The internet will eventually move to a closed system full of Markoff Chain crap like WAFs after enough hax makes the news. Everything up to now has been really basic techniques and much more stuff can be hacked than what currently is. For instance "smart" cars can be taken over and forced to crash by a remote connection (one or two examples of such systems have been demonstrated so far, affecting millions of cars). More and more bullshit will be made hackable because the consumer demands it. Houses will have some retarded mechanism that can be remotely controlled and shock everyone in the house by fucking with the smart electrical system. So placebo (yet harmful) bullshit like antivirus, firewalls, and WAF (what cuckflare is) will be everywhere and in everything (Smart TVs have antivirus already btw lol, and cars have software updates because the manufacturers claim they are like phones instead of doing the obvious thing which is to remove the software).
People who use the real alternate internet that emerges then (something like I2P and/or Freenet) wont be affected because they don't suck the security hysteria dick. That shouldn't happen until maybe 2030, but cuckflare is way ahead of everyone else and already decided to block everyone and everything for literally no reason (since ~2010, 20 years early), while shooting themselves in the foot by introducing vulnerabilities in the process of making this retarded complex system which serves no purpose (Cloudbleed was the first, there will be more). Meanwhile, everyone and their mom on the western internet currently spreads the meme that you need cuckflare to handle ddos (even though there are a million alternate solutions, and there have been 500,000 for the 20 years before now).
Cuckflare's stupid "attention required; one more step" page is an example of when you should have done nothing but instead you went ahead and addressed problems that don't exist yet, in two ways:
-There is not enough hysteria on the internet yet to justify forcing a WAF by default to pretend to try and block, say, SQLi injection attacks. Such a system only exists to appease the masses (it doesn't actually prevent your website from being hacked in any way), yet the masses never even asked for this yet.
-On the DDoS side, it would make sense to temporarily (for hours at most, not decades) block IPs when they are attacking a website, by requiring a captcha. However that's only if there's an existing application level ddos attack going on, which there isn't.
So the two possible reasons why this captcha exists are invalid. When Cuckflare wrote about the captcha, they gave a handwavy explanation going into mentioning pseudo-scientific topics such as anti-scraping (which is what caused the Cloudbleed vulnerability).
On this topic, the usage of Recaptcha also is an example of where you should have done nothing but went ahead and addressed a problem that doesn't exist yet. Everyone should randomly pick a captcha service and switch if they start being spammed. There is no other sane way to use captchas. Devs/admins either use Recaptcha because it's popular, their platform picked it for them, or they believe all the other captchas are compromised. However, captchas only exist to slow spam or other unwanted traffic. They can never fully stop it. Some people use Recaptcha because they believe it will always fully stop all spam, which is false and unnecessary because they could just use some other captcha and if they ever do get spammed. It's not a big deal if a bunch of spam appears for a day (which will happen from time to time no matter how good your captcha is anyway). Since Recpatcha is by far the worse captcha for users that has ever existed (and has been for 10 years now, even after switching to their dumbass image clicking system), there's absolutely no reason to use it. Use a different captcha, keep switching. If like Google claims, all the other captchas are broken, only _then_ would it make sense for anyone to start thinking of using Recaptcha.
Also, to bypass cuckflare in firecuck or forks now you can set in about:config:
general.useragent.override;Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0
Tor browser has this by default (the reason this is possible is because cuckflare probably temporarily whitelisted tor browser, which is a good thing for once).