No he was spending the bitcoin, some random thieves broke into his house and stole stuff and a laptop or some shit, he reported a shitload of bitcoin stolen and the local PD reported this to the IRS or FBI I forget, they then raided his house and found his safe and all of the other bitcoin on his devices. The guy just wasn’t smart about the whole thing, on the other hand that one gym bro schizophrenic linux guy got raided and forgot to yank his USB key for his tails session, exposing shitloads of his illegal darkweb transactions. Only for the brain dead woman cop to yank the fucking USB out on her own.
https://media.salastil.com/media/8cd92a6ae382fba7fcc89d5e102671237d84333e8f497c344a48bb73a80e2473.mp4
Youtube is aware of Invidious and has started throwing lawsuits around. Eventually they’re going to take the Reddit route and kill the generous free API limits and Invidious will die as well.
For discussions the heyday of Usenet is long past, the spam was unreal back in the day and for some reason still continues. I'm aware of the NZB stuff, I've used Sabnzbd for years as well.
Woke up and found a pretty cool site, https://narkive.com/ its a front end for Usenet discussions that appears to use the old reddit format. Really slick, I'm surprised that people are still on Usenet considering the massive amount of spam it suffers even to this day.
I managed to smack down 90% of the bots by 403ing anything that makes a request to a specific endpoint without a referrer from the site itself. In normal cases the site should operate with them going to the root page / -> search -> then either to the timeline of an account or to a reply. This is a bit draconian in that it prevents people with a bookmark from just showing up to the timeline with_replies but I set up a 403 explaining why. I doubt the guy with the botnet is really investigating why his bots are getting 302'd to an error page, its just not getting data. Now its back down to the baseline bots again.
>Is there a single similar case where this happened?
Legal fees still cripple people even if you win the case, I have no intention of handing insane people ammunition to grind me down for no reason. Were this a Pleroma instance I was running and I was the HNIC I'd consider well poisoning because ultimately its _MY_ domain and the users would have to abide by some sort of EULA or be briefed that I was doing such things in advance to their data. With Nitter its just meant to be a replication of existing data.
>You don't have to identify all of them with 100% certainty, just some of them.
Therein lies the problem, I _can't_ identify between a random user that just has a bookmark of @realgronalddrumpf and just lands at his timeline and a bot that just lands at the timeline. This requires getting into invasive practice like fingerprinting or using CAPTCHA programs. I'm supposed to be offering a privacy frontend, subjecting the users to this stuff defeats the purpose.
The problem with garbage data is that it could ensnare normal users, it is difficult to identify the bot with 100% accuracy. Secondly I don't want to get into a legal gray zone, Nitter is a proxy of Twitter accounts, its a very simple front end and lightweight, but for the most part its 100% faithful to what is on the selected user's timeline is. If I start getting into the rat race of poisoning the feed I could in theory run into libel lawsuits from some demented Twitter user that thinks their reputation is being ruined because the feed is full of gore and gamer words. Third, if I start getting into the habit of "curating" the timelines I wouldn't be able to hide behind Section 203 as effectively when some cretin starts browsing child porn accounts and hashtags, most of the VPS hosting companies are aware of Nitter and when you get a nastygram from the gubmint they are more willing to play ball since you're just repacking public data, if Nitter gets a reputation for being all over the place that trust is eroded.
Sorry I just woke up but I think my thoughts on the matter are clear enough.
Ukraine isn't going to be allowed to surrender, they're literally going "to the last Ukrainian" here. When the military finally gets to a point they cannot conscript Zelensky will flee to his properties in Florida that he already has prepared with a sizable portion of embezzled funds.
This batch right there does since its at the tail end of an 8 hour session of banning everything that connected to the site. The guy does indeed rotate user agents on his bots, I've seen him masquerade as Netscape Navigator 5 at one point, which was impressive since the browser was never released.
>That works sometimes, but they will pretty often spoof it or start spoofing it.
They already are spoofing to a degree, but they fuck up and will use a referrer from the wrong site sometimes and I'll see referrer from nitter.poast.org or one of the other instances, and this isn't how nitter operates. I just think banning isn't a viable strategy at this point, I've banned about 120k IP today and the botnet doesn't seem to have slowed a bit. I've been dealing with this guy since August and have managed to get him to fuck off multiple times, but this time he seems hellbent on scraping my instance until the instance no longer functions.
