Step 1: Login to the site https://www.portaldasfinancas....
Step 2: Enter the IRS form (should be already in the first page, if not, search for it)
Step 3: Choose what year to fill the IRS
Step 4: Choose automatic submission, it is good for most people.
Step 5 if automatic isn't allowed for you, choose manual submission, choose pre-filled data. This will fill almost everything
Step 6: Add the special forms and data for what is missing from the pre-filled (investments, rents, sold houses, etc Banks send those info or own contracts have usually all the data). This is the more complex part, but if you have those extras, you usually know what to do.
Step 7: Confirm bank account and choose to who you will give a small percentage of your taxes (Social, religious, environmental, public interest associations)
Step 8 Submit. Done

All Free, all simple, specially taking a look how it was done 30 years ago

If you really don't have or understand computers, or you have any problem, you can go to a government tax office and fill the paperwork. You can also ask question online. If all fail, you can ask for help for free on some associations or pay some random shops that can help you for little money

don't worry, Trump will blame Canada, Greenland and probably Mexico, Hamas and Iran, invade all them and build the tex-mex riviera, gaza riviera and persian riviera (Greenland and Canada he just want to drill, nothing more)... ohh, and finally be able to really rename the Gulf of Mexico to Gulf of America (or even better, Gulf of Trump)

there are apps/content that will ONLY play if you are using a HDMI cable. DisplayPort will fail... worst example is some laptopst that can't display a movie/TV in build in screen but works if you connect a HDMI external monitor (but only on that monitor, if you drag the content back to the internal display, it will stop working!)

yes, stupid idea, but some DRM makers did build that and some stupid clients enable it

not that kind of cards! think pokemon/magic the gathering cards:D

Ohh memories! great game, the Syndicate!

computers/bots/ai are now better solving captchas than human, the click on images thing is falling apart already.
the prove of work is what they are using, with a catch, corner cases, small details that each browser do that can hint if it is really what is announced in the user-agent or not. That is why the first thing that people must do is stopping faking user-agents in their browsers, that causes more problems.
the security by obscurity is bad, but this are so simple things, that announce them will make them useless... so as long as they are obscure, they may work and help blocking bots.

Believe me when i say that while this sometime block real users ( i have a ticket open exactly because of this) and small browsers suffer the most, bots are really suffering lot more, my control over bots right now is very good, while never perfect

why?
because it is remote? the old cloudflare was actually using nginx!
how about AWS cloudfront? it is also remote!!
Akamai? Incampsula? Miracloud? any CDN?
and how about aws ALB? less remote?, but also not the same man, you have zero control over that
how about a cloud server with nginx... what stops the cloud provider from having some backdoor to the vm and monitor the traffic? MITM too?
how about a squid proxy?

Anyway, all CDN do that, or else they aren't really helping
if your site wants really to be se secret and use cloudflare or other CDN, just add a extra layer of crypto to the data payloads... but either you decrypt the traffic and can check for malicious behavior, or you don't do that and have to accept those malicious requests and suffer any impact of them

yes, but getting junk traffic that either kills the server or waste a huge amount of money is also wrong. This is exactly the same as spam, it is needed, while sometimes it can also target innocent. i'm ok with smaller browsers to talk and agree with cloudflare to add a few corner cases that can be used to compare human vs bot traffic... but that is also why (sadly) the NDA is involved, to avoid leaks

what we need is something like https://datatracker.ietf.org/d... , but for http !!

while most do the job and use the time wasted traveling to play with their kids
it is called live balance, but i understand that idea may be totally unknown to many USA citizens, as rat race is not live balance

they need the NDA for sure to make sure that the checks they are using to detect bots aren't leaked and made useless when all bots workaround those checks.

Not having NDA is like:
"hey, i have this magic things and that is how i get my money... lets disclose it and make it useless, so i can stop making money"

ALL ISP, Cloud and hosting have that 3 letters problem. niche browsers do not help in any way to solve that problem, that problem abuses the IP and TLS layers.

small browsers may help in abusing security holes if they are really obscure, but any decent size should also have a hidden list of security holes that they can abuse

This!!

Some users feel entitled to use my site, where i'm the one that decide who i want to use it.

Blocking bots is hard, some bots will still abuse a site and some real users will be blocked by accident. This is a hard balance to manage and all small details do help

cloudflare isn't a MITM because the site owner did the setup to use it. It is just as MITM as a nginx receiving the https request and sending the request to some backend. It also decrypt the traffic, analyze the request and opens a new https request to the backend. Now replace the nginx with cloudflare, exactly the same.

CF have extensive controls and certifications to make sure that this process isn't abused and while nothing is 100% bullet proof, we have zero reports of something like that happening.

If you are questioning governments abusing this, they sure can do, but they also can do it to any site without cloudflare too, it you control the ISPs, isn't hard to redirect the traffic to another server, have a valid certificate (see how many CA your browser accept... how many of those are controlled by governments) and them reverse proxy to the real site. It is probably easier for them to use the ISPs than to nag cloudflare (that is usually quite open with this matters, when they can, of course and DO require valid court orders and they usually fight all of them)

bing, and that is why they try to use it, to see if it is a real users or some bot trying to fake any other browser

as i said, trying to detect bots is hard and all small details and corner cases help doing it

that is totally the wrong way to do it!

that is what the bots are doing, trying to fake real user browsers! that is why cloudflare is checking weird things, to detect those fake browsers.

what the other browsers must do is really use their own user-agent and announce their real features... and talk with cloudflare to even add extra checks to help CF and others to detect them