home.social

#scrapers — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #scrapers, aggregated by home.social.

  1. Iocaine and my custom solution aren't good enough. :blobcatbigsob: I'm considering to add to login to my website rewrite as protection against bots.

    I would always offer an anonymous session after completing a proof of work (which is also available without JS).

    Do you think this is okay? Please don't hesitate to reply!

    #website #personalBlog #PersonalSites #indieweb #spam #spamprotection #scrapers #selfhosting #iocaine

  2. Desde afuera todavia se nota cierta latencia, a veces, posiblemente porque no han cesado los ataques de scraping. En la red interna vuela, y en las metricas los servidores no estan bajo carga o demanda altos, estan normales. El problema en ese caso sería que todos esos ataques que el firewall esta bloqueando exitosamente, lo hace recien dentro de la red, por lo que ese trafico ocupa lugar en la conexión dejando menos ancho de banda neto para el tráfico legítimo... veremos si la cosa mejora en los próximos dias #undernet #ataque #bots #scrapers #iabot #peertube

  3. Desde afuera todavia se nota cierta latencia, a veces, posiblemente porque no han cesado los ataques de scraping. En la red interna vuela, y en las metricas los servidores no estan bajo carga o demanda altos, estan normales. El problema en ese caso sería que todos esos ataques que el firewall esta bloqueando exitosamente, lo hace recien dentro de la red, por lo que ese trafico ocupa lugar en la conexión dejando menos ancho de banda neto para el tráfico legítimo... veremos si la cosa mejora en los próximos dias #undernet #ataque #bots #scrapers #iabot #peertube

  4. Desde afuera todavia se nota cierta latencia, a veces, posiblemente porque no han cesado los ataques de scraping. En la red interna vuela, y en las metricas los servidores no estan bajo carga o demanda altos, estan normales. El problema en ese caso sería que todos esos ataques que el firewall esta bloqueando exitosamente, lo hace recien dentro de la red, por lo que ese trafico ocupa lugar en la conexión dejando menos ancho de banda neto para el tráfico legítimo... veremos si la cosa mejora en los próximos dias #undernet #ataque #bots #scrapers #iabot #peertube

  5. Desde afuera todavia se nota cierta latencia, a veces, posiblemente porque no han cesado los ataques de scraping. En la red interna vuela, y en las metricas los servidores no estan bajo carga o demanda altos, estan normales. El problema en ese caso sería que todos esos ataques que el firewall esta bloqueando exitosamente, lo hace recien dentro de la red, por lo que ese trafico ocupa lugar en la conexión dejando menos ancho de banda neto para el tráfico legítimo... veremos si la cosa mejora en los próximos dias #undernet #ataque #bots #scrapers #iabot #peertube

  6. Desde afuera todavia se nota cierta latencia, a veces, posiblemente porque no han cesado los ataques de scraping. En la red interna vuela, y en las metricas los servidores no estan bajo carga o demanda altos, estan normales. El problema en ese caso sería que todos esos ataques que el firewall esta bloqueando exitosamente, lo hace recien dentro de la red, por lo que ese trafico ocupa lugar en la conexión dejando menos ancho de banda neto para el tráfico legítimo... veremos si la cosa mejora en los próximos dias #undernet #ataque #bots #scrapers #iabot #peertube

  7. 🎩🤖 Oh, look, another #GitHub hero has blessed us with a "groundbreaking" #tool to trap #AI #web #scrapers in a "poison pit." Because clearly, what we all need is a #digital Venus flytrap for code 😏. Meanwhile, GitHub's feature salad just keeps growing, because who doesn't love a good menu with more options than a diner? 🍔💻
    github.com/austin-weeks/miasma #innovation #featureupdate #codinghumor #HackerNews #ngated

