I have recently enabled the "resistFingerprinting" option in Firefox[1], in order to prevent tracking based on browser fingerprinting. However I have found out that once I've done that, Google's reCAPTCHA becomes almost impossible to solve.
Normally I wouldn't care too much about Google, the problem is that in Australia, reCAPTCHA is used by Westpac bank, for processing payments on behalf of the Department of Education of New South Wales. In other words, you can't pay your child's public school fees online, unless you agree to Google tracking you.
How to test:
create a form with reCAPTCHA or just use a pre-existing one like [2], then try and solve the reCAPTCHA while resistFingerprinting is set to false (default setting)[1]. Now change it to true, and try to solve the reCAPTCHA once again.
[1] https://support.mozilla.org/en-US/kb/firefox-protection-agai...
[2] https://patrickhlauke.github.io/recaptcha/
Most Google products provide me services in exchange for tracking me, offering a reasonable compromise. With reCAPTCHA, they exploit me as an unpaid worker helping classify and train their ML algorithms, cost me time and wreck privacy leaving Google and the captcha hosting website as the only beneficiaries. Google in this case is more like a corrupt gatekeeper preventing you from entering the town. The town can employ more friendly options, but they don't care as long as the undesirables are kept at bay.
For those who have experience with using reCAPTCHA, is it so easy to setup and deploy that more and more sites are switching to them? Are there no decent non-exploitative alternatives which are tough on bots but solvable in reasonable time for humans without being a test of patience?