I just realized, why don't they have some "definitely human" third party cookie that caches your humanness for 24h or so? I'm sure there's a reason, I've heard third party cookies were less respected now, but can someone chime in on why this doesn't work and save a ton of compute?

▲

acureau 7 hours ago | parent | next [-]

Because people will solve the challenge once, and then use the cookie in automation tools. It already happens with shorter expiration cookies.

	▲	woooooo 5 hours ago \| parent [-]
		Thanks, I'm now shaking my head at my naivete :)

▲

basilikum 7 hours ago | parent | prev | next [-]

https://developers.cloudflare.com/waf/tools/privacy-pass/

	▲	arbol 5 hours ago \| parent [-]
		Are you really posting this today?

▲

octoberfranklin 5 hours ago | parent | prev | next [-]

Yes, there are several, and the good one (linked below) lets you use the "humanness" token across different websites without them being able to use it as a tracking signal / supercookie. It's very clever.

https://github.com/ietf-wg-privacypass/base-drafts

https://privacypass.github.io/

▲

lotsofpulp 7 hours ago | parent | prev [-]

I assume that will be for Apple (and eventually Alphabet) to implement via digital IDs linked to real world IDs.

https://www.apple.com/newsroom/2025/11/apple-introduces-digi...

	▲	philipwhiuk 6 hours ago \| parent [-]
		Don't worry, Sam Altman is selling the protection too -- https://en.wikipedia.org/wiki/World_(blockchain)