  8. 🎩🤖 Oh, look, another #GitHub hero has blessed us with a "groundbreaking" #tool to trap #AI #web #scrapers in a "poison pit." Because clearly, what we all need is a #digital Venus flytrap for code 😏. Meanwhile, GitHub's feature salad just keeps growing, because who doesn't love a good menu with more options than a diner? 🍔💻
    github.com/austin-weeks/miasma #innovation #featureupdate #codinghumor #HackerNews #ngated

  9. 🎩🤖 Oh, look, another #GitHub hero has blessed us with a "groundbreaking" #tool to trap #AI #web #scrapers in a "poison pit." Because clearly, what we all need is a #digital Venus flytrap for code 😏. Meanwhile, GitHub's feature salad just keeps growing, because who doesn't love a good menu with more options than a diner? 🍔💻
    github.com/austin-weeks/miasma #innovation #featureupdate #codinghumor #HackerNews #ngated

  10. 🎩🤖 Oh, look, another #GitHub hero has blessed us with a "groundbreaking" #tool to trap #AI #web #scrapers in a "poison pit." Because clearly, what we all need is a #digital Venus flytrap for code 😏. Meanwhile, GitHub's feature salad just keeps growing, because who doesn't love a good menu with more options than a diner? 🍔💻
    github.com/austin-weeks/miasma #innovation #featureupdate #codinghumor #HackerNews #ngated

  11. 🎩🤖 Oh, look, another #GitHub hero has blessed us with a "groundbreaking" #tool to trap #AI #web #scrapers in a "poison pit." Because clearly, what we all need is a #digital Venus flytrap for code 😏. Meanwhile, GitHub's feature salad just keeps growing, because who doesn't love a good menu with more options than a diner? 🍔💻
    github.com/austin-weeks/miasma #innovation #featureupdate #codinghumor #HackerNews #ngated

  12. No outages in the latest Apache logs. However, there is plenty of suspicious activity.

    The log has 16,033 lines.

    Of these, 1,559 lines feature the "RecentChanges" function for my wikis. Which is something regular users _might_ call up from time to time, but I suspect that #scrapers are the more likely culprits.

    The vast majority of these requests come from a random assortment of IP addresses, and they usually end with something on the lines of:

    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"

    So yeah, "anonymous bot nets scraping the Interwebs for nefarious purposes" would be by first guess.

  13. No outages in the latest Apache logs. However, there is plenty of suspicious activity.

    The log has 16,033 lines.

    Of these, 1,559 lines feature the "RecentChanges" function for my wikis. Which is something regular users _might_ call up from time to time, but I suspect that #scrapers are the more likely culprits.

    The vast majority of these requests come from a random assortment of IP addresses, and they usually end with something on the lines of:

    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"

    So yeah, "anonymous bot nets scraping the Interwebs for nefarious purposes" would be by first guess.

  14. No outages in the latest Apache logs. However, there is plenty of suspicious activity.

    The log has 16,033 lines.

    Of these, 1,559 lines feature the "RecentChanges" function for my wikis. Which is something regular users _might_ call up from time to time, but I suspect that #scrapers are the more likely culprits.

    The vast majority of these requests come from a random assortment of IP addresses, and they usually end with something on the lines of:

    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"

    So yeah, "anonymous bot nets scraping the Interwebs for nefarious purposes" would be by first guess.

  15. No outages in the latest Apache logs. However, there is plenty of suspicious activity.

    The log has 16,033 lines.

    Of these, 1,559 lines feature the "RecentChanges" function for my wikis. Which is something regular users _might_ call up from time to time, but I suspect that #scrapers are the more likely culprits.

    The vast majority of these requests come from a random assortment of IP addresses, and they usually end with something on the lines of:

    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"

    So yeah, "anonymous bot nets scraping the Interwebs for nefarious purposes" would be by first guess.

  16. No outages in the latest Apache logs. However, there is plenty of suspicious activity.

    The log has 16,033 lines.

    Of these, 1,559 lines feature the "RecentChanges" function for my wikis. Which is something regular users _might_ call up from time to time, but I suspect that #scrapers are the more likely culprits.

