[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor and Google error / CAPTCHAs.

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor and Google error / CAPTCHAs.
From: Alec Muffett <alec.muffett@xxxxxxxxx>
Date: Wed, 5 Oct 2016 13:11:20 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 05 Oct 2016 08:12:16 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=J3deW118dY7GexOTV3k656aNXIa04xCOa3WFfHZjaRM=; b=BqANB1eYh45lG8APhgNFtoBhE5ySf086sXGbqyrZwemODFpbeBLdG0xFJeFGe7Zmh5 UM94E86/eOvsMTkWdlVafg/C1xJwepU18PqUE0joPaomV2UsPBjGfMpeoQtbSH7cEDm3 Cxc4dk9OqF2064657Wqi2tOToOR50VqlEztEWz7M4u9bYEENUXc1LsTlCCExHJqFaidY qj1Wy5orxwntzwP8g4h21X5SmJiBUHTTWyyCWkFnOQsDbXJCpSwwfJ8RIh4iFEvnTDye ZT3u7Y7T6S8QietSUnX/0sOQO6VUhuBy/MoD9ib6MyDHJxfba6KXkGKy0/ZD7F6a6oz3 p5FQ==
In-reply-to: <0fc28d83-aa5c-752f-8864-618de3ea8da6@riseup.net>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <ce1709ef8059fa3acd6b5c27b079ea81@openmailbox.org> <CAFWeb9LCFQoBLmC_Xsjf7z16cNgtkJjwzoPizCHrgrVpG7_MFQ@mail.gmail.com> <15d4be78-575a-4aff-360b-fa6262d0dd60@gmx.com> <CAFWeb9K4XCy7qALY-tn21Jkyuc6tBx11iF-XcDL5NOAqcWknuQ@mail.gmail.com> <cfb79aae-8acd-0c24-f15b-686094222ee7@riseup.net> <CAFWeb9LVmQQsBAaZoo+-wgVmSVzz5aL-9zFHbxf4ZrO=b9sHmg@mail.gmail.com> <0fc28d83-aa5c-752f-8864-618de3ea8da6@riseup.net>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Mirimir: Generally I like your suggestions, they are thoughtful, and I
think you're shooting in the right direction.

A few observations:

a) I like the idea of Google giving you "one free search" and from that
trying to determine whether you are an "asshole" after which it lightens up
with the oppression; the challenge here is that "one free search" is easily
exploitable by the "League of Assholes" who will create a vast army of
"apparently-noob-non-assholes" and aggregate across their free searches in
order to perform the scraping/searching/spamming that they desire.  (Yes,
even search results are interesting to scrapers, eg: using the Google cache
to mine e-mail addresses from some third-party website which provides open
access to GoogleBot but not to normal people.)

b) I am not familiar with Wilders (?) but it sounds quite intensively
moderated, something that perhaps Reddit also pulls off to some extent.
Communities can be self-policing (see also Wikipedia) but not all
communities offer a value proposition where self-policing would be a
complete solution, eg: I feel that Reddit is far less family-friendly than
FB.  Also, at FB-like scale, self-policing would be really challenging.

c) Further, "graduated access", where the tuple of {you + the means which
you use to access the site} gaining privilege by being a good community
member?  That's great, though it is open to "identity farming" and "what
happens if/when community members who validate the new members, themselves
go rogue?" - "quis custodiet?", and all that stuff.

d) Finally, to get technical, I like these ideas but I see the challenges
of convincing social networks to implement the code to support such
graduated access, and to factor in the use of Proxy Networks such as Tor,
will require greater awareness of how to address issues b) and c) above,
plus for Tor to be popular enough that folk consider it worthwhile to
address in this way.

This all strikes me as a massive bootstrap challenge.  Not impossible, but
hard and long-term.

    -a

-- 
http://dropsafe.crypticide.com/aboutalecm
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Mirimir

References:
- [tor-talk] Tor and Google error / CAPTCHAs.
  - From: bancfc
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Alec Muffett
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Joe Btfsplk
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Alec Muffett
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Mirimir
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Alec Muffett
- Re: [tor-talk] Tor and Google error / CAPTCHAs.
  - From: Mirimir

Prev by Author: Re: [tor-talk] Tor and Google error / CAPTCHAs.
Next by Author: [tor-talk] An example of scraping and bad behaviour over Tor
Previous by thread: Re: [tor-talk] Tor and Google error / CAPTCHAs.
Next by thread: Re: [tor-talk] Tor and Google error / CAPTCHAs.
Index(es):
- Author
- Thread