And I’m sure it’s annoying you too. You can’t view a single YouTube video anymore anywhere one is posted, without that stupid notification popping up. Which forces you to have to go to the shitty YouTube site, log in, hope through whatever verification checks that there is and finally, you can watch the video.
Isn’t there a way anymore where people can just link videos and for them to play? Fuck you, Google.
Then why the fuck do some sites require a CAPTCHA before letting me log in?
Because like I said, different measures hold back different bots.
If there are 3 bot softwares, maybe 1 can solve captcha and use accounts, 1 can only make accounts, 1 can only use captcha.
With only account login you get 2 bots, with only captcha you also get 2 bots, with captcha before login you only get 1 bot.
Excuse me but what sort of DDOS is being mitigated by requiring a CAPTCHA before allowing login?
That’s giving a middle finger to your existing users right at the front door.
Authenticating a registered user is so quick there’s no good excuse except laziness and indifference to user experience.
The DDOS of having your users scammed, spammed, them seeing illegal/harmful content, propaganda, whatever bots do.
Trying to get rid of bots is a worthwhile endeavor. How exactly you do it, and I criticize captchas as well, is up to debate, yes. But dismissing it completely just means you haven’t really noticed what those measures do. It’s like an IT department that just works and that management thinks is unnecessary.