    The vast majority of these requests come from a random assortment of IP addresses, and they usually end with something on the lines of:

    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"

    So yeah, "anonymous bot nets scraping the Interwebs for nefarious purposes" would be by first guess.

  17. Army of Bots

    For some months now I have a simple detection against "bad" bots in place. Bots that scrape *everything* they find and very likely are vacuuming all the contents they get to feed the data grinders that train the LLMs of the world. Bots that not only ignore the "robots.txt" protocol, but actively see entries in the robots.txt file as an invitation to visit the contents that are listed there as "disallowed".

    I always had a hunch that stating addresses in a publicy reachable text file and flagging those as "please stay out of there" wasn't the best idea, but well, it was the only thing we've got back in the days where the only bots out there were the crawlers of the search engines.

    (…) There are two important considerations when using /robots.txt:
    robots can ignore your /robots.txt. Especially malware robots that scan the web for security vulnerabilities, and email address harvesters used by spammers will pay no attention.
    the /robots.txt file is a publicly available file. Anyone can see what sections of your server you don't want robots to use.
    robotstxt.org

    Now with all the content-sucking and scraping that the "AI" corporations let lose on the web, it is not unusual to haver a massive spike in bot-related visits even in the personal-website-space. And those scrapers are ruthless, they hammer the servers in high frequency and repeatetly, and are killing the web as we know it along the way.

    (…) Many of these scrapers are so sophisticated that it is hard, or impossible, to detect them in action. They often ignore the websites’ programmatic pleas not to be scraped, and are known to hit the more fragile parts of a website repeatedly. opendemocracy.net

    I created a directory with a random name in the top-level of my website.

    I then added this directory in the robots.txt file with a disallow. This directory is not linked anywhere. Its name is so random and cryptical that it is highly unlikely that a "name guessing" bot will find it (like those exploit-searching idiot scripts that hammer on "wp-admin" or "typo3" URLs even on sites that don't use WordPress or TYPO3…). Inside the directory is a index script that

    a) sends me an email,
    b) logs the visit with user-agent-string and IP address and
    c) saves the data in a nosql db.

    In front of my website I have a script that will check the current visitor's IP address against the nosql and if the IP matches, a HTTP 403 status is served.

    Here's a best-of user agent strings that recently "visited" my hidden dir.
    That last one is superb, considering that this one alone is several times in my log, of course with a different IP each time:

    PetalBot
    Googlebot/2.1
    Claude-SearchBot/1.0
    Thinkbot/0 +In_the_test_phase,_if_the_Thinkbot_brings_you_trouble,_please_block_its_IP_address._Thank_you.

    Plus, there's a load more that pretend to be "normal" web browsers, of course. 🙄

    It is a crude, a symbolical fist shaking yelling at clouds kind-of thing, especially compared to the things that Matthias Ott shared in his post, but it is better than nothing.

    #Bots #getoffmylawn #LLM #scrapers

    https://webrocker.de/?p=29781

  18. Army of Bots

    For some months now I have a simple detection against "bad" bots in place. Bots that scrape *everything* they find and very likely are vacuuming all the contents they get to feed the data grinders that train the LLMs of the world. Bots that not only ignore the "robots.txt" protocoll, but actively see entries in the robots.txt file as an invitation to visit the contents that are listed there as "disallowed".

    I always had a hunch that stating addresses in a publicy reachable text file and flagging those as "please stay out of there" wasn't the best idea, but well, it was the only thing we've got back in the days where the only bots out there were the crawlers of the search engines. Now with all the content-sucking and scraping that the "AI" corporations let lose on the web, it is not unusual to haver a massive spike in bot-related visits even in the personal-website-space. And those scrapers are ruthless, they hammer the servers in high frequency and repeatetly.

    I created a directory with a random name in the top-level of my website.

