and try to slam your site with like 200+ requests per second
Your solution would do nothing to stop the crawlers that are operating 10ish rps. There's ones out there operating at a mere 2rps but when multiple companies are doing it at the same time 24x7x365 it adds up.
Some incredibly talented people have been battling this since last year and your solution has been tried multiple times. It's not effective in all instances and can require a LOT of manual intervention and SysAdmin time.
Sure, why not but I've been fighting this notion that all libertarians are An-Caps for 20 years and the rise of the MC has turned an uphill battle into a nearly impossible one.
There's really no question that the MC are owned and operated by the string pullers of the Republican Party. They're doing it in order to to keep the people who do care about Small Government and Individual Liberty from leaving the Republican Party over the MAGA horseshit.
There are residential IP providers that provide services to scrapers, etc. that involves them having thousands of IPs available from the same IP ranges as real users.
Now that makes sense. I hadn't considered rogue ISPs.
Sure, network blocking like this has been a thing for decades but it still requires ongoing manual intervention which is what these SysAdmins are complaining about.
I'm familiar with f2b. I even have several clients licensed with the commercial version but it doesn't fit this use case as there's no logon failure for it to work with.
I automatically ban any IP that comes from outside the US because there’s literally no reason for anyone outside the US to make requests to my infra.
I have systems setup with geo-blocking but it's of limited use due to the prevalence of VPNs.
also, use a WAF on a NAT to expose your apps.
This isn't a solution either because a WAF has no way to know what traffic is bad so it doesn't know what to block.
PoW has the advantage of being anonymous but I don't like it as solution for the simple fact that it uses more electricity. It's just not a very green solution.
Unsigned traffic = drop. Signed traffic that becomes an annoyance = drop. If signed traffic becomes more than an annoyance then you know who to report to the authorities and even in Brazil there's authorities.
In your example MS makes 65 Billion so if a few business units lost 13 Billion it's NBD, the overall company is still profitable. In this case though Gazprom lost 13 Billion across all units. What's worse is that there's no way for them to get more. They can't sell stock and as a Government Russia is basically broke.
Eh, arguing is fairly pointless and it's fair for them to point out that with the MC in charge of the LP the other types of libertarians no longer matter.
What will happen is that politicians will see this as another reason to push for everyone having their ID associated with their Internet traffic.
Yes, because like or not that's the only possible solution. If all traffic was required to be signed and the signatures were tied to an entity then you could refuse unsigned traffic and if signed traffic was causing problems you'd know who it was and have recourse.
I don't like this solution but it's the only way forward that I can see.
Simple, not allowing anonymous activity. If everything was required to be crypto-graphically signed in such a way that it was tied to a known entity then this could be directly addressed. It's essentially the same problem that e-mail has with SPAM and not allowing anonymous traffic would mostly solve that problem as well.
Of course many internet users would (rightfully) fight that solution tooth and nail.
I too read Drew DeVault's article the other day and I'm still wondering how the hell these companies have access to "tens of thousands" of unique IP addresses. Seriously, how the hell do they have access to so many IP addresses that SysAdmins are resorting to banning entire countries to make it stop?
Yup, this is 100% a driver created problem. I know that Tesla and the CT are hated right now but the CT easily has the ability to pull that trailer on that trail it's just that the driver doesn't know WTF they're doing.
The word "violence" hasn't historically been specific to just people. One can get violent with a vending machine or in British English one could say "the reporters did violence to my speech", meaning they twisted the meaning of what was said. Violence is nearly a synonym for damage.
Beyond that most Media refers to Arson as violence, the fact that they're using the word with property instead of a person isn't unusual or suspicious.
Your solution would do nothing to stop the crawlers that are operating 10ish rps. There's ones out there operating at a mere 2rps but when multiple companies are doing it at the same time 24x7x365 it adds up.
Some incredibly talented people have been battling this since last year and your solution has been tried multiple times. It's not effective in all instances and can require a LOT of manual intervention and SysAdmin time.
https://thelibre.news/foss-infrastructure-is-under-attack-by-ai-companies/