drkt_

@drkt_@lemmy.dbzer0.com

This is a remote user, information on this page may be incomplete. View at Source ↗

drkt.eu

This is an alt account, you may see it around. I am not ban-dodging intentionally, I promise!

This is the main
scribe.disroot.org/u/drkt

⁨Comment⁩ on ⁨Cheapskate's Guide: Nuking web-scraping bots⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
I wouldn’t even know where to begin, but I also don’t think that what I’m doing is anything special. These NVR IPs are hurling abuse at the whole internet. Anyone listening will have seen them, and anyone paying attention would’ve seen the pattern.

The NVRs I get the most traffic from have been a known hacked IoT device for a decade and even has a github page explaining how to bypass their authentication and pull out arbitrary files like passwd.
⁨Comment⁩ on ⁨Cheapskate's Guide: Nuking web-scraping bots⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
I have plenty of spare bandwidth and babysitting-resources so my approach is largely to waste their time. If they poke my honeypot they get poked back and have to escape a tarpit specifically designed to waste their bandwidth above all. It costs me nothing because of my circumstances but I know it costs them because their connections are metered. I also know it works because they largely stop crawling my domains I employ this on. I am essentially making my domains appear hostile.

It does mean that my residential IP ends up on various blocklists but I’m just at a point in my life where I don’t give an unwiped asshole about it. I can’t access your site? I’m not going to your site, then. Fuck you. I’m not even gonna email you about the false-positive.

It is also fun to keep a log of which IPs have poked the honeypot have open ports, and to automate a process of siphoning information out of those ports. Finding a lot of hacked NVR’s recently I think are part of some IoT botnet to scrape the internet.
⁨Comment⁩ on ⁨YSK that a new internet/account bypass during Windows 11 installs already exists. Here is a 7 step guide.⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
Nothing in life takes no effort. I’m only advocating on the basis that Windows has become more of an effort to stick with than Linux has become to learn.
⁨Comment⁩ on ⁨YSK that a new internet/account bypass during Windows 11 installs already exists. Here is a 7 step guide.⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:

… everything else in your workflow will work immediately with no research needed.

I’ll put it simply for you: You can spend a few hours figuring out a new workflow, or you can spend the rest of your life fighting a losing battle against a megacorporation that has it out for you that will also randomly upend on your workflow.
⁨Comment⁩ on ⁨Why do some instances block users who use vpn?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
You can boil the logic down and apply it however you want. The fact is that different people have different levels of tolerance for bullshit and VPN users are a large source of it. TOR is also inherently harmless but exit nodes end up on banlists everywhere because malicious users use them to the point that exit nodes are pre-emptively banned in a lot of places because some people just don’t wanna deal with it. The big email providers have a zero-tolerance policy for the same reason; if your domain misbehaves even once then you’re on the shit-list forever because it’s not worth playing whack-a-mole with malicious actors.
⁨Comment⁩ on ⁨Why do some instances block users who use vpn?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Because shared VPNs are also used by malicious actors and some admins just don’t care about dealing with that.
⁨Comment⁩ on ⁨Discord going public. Plz help a future refugee.⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
That doesn’t really change that it’s one company hosting it. Unless you’re willing to make 10 different accounts because your super-FOSS friends aren’t willing to join each others instances?