    I then added this directory in the robots.txt file with a disallow. This directory is not linked anywhere. Its name is so random and cryptical that it is highly unlikely that a "name guessing" bot will find it (like those exploit-searching idiot scripts that hammer on "wp-admin" or "typo3" URLs even on sites that don't use WordPress or TYPO3…). Inside the directory is a index script that a) sends me an email, b) logs the visit with user-agent-string and IP address and c) saves the data in a nosql db.

    In front of my website I have a script that will check the current visitor's IP address against the nosql and if the IP matches, a HTTP 403 is served.

    Here's a best-of user agent strings that recently "visited" my hidden dir. That last one is superb, considering that this one alone is several times in my log, of course with a different IP each time:

    PetalBot
    Googlebot/2.1
    Claude-SearchBot/1.0
    Thinkbot/0 +In_the_test_phase,_if_the_Thinkbot_brings_you_trouble,_please_block_its_IP_address._Thank_you.

    Plus, there's a load more that pretend to be "normal" web browsers.

    It is a crude and a symbolical fist shaking yelling at clouds thing, especially compared to the things that Matthias Ott shared in his post, but it is better than nothing.

    #Bots #getoffmylawn #LLM #scrapers

    https://webrocker.de/?p=29781

  19. Army of Bots

    For some months now I have a simple detection against "bad" bots in place. Bots that scrape *everything* they find and very likely are vacuuming all the contents they get to feed the data grinders that train the LLMs of the world. Bots that not only ignore the "robots.txt" protocoll, but actively see entries in the robots.txt file as an invitation to visit the contents that are listed there as "disallowed".

    I always had a hunch that stating addresses in a publicy reachable text file and flagging those as "please stay out of there" wasn't the best idea, but well, it was the only thing we've got back in the days where the only bots out there were the crawlers of the search engines. Now with all the content-sucking and scraping that the "AI" corporations let lose on the web, it is not unusual to haver a massive spike in bot-related visits even in the personal-website-space. And those scrapers are ruthless, they hammer the servers in high frequency and repeatetly.

    I created a directory with a random name in the top-level of my website.

    I then added this directory in the robots.txt file with a disallow. This directory is not linked anywhere. Its name is so random and cryptical that it is highly unlikely that a "name guessing" bot will find it (like those exploit-searching idiot scripts that hammer on "wp-admin" or "typo3" URLs even on sites that don't use WordPress or TYPO3…). Inside the directory is a index script that a) sends me an email, b) logs the visit with user-agent-string and IP address and c) saves the data in a nosql db.

    In front of my website I have a script that will check the current visitor's IP address against the nosql and if the IP matches, a HTTP 403 is served.

    Here's a best-of user agent strings that recently "visited" my hidden dir. That last one is superb, considering that this one alone is several times in my log, of course with a different IP each time:

    PetalBot
    Googlebot/2.1
    Claude-SearchBot/1.0
    Thinkbot/0 +In_the_test_phase,_if_the_Thinkbot_brings_you_trouble,_please_block_its_IP_address._Thank_you.

    Plus, there's a load more that pretend to be "normal" web browsers.

    It is a crude and a symbolical fist shaking yelling at clouds thing, especially compared to the things that Matthias Ott shared in his post, but it is better than nothing.

    #Bots #getoffmylawn #LLM #scrapers

    https://webrocker.de/?p=29781

  20. Army of Bots

    For some months now I have a simple detection against "bad" bots in place. Bots that scrape *everything* they find and very likely are vacuuming all the contents they get to feed the data grinders that train the LLMs of the world. Bots that not only ignore the "robots.txt" protocoll, but actively see entries in the robots.txt file as an invitation to visit the contents that are listed there as "disallowed".

    I always had a hunch that stating addresses in a publicy reachable text file and flagging those as "please stay out of there" wasn't the best idea, but well, it was the only thing we've got back in the days where the only bots out there were the crawlers of the search engines. Now with all the content-sucking and scraping that the "AI" corporations let lose on the web, it is not unusual to haver a massive spike in bot-related visits even in the personal-website-space. And those scrapers are ruthless, they hammer the servers in high frequency and repeatetly.

