That is true for crawling bots which hit simple web forms. Also using some JavaS... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		imhoguy on Nov 27, 2020 \| parent \| context \| favorite \| on: CAPTCHAs don’t prove you’re human – they prove you... That is true for crawling bots which hit simple web forms. Also using some JavaScript kills most of them. Although such methods won't work with targeted bot attack.

tpxl on Nov 27, 2020 | [–]

> Although such methods won't work with targeted bot attack

Neither will Captcha

Puts on Nov 27, 2020 | [–]

I would say in my experience CSRF-protection has proven very effective at even preventing targeted password brute-force.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact