Dream Captcha being lax on case sensitivity

Not sure if anyone else has noticed this but I've noticed that Dream's Captcha at login will let you have 1 letter's case wrong and still lets you proceed.

Seems very weird.


Comments


[6 Points] qpquestion:

Must be compromised.........by ALIENS!!!!


[3 Points] shillface:

Dream's captcha has been case insensitive forever, same with AB, Hansa and TR


[1 Points] ddpr:

Correct me if I'm wrong, but I'm almost positive you can do that with any website's captcha; I've done it on various clearnet websites before.


[1 Points] None:

AB was not case sensitive either RIP


[1 Points] _PrinterPam_:

Doesn't seem weird in the least. It's pretty standard, in fact. On top of that, it's simply a protection against brute-forcing and not the best possible one at that. OCR technology is keeping pace with CAPTCHAs, so they're more 'security theatre'-like than practical.

EDIT: Adding an x-second delay on the server-side accomplishes the same thing, but that can have a crippling effect on server resources as the active users scale up. Use 2FA; problem solved.


[1 Points] dandydaniels:

always been that way


[0 Points] DextroShade:

Who cares, it has nothing to do with LE.