    I created a directory with a random name in the top-level of my website.

    I then added this directory in the robots.txt file with a disallow. This directory is not linked anywhere. Its name is so random and cryptical that it is highly unlikely that a "name guessing" bot will find it (like those exploit-searching idiot scripts that hammer on "wp-admin" or "typo3" URLs even on sites that don't use WordPress or TYPO3…). Inside the directory is a index script that a) sends me an email, b) logs the visit with user-agent-string and IP address and c) saves the data in a nosql db.

    In front of my website I have a script that will check the current visitor's IP address against the nosql and if the IP matches, a HTTP 403 is served.

    Here's a best-of user agent strings that recently "visited" my hidden dir. That last one is superb, considering that this one alone is several times in my log, of course with a different IP each time:

    PetalBot
    Googlebot/2.1
    Claude-SearchBot/1.0
    Thinkbot/0 +In_the_test_phase,_if_the_Thinkbot_brings_you_trouble,_please_block_its_IP_address._Thank_you.

    Plus, there's a load more that pretend to be "normal" web browsers.

    It is a crude and a symbolical fist shaking yelling at clouds thing, especially compared to the things that Matthias Ott shared in his post, but it is better than nothing.

    #Bots #getoffmylawn #LLM #scrapers

    https://webrocker.de/?p=29781

  21. Army of Bots

    For some months now I have a simple detection against "bad" bots in place. Bots that scrape *everything* they find and very likely are vacuuming all the contents they get to feed the data grinders that train the LLMs of the world. Bots that not only ignore the "robots.txt" protocol, but actively see entries in the robots.txt file as an invitation to visit the contents that are listed there as "disallowed".

    I always had a hunch that stating addresses in a publicy reachable text file and flagging those as "please stay out of there" wasn't the best idea, but well, it was the only thing we've got back in the days where the only bots out there were the crawlers of the search engines.

    (…) There are two important considerations when using /robots.txt:
    robots can ignore your /robots.txt. Especially malware robots that scan the web for security vulnerabilities, and email address harvesters used by spammers will pay no attention.
    the /robots.txt file is a publicly available file. Anyone can see what sections of your server you don't want robots to use.
    robotstxt.org

    Now with all the content-sucking and scraping that the "AI" corporations let lose on the web, it is not unusual to haver a massive spike in bot-related visits even in the personal-website-space. And those scrapers are ruthless, they hammer the servers in high frequency and repeatetly, and are killing the web as we know it along the way.

    (…) Many of these scrapers are so sophisticated that it is hard, or impossible, to detect them in action. They often ignore the websites’ programmatic pleas not to be scraped, and are known to hit the more fragile parts of a website repeatedly. opendemocracy.net

    I created a directory with a random name in the top-level of my website.

    I then added this directory in the robots.txt file with a disallow. This directory is not linked anywhere. Its name is so random and cryptical that it is highly unlikely that a "name guessing" bot will find it (like those exploit-searching idiot scripts that hammer on "wp-admin" or "typo3" URLs even on sites that don't use WordPress or TYPO3…). Inside the directory is a index script that

    a) sends me an email,
    b) logs the visit with user-agent-string and IP address and
    c) saves the data in a nosql db.

    In front of my website I have a script that will check the current visitor's IP address against the nosql and if the IP matches, a HTTP 403 status is served.

    Here's a best-of user agent strings that recently "visited" my hidden dir.
    That last one is superb, considering that this one alone is several times in my log, of course with a different IP each time:

    PetalBot
    Googlebot/2.1
    Claude-SearchBot/1.0
    Thinkbot/0 +In_the_test_phase,_if_the_Thinkbot_brings_you_trouble,_please_block_its_IP_address._Thank_you.

    Plus, there's a load more that pretend to be "normal" web browsers, of course. 🙄

    It is a crude, a symbolical fist shaking yelling at clouds kind-of thing, especially compared to the things that Matthias Ott shared in his post, but it is better than nothing.

