It seems that you're using an outdated browser. Some things may not work as they should (or don't work at all).
We suggest you upgrade newer and better browser like: Chrome, Firefox, Internet Explorer or Opera

×
Community
General discussionWhat is with the GOG captcha?(113 posts)(113 posts)
(113 posts)
Pages:
1
2
3
4
5
6
7
8
This is my favourite topic
Posted November 08, 2015
avatar
JDelekto: I wish people would be so emphatic when wishing me a good day; however, it sounds like they were not upset, just a bit at wit's end; more frustration than anger. I do believe you were wished a good day.
avatar
Zrevnur: Ok. I am no expert in terms of empathy-over-the-internet.

I also really dont understand how one can even argue the necessity of this captcha. I should be trivial (like a button choice on the main page) to simply allow the user to add the "free" game to the library.
OK, I'm not arguing. However, I do think they want to make sure that "button click" wasn't automated.
Posted November 08, 2015
avatar
Zrevnur: Ok. I am no expert in terms of empathy-over-the-internet.

I also really dont understand how one can even argue the necessity of this captcha. I should be trivial (like a button choice on the main page) to simply allow the user to add the "free" game to the library.
avatar
JDelekto: OK, I'm not arguing. However, I do think they want to make sure that "button click" wasn't automated.
I am just adding _my_ "free" games to _my_ library. If I automate that then what? If someone hacks my account and automatically does it for me then I am screwed horribly? I dont see it.
Posted November 08, 2015
avatar
JDelekto: OK, I'm not arguing. However, I do think they want to make sure that "button click" wasn't automated.
avatar
Zrevnur: I am just adding _my_ "free" games to _my_ library. If I automate that then what? If someone hacks my account and automatically does it for me then I am screwed horribly? I dont see it.
Are you sure that adding it wasn't calling out to any external system?
Posted November 08, 2015
Also @GOG: I dont want you to "protect" me from my own stupidity (regarding the choice of a proper password) with captchas (in case my account gets hacked due to this predictable password).
avatar
Zrevnur: I am just adding _my_ "free" games to _my_ library. If I automate that then what? If someone hacks my account and automatically does it for me then I am screwed horribly? I dont see it.
avatar
JDelekto: Are you sure that adding it wasn't calling out to any external system?
I dont know if it was. My main point here - in case I am being unclear - is that it does not need to do any such a thing for adding the "free" autumn sale games to the account of the autumn-shopper.

Edit: I did not edit this post (before this line). GOG combined my posts - didnt know it would do that.
Post edited November 08, 2015 by Zrevnur
Posted November 08, 2015
avatar
Zrevnur: Also @GOG: I dont want you to "protect" me from my own stupidity (regarding the choice of a proper password) with captchas (in case my account gets hacked due to this predictable password).
avatar
JDelekto: Are you sure that adding it wasn't calling out to any external system?
avatar
Zrevnur: I dont know if it was. My main point here - in case I am being unclear - is that it does not need to do any such a thing for adding the "free" autumn sale games to the account of the autumn-shopper.
I can understand your frustration. But I don't think there was any malfeasance involved.
Posted November 08, 2015
avatar
cogadh: This is ridiculous. I have explained precisely how this exploit based on the exception to the captcha rules that you want would work with GOG's current system
avatar
Zrevnur: Clearly you have not. If so - why dont you just quote it. Or link to the post where you did this "explaining". Also I did in no way imply how GOG should go about implementing a captcha-free system - ie all your talk about "exceptions".

avatar
cogadh: I did not miss the point of the autumn sale, what you have missed is that this sale and any of the others GOG has account for maybe three weeks worth of business out of the year and not every sale includes freebies. At least 354 days out of the year your nuisance issue is not a problem for anyone, anytime, yet you want GOG to risk problems on those 354+ days just so you don't have to whine during a sale that happens to include freebies? You don't like that you have to check that box at checkout ("nasty" pictures? That's a load of bullshit) well I, and likely the vast majority of GOG users, think that is a small price to pay if it prevents even some fraud.
avatar
Zrevnur: Quoting you from above: " All so you and maybe a few others don't waste the mouse clicking energy on a single check box." I pointed out that this (your former statement) is obviously and objectively a false statement. Considering this your reply to my reply is completely out-of-whack. Furthermore it is also probably wrong and misleading as well - I can explain in more detail why that is so but you seem to have lost interest so I will skip that.

avatar
cogadh: That's it, i've said my peace, if you still don't get it, that's your problem. Good day, sir!
avatar
Zrevnur: It didnt sound very peaceful. In fact it sounded like you were upset.
Oh my gawd, are you serious? You cannot possibly be this dense. Fine, one last try. I'm sorry, but I'm going to keep using the correct English words like "exception" in my explanations, there really aren't any simpler words that I could use to make comprehension easier for you.

You asked GOG to implement an exception to the captcha challenge rules based on three simple criteria: a user must be logged in, just spent $$$, have never before failed at inputting a correct code (your exact words). If GOG implements that exception exactly as you described it, all one has to do is hijack or already have an account in good standing, log in, manually buy one item and pass the captcha, then start running an automated script that takes advantage of the now disabled captcha to buy codes in bulk using fraudulent credit cards (something that happened multiple times before GOG starting trying to secure the system). The hole you created to avoid the nuisance of captcha on a freebie doesn't just eliminate that nuisance, it leaves the whole system open to exploitation. GOG cannot just bypass the captcha on freebie codes specifically because there is no way to tell the difference between a freebie code and a paid code: a code generated when someone buys Riddick as a gift is produced by the same system that generates codes for the free fall sale Riddick and is identical in format. Additionally the captcha itself is a function of the storefront with no actual connection to the codes themselves. Changing that would require a significant reworking of GOG's entire checkout and code issuing system, just to get around a meaningless complaint that only applies to a limited time period in specific circumstances that fall outside of well more than 90% of GOG's regular business and would likely make the system much less secure in the long run. Not worth it.

Again, if you lack the basic reasoning skills to understand all of this, you're your own from here on out.

EDIT - added clarification
Post edited November 08, 2015 by cogadh
Posted November 08, 2015
...and yes, if you post more than once in a row and nobody posts in between you, it combines the post as a courtesy for those reading the forums.
OK, now I can ascertain that the tone of his post was upset. :)
Post edited November 08, 2015 by JDelekto
Posted November 08, 2015
avatar
Zrevnur: ...
To check a checkbox is too much for you...

Ernsthaft?!
Posted November 08, 2015
avatar
JDelekto: ...and yes, if you post more than once in a row and nobody posts in between you, it combines the post as a courtesy for those reading the forums.
OK, now I can ascertain that the tone of his post was upset. :)
No, it was frustration with his lack of comprehension. However, it is an little upsetting that someone in the world might actually be that dense and not just trolling.
Posted November 08, 2015
avatar
JDelekto: ...and yes, if you post more than once in a row and nobody posts in between you, it combines the post as a courtesy for those reading the forums.
OK, now I can ascertain that the tone of his post was upset. :)
avatar
cogadh: No, it was frustration with his lack of comprehension. However, it is an little upsetting that someone in the world might actually be that dense and not just trolling.
I could be double dense sometimes and I have the floppy disks to prove it! :)
Posted November 08, 2015
avatar
cogadh: No, it was frustration with his lack of comprehension. However, it is an little upsetting that someone in the world might actually be that dense and not just trolling.
avatar
JDelekto: I could be double dense sometimes and I have the floppy disks to prove it! :)
Where's my rimshot gif when I need it...
Posted November 08, 2015
avatar
cogadh: You asked GOG to implement an exception to the captcha challenge rules based on three simple criteria: a user must be logged in, just spent $$$, have never before failed at inputting a correct code (your exact words).
There is such a thing called "context". Quoting the first post :

"I bought some stuff on the sale and unlocked the free games, so I tried to redeem them."

This is the context. This is what I responded to. I have also said so earlier already. You completely ignore this (the first post context and me saying it). In no way did I propose that GOG should apply "my exact words" to buying stuff.

So no - given this context your example has no relevance as you are misapplying my three examples (which are not a complete algorithm for determination of a real person anyway) to some other situation - namely buying stuff.

So maybe you are just misunderstanding my complaint. So I say it again clearly:
a) If I buy some games on GOG and then get some "free" games due to that then I do not want to be harassed with a captcha.
b) Such captcha harassment (for the given context - see above) is conceptually unnecessary in terms of security.


(Actually I dont want to be harassed with a captcha anyway but it may provide some "semblance of security" against hijackers in some other cases - I am not arguing that point here.)
avatar
Zrevnur: ...
avatar
toxicTom: To check a checkbox is too much for you...

Ernsthaft?!
Did you actually read the thread?

Like this post: https://www.gog.com/forum/general/what_is_with_the_gog_captcha/post60

Not everybody wants to be part of the "google sees all" world.
Post edited November 08, 2015 by Zrevnur
Posted November 08, 2015
avatar
Zrevnur: Not everybody wants to be part of the "google sees all" world.
Ghostery
Posted November 08, 2015
avatar
Zrevnur: Not everybody wants to be part of the "google sees all" world.
avatar
toxicTom: Ghostery
Funny that you give a google link here. (And my "noscript" blocked the redirect.)
Posted November 08, 2015
avatar
Zrevnur: Funny that you give a google link here. (And my "noscript" blocked the redirect.)
Well it's a Chrome plugin... also available for FF.

Tinfoil hat sitting comfortable? *rolls eyes*
Pages:
1
2
3
4
5
6
7
8
This is my favourite topic
Community
General discussionWhat is with the GOG captcha?(113 posts)(113 posts)
(113 posts)