>Out of curiosity, what UAs are they using? Tried SSL fingerprinting? You know why they'd be hitting your server, like did you check if DiscordBot or something is in your referrers, or someone linked to it from somewhere, or...?
Nitter is a Twitter proxy and there is only a few left after Elon's antics trying to make it a walled garden. The current design of Nitter requires us to make a large number of "guest accounts" that are created during an onboarding process using an old Android version of the Twitter account. These guest accounts give us access to most API features that used to exist because the walled garden. Each one has about 499 requests out of them before getting rate limited and only last 30.5 days before expiring.
As to why? Nitter is effectively the only way to scrape content from Twitter, the guest_account stuff can only be created 1 per IP per day, so a lot have to be generated via proxy service. All of the basic stuff like obvious bot user agents have been handled, these botnets never have a single IP make a request more than once every 7-11 seconds and always with a legitimate User Agent. Sometimes it looks like desktop windows Chrome sessions, sometimes Iphones, its all over the place no real pattern, same with the stuff being searched for.
I think I may come up with a way of 403ing anything that doesn't have a referrer to specific endpoints. In theory they should hit the root page, search from there and get referred to another page.
In my case they're not scraping a single account, they're scraping half of twitter via my instance, such simple regex options have never worked for me. One of the approaches brought up was to ban anything that wasn't containing a referrer from the site.
In my case they're not scraping a single account, they're scraping half of twitter via my instance, such simple regex options have never worked for me. One of the approaches brought up was to ban anything that wasn't containing a referrer from the site.
@pistolero You seem like a clever guy that may know of this web technique. I'm getting my Nitter instanced scraped by a botnet that appears to be 100k IP large, they get fed in as fast as I ban them, but I don't believe they assign more than 100 IP to scraping at a time as to not DDOS the site, one IP never doing a scrape under 7 seconds so rate limiting wont nab them. Banning doesn't seem to be working, what I want to do is something I read about 10+ years ago, a sticky trap. I want to ensnare the bot into a perpetually open http request so that it never completes its loop, I figure that it the botnet notices when its banned and starts getting 403'd, but if the loop never completes it may just seize up that load balancer.
Happen to know what this technique is called or of any reading material?
So basically its Lemmy but better? I haven't been following Nostr development too much, it seemed in heavy development when I last peeked in about 6 months ago, the amount of devs and work being done is quite impressive though.
I see the Raspberry Pi 5 was announced, we're getting closer to the point where a SBC will be capable of handling basic office and multimedia content for users. I've always had a dream of just velcroing one of these to the rear of my monitor and using that instead of a full sized desktop.
True, but this starts getting into developer capability. Nobody expected Obsidian to overhaul the entire Gamebyro engine on their own, the company wasn't designed around such complicated work, it requires specialist companies like id or crytek to push forward a game engine in a significant way. EA forced Bioware down that path when they mandated every company they owned had to use the Frostbite engine, and it destroyed the company since they were a company that always licensed out existing game engines like it did with the Unreal Engine for its Mass Effect series. Suddenly they had to start heavy work on the Frostbite engine just to do complex facial rigging and cutscene animations.
I just don't know why people think Obsidian was responsible for fixing stupid shit like vendors requiring there be a chest under the ground or the insane ragdoll physics shit that had been around for years at the time.
Wasn't there a scandal over how the metacritic reward worked? I seem to remember that they were something like 1 point below the threshold, which everyone knew to be total bullshit because the "video game journalist" industry was, and is paid shilling. There was allegations that Bethesda purposefully scuttled the marketing on the paid shill side just to tank the metacritic score so they didn't have to make a payout. Every glitch and screwup that Obsidian got hammered for was already present in Oblivion, Fallout 3 and Skyrim later on.
There is a criminal court case in one of the major cities where some pajeet or paki had a lock system installed on the doors and he was behind bullet resistant glass. The black guy starts stealing shit so the jeet locks the building with a push of the button and the black guy can't get out, to rectify this the guy starts shooting all of the other shoppers inside the store. The DA decides through some brain dead Democrat logic that its the jeet's fault for locking the door and rung him up for murder.
