Searching yarn

Twts matching #twtxt.txt
Sort by: Newest, Oldest, Most Relevant
prologic
twtxt.net
 (5w ago)
In-reply-to » Tired to re-enable the Ege route to git.mills.io today (after finishing work) and this is what I found 🤯 Tehse asshole/cunts are still at it !!! 🤬 -- So let's instead see if this works:

@aelaraji@aelaraji.com Ahhh! That would be even funnier and even more brilliant! 🤣 If you can find this, I would happily employ this tactic next time and make ‘em pay 💰 Bahahahaha 🤣

⤋ Read More
prologic
twtxt.net
 (5w ago)
In-reply-to » @prologic I'd say give crowdsec a try but I know for sure you prefer your own WAF ... 😅

@aelaraji@aelaraji.com Yeah and I think I can basically pull the crowssec rules every N interval right and use this to make blocking decisions? – I’ve actually considered this part of a completely new WAF design that I just haven’t built yet (just designing it).

⤋ Read More
aelaraji
aelaraji.com
 (5w ago)
In-reply-to » Tired to re-enable the Ege route to git.mills.io today (after finishing work) and this is what I found 🤯 Tehse asshole/cunts are still at it !!! 🤬 -- So let's instead see if this works:

@prologic@twtxt.net I remember reading a blog-post where someone has been throwing redirects to some +100GB files (usually used for speed testing purposes) at a swarm of bots that has been abusing his server in order to criple them, but I can’t find it anymore. I’m pretty sure I’ve had it bookmarked somewhere.

⤋ Read More
aelaraji
aelaraji.com
 (5w ago)
In-reply-to » @prologic I'd say give crowdsec a try but I know for sure you prefer your own WAF ... 😅

@prologic@twtxt.net The main thing that I tought of is that whomever is abusing your services must be a well known actor (by range/set of IPs) that got reported by other Crowdsec users. So to my simpleton’s understanding, your reverse-proxy/web server passes the requests by crowdsec for processing, they get banned for $N hours if the source has already been blacklisted by the community or violates any of a set of behavior base rules (and even more hours for repeat offenders); otherwise the requests/responses go as per usual. Not sure if I got things right but this might help paint a better picture of the process.

⤋ Read More
prologic
twtxt.net
 (5w ago)
In-reply-to » @prologic I will share later my GoToSocial 10 lines (or less) config.yaml, and 4 lines Caddyfile, and you will see how easy it is.

@bender@twtxt.net That’s not the problem. The problem is the complex DNS setup and delegation. I’ve gotten it working once before, but it’s not that easy if you don’t intend to run it on the APEX Domain.

⤋ Read More
aelaraji
aelaraji.com
 (5w ago)
In-reply-to » @bender It's good enough ti iron out any bugs 🐛 Can I haz an account? 🙏

@prologic@twtxt.net I’ll create one manually and send you the creds so you can change them as soon as you log in (my instance isn’t set up to send emails). Not sure how you could get access to logs, not even my admin account has that on the admin panel. I just snoop trough the /var/log/* when needed.

⤋ Read More
prologic
twtxt.net
 (5w ago)
In-reply-to » Fark me again with the bots. This time DDoS-style crawling from hundreds of IPs and dozens of ASN(s) wtf?! I've had to disale the Ingress to my Git instance for the time being, Media i need to sleep and I can't fight this :/

@movq@www.uninformativ.de sorry dude I think we’re getting our language confused. I think I actually meant private Internet connections.

⤋ Read More
aelaraji
aelaraji.com
 (5w ago)
In-reply-to » Oh fuck me! I had basically turned off the route to git.mills.io last night and went ot bed at ~2AM after unsuccessfully trying to control the attacks (bad bots) that were behaving like a DDoS attack. Tried to re-enable the route this monring and *BOOM, they're back! As-if they never stopped?! what da actual fuq?! Media Anyone have any clever ideas of what I can do here to allows normal users, like you nice folk and block ths obnoxious traffic?!

@prologic@twtxt.net I’d say give crowdsec a try but I know for sure you prefer your own WAF … 😅

⤋ Read More
bender
twtxt.net
 (5w ago)
In-reply-to » since there are quite literally no note taking apps that work for me, i've began writing my own! to get started real quick i adapted the core part of bbycll's backend and it works so nicely — which speaks volumes to the quality of the code! should really break it out into a custom framework. i'm also realizing how easy it would be to get bbycll v1 ready...but this is probably more important since it'll allow me to get my life in order ^^'

@zvava@twtxt.net I am waiting for that v1, so that I can start using it. 🙏🏻

⤋ Read More
movq
www.uninformativ.de
 (5w ago)
In-reply-to » Fark me again with the bots. This time DDoS-style crawling from hundreds of IPs and dozens of ASN(s) wtf?! I've had to disale the Ingress to my Git instance for the time being, Media i need to sleep and I can't fight this :/

@prologic@twtxt.net Do these IPs belong to hosting providers or to providers of private internet connections? The latter is what I’m seeing on my server …

⤋ Read More
prologic
twtxt.net
 (6w ago)
In-reply-to » One day I'll like to elaborate why I'm against the usage of Anubis (and its derivatives) for the rampant crawlers

@shinyoukai@neko.laidback.moe I’m mostly against it because it forces Javascript™ on the client(s) at a blanket level. Doing “Proof-of-Work” explicitly IMO is fine™, but not at an Ingress/Edge level IMO – Which is why I haven’t adopted it myself.

⤋ Read More
lyse
lyse.isobeef.org
 (6w ago)

@arne@uplegger.eu Das klingt interessant. Aber wer definiert, welche Projekte darunter fallen? Keine Ahnung wie das sonst so mit dem Ehrenamt ist, aber das müssen ja dann auch gemeinnützige Vereine oder etwas Vergleichbares sein, oder? :-?

Wenn ich in der Petition schon wieder KI les, wird mir gleich anders.

⤋ Read More