[phlhar]

Oh wow, they just disabled it while I was reading some comments. It's no longer working, I'm now getting redirected to nsa.gov

Edit: This seems to have been online since 2018, see https://web.archive.org/web/20181206224407/http://captcha.ns....

[basilamer]

As someone very confused as to what people are commenting about, thank you. I'm clearly just seeing the post-patch version

[casefields]

Before they fixed it, it redirected to Googles homepage in Portuguese.

[dahfizz]

It wasn't a redirect. They served a Google homepage, but it was still an nsa.gov url

[mirimir]

Here: https://web.archive.org/web/20200203154312/https://captcha.n...

[a012]

I still see a Google homepage

[dannyw]

That's what it was. The NSA was reverse proxying Google.

The legit explanation (given the domain name) is probably they wanted to use reCAPTCHA, but block all non-NSA hosts with a firewall or something.

This is not great, because the NSA expanded its attack surface to all of google.com.

The more conspiracy explanation is that this is actually a phishing page set up, and due to a misconfiguration it's exposed under captcha.nsa.gov, but Occam's Razor should apply here.

[littlestymaar]

I think you meant “Hanlon's razor”[1].

[1]: https://en.m.wikipedia.org/wiki/Hanlon%27s_razor

[mirimir]

As far as I can tell, it's what you'd see hitting https://www.google.com.br/ from Brasil, but in English.

[tsukurimashou]

Hahaha, I don't think they were expecting all that traffic from this being posted on HN