    #Bots #getoffmylawn #LLM #scrapers

    https://webrocker.de/?p=29781

  22. OpenStreetMap.org has been disrupted today. We're working to keep the site online while facing extreme load from anonymous scrapers spread across 100,000+ IP addresses. Please be patient while we mitigate and protect the service. #OpenStreetMap #DDoS #Scrapers #AI

  23. OpenStreetMap.org has been disrupted today. We're working to keep the site online while facing extreme load from anonymous scrapers spread across 100,000+ IP addresses. Please be patient while we mitigate and protect the service. #OpenStreetMap #DDoS #Scrapers #AI

  24. OpenStreetMap.org has been disrupted today. We're working to keep the site online while facing extreme load from anonymous scrapers spread across 100,000+ IP addresses. Please be patient while we mitigate and protect the service. #OpenStreetMap #DDoS #Scrapers #AI

  25. OpenStreetMap.org has been disrupted today. We're working to keep the site online while facing extreme load from anonymous scrapers spread across 100,000+ IP addresses. Please be patient while we mitigate and protect the service. #OpenStreetMap #DDoS #Scrapers #AI

  26. OpenStreetMap.org has been disrupted today. We're working to keep the site online while facing extreme load from anonymous scrapers spread across 100,000+ IP addresses. Please be patient while we mitigate and protect the service. #OpenStreetMap #DDoS #Scrapers #AI

  27. Looks like those nasty AI scraper cannot follow 30x redirects
    #webmaster #scrapers #website

  28. Looks like those nasty AI scraper cannot follow 30x redirects
    #webmaster #scrapers #website

  29. Looks like those nasty AI scraper cannot follow 30x redirects
    #webmaster #scrapers #website

  30. Posted some new blog-articles during the weekend .. Now I saw a quite substancial spike in traffic, that doesn't really look like normal human interaction ...

    Grafana/Loki with some LogQL did quickly reveal it. It's scrapers of the AI-Slop generators hitting the webserver in bursts 🤦‍♂️

    Time for come countermeasures 🙂

    #ai #slop #scrapers #aislop #openai #stopai

  31. Posted some new blog-articles during the weekend .. Now I saw a quite substancial spike in traffic, that doesn't really look like normal human interaction ...

    Grafana/Loki with some LogQL did quickly reveal it. It's scrapers of the AI-Slop generators hitting the webserver in bursts 🤦‍♂️

    Time for come countermeasures 🙂

    #ai #slop #scrapers #aislop #openai #stopai

  32. Posted some new blog-articles during the weekend .. Now I saw a quite substancial spike in traffic, that doesn't really look like normal human interaction ...

    Grafana/Loki with some LogQL did quickly reveal it. It's scrapers of the AI-Slop generators hitting the webserver in bursts 🤦‍♂️

    Time for come countermeasures 🙂

    #ai #slop #scrapers #aislop #openai #stopai

  33. Posted some new blog-articles during the weekend .. Now I saw a quite substancial spike in traffic, that doesn't really look like normal human interaction ...

    Grafana/Loki with some LogQL did quickly reveal it. It's scrapers of the AI-Slop generators hitting the webserver in bursts 🤦‍♂️

    Time for come countermeasures 🙂

    #ai #slop #scrapers #aislop #openai #stopai

  34. Posted some new blog-articles during the weekend .. Now I saw a quite substancial spike in traffic, that doesn't really look like normal human interaction ...

    Grafana/Loki with some LogQL did quickly reveal it. It's scrapers of the AI-Slop generators hitting the webserver in bursts 🤦‍♂️

    Time for come countermeasures 🙂

    #ai #slop #scrapers #aislop #openai #stopai

  35. Really excited by becoming a collaborator on #stegodon - It's such an exciting piece of software! I did however spend most of my morning countering #scrapers on lemmy.zip - the fun of hosting a site on the #fediverse eh :)