Recent content by ES Dev Team

It's kinda neat!

BrettC, thanks for mentioning this. I'm not noticing an uptick in bots or CPU consumption here but i looked at my fail2ban history and notice it has been very busy rate limiting 401's. I rate limit 404, 403, and 401, and also how fast you are submitting POSTs; these are all related to probing...

My clients forbid my team from transmitting their source code to a third party due to the large privacy implications and risk of leak ( that's happened many times before, also these services are required to log in a place government can read it, and i don't trust my government to keep my...

This is a high score for Xenforo.com as of a few mins ago: Must be bad out there

It was cheap ( $60/mo ) until bot hell came about! Our compute is very efficient, so that part is inexpensive. It's the bandwidth that kills us on AWS!

Just reporting in. Fail2ban and some ASN blocks ( plus a PHP script i use to identify them easily from our apache logs ) is still kicking ass over here. Never cross 10k guests anymore. Xenforo.com is using cloudflare and it sounds like they haven't taken any tuning tips from this thread. They...

Are you caching the proxycheck responses? Could make things a lot cheaper for you, but would require that you keep a database busy at times.

It is kind of funny, i see a lot of 20 somethings enjoying what i enjoyed then, which is effectively what their parents grew up with. Maybe forums have a chance. But.... it would be a good idea to improve the format for everyone else :)

Strong disagree. Until i got ASN blocks and fail2ban really, really tuned in, we were spending an extra $300/month in bandwidth plus $150/month extra on hosting costs. So about $4500 a year.... to feed bots that use advanced protection evasion mechanisms, don't care if they DDoS your website...

Lol, yeah. Not understanding unix when operating a website today is just asking for a job at the long week factory. I've been administering servers since 2014 and in the last couple years, the sophistication and abilities of scammers/cc testers/ai scrapers rose from a joke to a professional...

Essentially anything exposed to the internet is going to get attacked ruthlessly by AI scrapers or people probing for vulnerabilities at this point.

Shoot.. at least the website was still up. This probably indicates a huge pool of IP addresses getting rotated super quick over a large volume. Pretty nuts though.

Hey smallwheels, thanks for the tip on proxycheck.io. I didn't know there were services like that. I had a battalion of residential proxies hit one of the store sites i manage on 04-02, and they were all USA. I ran 40 IP addresses i knew to be fraudulent through proxycheck.io and most are...

You need ASN blocks / a better logic engine to do better. The amount of bots has definitely ticked up in the last week or so and i've had to periodically go in and block ASNs/some networks I thought of something recently. People using USA residential proxies are probably located in Asia. It's...

So does this functionality have the option to proxy the images?