[noncoml]

"receive hundreds of spam submission per day"

But this is exactly the point I am trying to make. That's the service provider's problem and not the user's. CAPTCHA shifts the problem to the user.

CAPTCHA is a 00's idea, when we had the multiple page registrations(with errors showing only after you submit the page), the insane password requirements, etc.. It doesn't belong to modern stack in my opinion.

"What is the non-lazy solution?" That's how disruption is born.

[cdubzzz]

> "What is the non-lazy solution?" That's how disruption is born.

So there is no non-lazy solution.

I get your point about shifting the problem, but that's kind of the only option for the vast majority of website operators (particularly small ones).

I have zero love for CAPTCHA myself, I have put time and effort in to other, server-side solutions but none perform even remotely as well.

[hombre_fatal]

The vast majority of users never see a recaptcha puzzle when you're using v2's invisible recaptcha.

[SquareWheel]

And 0% of users see it if you're using reCaptcha v3.

[xur17]

It never presents challenges to users, but instead just buckets them into bot or not bot?

[SquareWheel]

Almost. It gives a botness score to the server, and it's up to the website to decide what to do with that score. They can pick a threshold to approve, reject, or apply stricter verification to.