automated mails per day.

There was a huge outcry: "Bill Gates wants to restrict the freedom of the internet! He wants to squeeze even more money out of us! Outrage!" ... even though he didn't suggest that Microsoft would be getting those 0.1 cents per mail. But it was seen as an attack on the internet and was booed down.

I dont know anything about this but my general POV on it is that there is no sane reason which I can see why they wouldnt add a "this cost me 0.1 cent" system to Email. It would be trivial (from a society POV) to do it and I cant see any disadvantages. Example:
Make a cryptocurrency (or simply use an existing one) which has addresses which belong to no one and cant be used by anybody, bitcoin for example has such.
Optionally add to Emails (in the header or in the body, can be done manually or automatically) a code which can be used to decrypt a comment to a cryptocurrency transfer to such an address. This (adding this or not) is decided by the sender.
The receiver can then set their Email program or provider to disallow Emails without proof-of-money-wasted comment. This would be just one piece in the Email filtering which is possible anyway. They can also set a minimum-money-wasted limit if they want. If an Email is rejected due to this the provider/program will return it to the sender with the respective explanation so that the sender knows it was not received and why it was not received.
From a users perspective this would be very simple to use. Copy a code to the Email or let the program/provider automatically do it after setting it up. The same codes could also be used for other authentication stuff which uses captcha now.

Edit: Missing piece: Obviously the receiver needs to invalidate the codes by uploading them to the cryptocurrency chain or sth similar.

Edit2: Setting it up would also be (potentially) trivial. Just send an Email (containing a list of codes) to an Email address and the Email program/provider would add these codes to the account. So as end user the only effort is to have somebody send me a list of codes to my Email address and the rest would work automagically. Assuming that I (or that 'somebody') has enough money to trivialize the 0.0007 USD cost per code (or whatever the exact amount would be).