Forums

Remove catpatchakThread is locked

Quick find code: 278-279-793-66111678

Mod Lyon

Mod Lyon

Jagex Moderator Forum Profile Posts by user
Ignoring some of the more hilarious conspiracy theories in here...

Going to keep this short, we are never going to remove reCaptcha.

Original message details are unavailable.
the companion app could be used for the longest amount of time thru a web ui


One of the many benefits to removing the companion app. The game is another story, and comes with a huge amount of UX & UI problems, of which are no small pieces of work.

Original message details are unavailable.
Why would bots even logging into the forums? To auto spam / bump threads?


Bots wouldn't be logging into the forums. Bots would be trying to login. By removing reCaptcha, we would be removing a strong tool to help protect your account from brute force attacks.

As Miles Prower mentioned, the solution is for us to extend the session when logged into the website. However, if you're clearing your browser cookies often enough for reCaptcha to be a problem now, that won't solve your concerns.
Jagex Web Team

Twitter - @JagexLyon

22-Jul-2019 09:39:07 - Last edited on 22-Jul-2019 09:51:59 by Mod Lyon

Mod Lyon

Mod Lyon

Jagex Moderator Forum Profile Posts by user
Immortalized said:
Mod Lyon said:
Going to keep this short, we are never going to remove reCaptcha.

so jagex does not care that they are preventing chinese users from using their site.


Jagex cares about protecting the majority of our users by enabling as many security precautions as reasonably possible for our most critical systems.

Original message details are unavailable.
the website already blocks IPs from logging in after multiple failed attempts. what is the purpose of captcha then?

this provides no benefit to users and the website already has a system in place to deal with bots trying to log into accounts.


reCaptcha is another level of security, which allows us to stop bots from having X number of "free" attempts to log into an account. A user with a large botnet would be able to evade our IP blocking extremely easily. We are not going to remove levels of security from the website and will always work to ensure the balance between user experience and account security is met.

Original message details are unavailable.
we also have a 2fa method of securing our account which is literally unused on the website.


As already mentioned, 2FA on the website is something we have already committed to doing.


Miu said:
Captcha sucks and I'm sure at one point there'll be a bot that can easily pass its checks.


Glad we can agree its working well now! If something changes as its an important security feature we'll be updating it when possible. We've already made ourselves aware of reCaptcha v3 when we upgraded to invisible for the added user benefit, and are looking at if this would be feasible for our sites once it is a more established solution.
Jagex Web Team

Twitter - @JagexLyon

25-Jul-2019 09:25:21 - Last edited on 25-Jul-2019 10:28:42 by Mod Lyon

Mod Lyon

Mod Lyon

Jagex Moderator Forum Profile Posts by user
scousy said:
If it was there to protect our account security, shouldn't it pop up all the time for everyone?


It does.

You are only challenged to complete the additional challenge if Google cannot determine whether you are a human or not. If you see in the bottom right of the login page (or anywhere else you perform some function) the captcha symbol, your session has been "checked" for authenticity.
Jagex Web Team

Twitter - @JagexLyon

25-Jul-2019 12:09:43 - Last edited on 25-Jul-2019 12:22:38 by Mod Lyon

Mod Lyon

Mod Lyon

Jagex Moderator Forum Profile Posts by user
2_Tron said:
Mod Lyon I do wonder what you mean by "authenticity"?


Whether you are a human or not. If you have concerns, as you alluded to in your first reply, about reCaptcha, I suggest you contact Google and speak to them about your worries.

Immortalized said:
and the only security to resolve this is 2fa, not captcha. and 2fa eliminates the need for captcha


As suggested, we are adding 2FA to the website. However to make it clear, we will not be removing reCaptcha from the website. Including when we implement 2FA.

I am not going to go into the intricacies of our security or reCaptcha anymore, reCaptcha provides a valuable service that Jagex can quantify. We are not going to remove it any time soon - and have no plans to for many years to come.
Jagex Web Team

Twitter - @JagexLyon

26-Jul-2019 09:39:44 - Last edited on 26-Jul-2019 10:20:55 by Mod Lyon

Mod Lyon

Mod Lyon

Jagex Moderator Forum Profile Posts by user
I'm locking this now. Its just become silly.

ELITE STACK said:
I found a glitch to bypass this shit going to send 50 bots on this site and post phishing sites. :) I bet 500m that bots already found a way to bypass this.


If you've found a bug with reCaptcha you can report that to Google here

2_Tron said:
Mod Lyon said:
...
Well since we are stuck to it can we at least
"earn exp or in-game currency"
with solving it once you have solved captcha / re-captcha? At least than we can turn that annoying experience into a win / win situation. :D *happy face*


No.

2_Tron said:
You as a person do have a certain mindset but that doesn't say others do have the same mindset, we have to deal with that everyday which learns us in a certain pace to understand why things move the way they move.
If something seems incorrect / misinformed in your point of view it doesn't say others are proven to be liars, they simple generate an alternative truth until there's evidence to be found that may alter the thoughts they had in the past.
Just sum facts only still could be rejected but reading another persons thoughts might convince them more to adjust there point of view about a subject alike captcha / re-captcha.



There is no such thing as an alternative truth.

There is the truth, and that is Google provides a service (which is obviously used to train their AI [in my personal opinion]) for free, in return website owners can add that service to protect their own site at no cost. Jagex takes advantage of this, as one of the strongest protection methods available without delving into the other security measures we have in place.

That security measure will [likely] never be removed, and Jagex are in favour of keeping the service on the critical routes through our website for the reason myself and Hmm afterwards kindly mentioned.

The reCaptcha check is not a conspiracy to stop you from using the forums. The reCaptcha check is not even on the forums, but on our log in forms.

reCaptcha does not kick in when you've posted too much, not visited the forum in a while, visited on a different device or used a different browser. The reCaptcha check is analysed based on that specific browser history, and Jagex do not know or care where you came from.

I hope this is the end of the discussion, and although I can understand additional steps are frustrating for some users, you can appreciate the security benefits I have already mentioned reCaptcha provides.

If users have other questions relating to reCaptcha which have not already been answered by myself or Hmm, they are free to create another thread in which publicly accessible facts from here can be viewed.

Thanks.
Jagex Web Team

Twitter - @JagexLyon

12-Sep-2019 12:29:43 - Last edited on 12-Sep-2019 12:32:01 by Mod Lyon

Quick find code: 278-279-793-66111678Back to Top