- CAPTCHA on SR site wasn't configured correctly with TOR and leaked the IP of the server
Oh my god. When I had a look at SR I remember looking at that captcha and wondering how they were locally generating such a high quality captcha code.
I don't think Captcha is ever locally generated, otherwise it would be very easy to "crack" the captcha as someone could just run a script to figure out what the correct text should be.
I am interested to see if this explanation will be accepted by the defense and the court.