[grothoff]

Not quite. GNU Taler's reference implementation requires explicit user consent for payment. But as GNU Taler is Free Software, you are free to modify the code on your system (and share your with others) to not require an explicit confirmation if you prefer that. Or even better, to add an option to do that on some "trusted" sites which you make configurable for each user via settings. I don't know if the risk is worth the UX improvement, but a key contribution of GNU Taler is that it is a Free Software payment system where you actually have the full four freedoms. Use them!

[littlestymaar]

While what you say is completely valid, that doesn't save the original argument by pcj50 which was made up claims about the ability for scammer to drain your wallet. Of course you could build your own implementation that allows for such an attack, it is not a valid criticism of the project.

[grothoff]

Indeed, I just wanted to point out that the "game changing" desire of entropyie to fully automate payments can still be done with GNU Taler. So you are right that the scammer in the default deployment won't succeed, but additionally entropyie could still totally get what entropyie wants as a feature on their own system (and conceivably make this reasonably secure, too).