I commend the effort but I disagree with accusation of some sort of conspiracy or collusion beyond automated tracking of commodity prices on the European markets, which can explain the majority of the massive price hikes. There was a lot of diesel price instability in the market because of the lock downs, a massive drought over the summer that left the Rhine, Po and other important rivers running extremely low which made shunting the produce up and down Europe impossible or extremely expensive. Then you have to consider the currency inflation and the war in Ukraine kicking off. Food prices are always a leading indicator when it comes to inflation because both the farmers and grocers have to divine what the future holds.. They always overestimate what the prices should be in times of stress rather than allow themselves to go bankrupt.
As for the minister screwing around getting millions for his favored NGOs that do absolutely nothing for years -- that type of featherbedding is so common that its hardly worth talking about.
Just a shitty 30 second chart, you can see the Wheat futures go absolutely apeshit the moment the Ukraine war kicks off, has a drop off when it becomes apparent that the farmers had a successful spring planting then a renewed bit of angst starts building up until September when its clear the harvests were acceptable and that begins its downward trend.
https://media.salastil.com/media/93fa78dcbf4c37f3f184d1b0a15cd30d795df9ce1ca1c874c31f54585bf813bb.png
For daily driver or server usage? Server still has Debian as top dog since its a deploy and forget distribution. Arch Linux is probably your best daily driver since all of the packages are fresh, though you're going to be forced into a somewhat tedious install process via command line.
I commend the effort but I disagree with accusation of some sort of conspiracy or collusion beyond automated tracking of commodity prices on the European markets, which can explain the majority of the massive price hikes. There was a lot of diesel price instability in the market because of the lock downs, a massive drought over the summer that left the Rhine, Po and other important rivers running extremely low which made shunting the produce up and down Europe impossible or extremely expensive. Then you have to consider the currency inflation and the war in Ukraine kicking off. Food prices are always a leading indicator when it comes to inflation because both the farmers and grocers have to divine what the future holds.. They always overestimate what the prices should be in times of stress rather than allow themselves to go bankrupt.
As for the minister screwing around getting millions for his favored NGOs that do absolutely nothing for years -- that type of featherbedding is so common that its hardly worth talking about.
Last information I saw showed French carriers were docked in Toulon getting serviced. France has absolutely no way of projecting to Niger in a protracted campaign. The whole region is a powderkeg right now and throwing sparks into it will cascade violence through all of their other shit tier unstable vassals and likely make the situation worse. France was already losing to the "Islamic Terrorist" threat in the Sahel for the past decade, starting a war would fracture the region in the same manner that we saw during the "Arab Spring" in 2011, infinite fractals of minor warlords and Islamic terrorist groups devouring the countryside leaving a few pockets of centralized government that the UN has to perpetually maintain.
Best to put people that wont instant activate someone's gag reflex in public facing roles and the people with an appearance like Shrek in non-public critical operations roles so the company doesn't fall apart.
Start reseating everything, power cords, ram, cpu, everything. From there just start swapping stuff back and forth, two sticks of ram? Try it with just one, then the other. If its still kaput after all of that you probably have a dead motherboard or faulty powersupply.
The tooling to discover vulnerabilties advances just slightly behind the bloating code bases that are required to handle every stupid edge case that exists.
He uses MATE when he needs a GUI envrionment and I believe his distro was Trisquel which only has free software in the repository. I remember him writing that he doesn't use non-free Javascript so youtube was a no-go for him, but he did circumvent it with Invidious.
What makes you think these things will remain active when Youtube starts locking down fully? yt-dlp doesn’t work for Twitter without login credentials any longer and Bibliogram died because instagram locked down. As is, Nitter is just barely hanging on.
There was nothing wrong with IE6 when it released, the problem was the fact that IE was too integrated into Windows that it required an OS update to upgrade the version. Had it just been a standalone application like Firefox there would never have been so much rage and hatred over one exploit after another for IE.
Egypt blowing up the Millennium dam to save the Nile or one of the ‘Stan countries going to war over the dams being erected that will stifle the water flow up to the Aral sea even more than it already has.
Ah right I'm a "shill" because I have total contempt for the media and their endless parade of fuckup and bad reporting, escalated on major catastrophe where they have to ramble for hours on end to fill dead air. There are real shit to question about on 9/11, such as how suddenly all of the media networks started to blaming Osama Bin Laden before the towers even collapsed.
Oddbean new post about login | logout
Notes by Salastil | export
map $http_user_agent $baduseragents { default ...