That’s true. The reason is there’s lots of bot traffic spoofing real users, sometimes even going through residential proxies.
When bots spoof users well, the last option for projects is use these PoW captcha that annoy everyone. Enshitification continues.
By spoofing the fingerprint, developers can make their automated tools impersonate real users more convincingly, thereby bypassing bot detections.
Many OSS projects and personal web servers have bot detection because they would otherwise drown under (AI) scrappers and other bots traffic. Hosting or bandwidth cost is often unsustainable without bot protection.
If you don’t want to kill these projects, honor robots.txt by default, use throttling, don’t try to circumvent bot blocks. Look if there’s a purpose built API available to bots. If they don’t want to offert such API, go find something else to do.
Vendor support. Some hardware and software vendors still only care about Windows.
The article focuses on techniques that help bots spoof browsers, to make them impersonate a typical human visitor.
It’s not obvious how this helps people protect themselves against surveillance while being online. Using python scripting is not a practical way to browse. But it’s handy to write scrappers.
It’s certainly useful to misbehaving bots that try to evade anti-bots protection.