Comment by thayne

Comment by thayne 13 hours ago

18 replies

View on Hacker News

Are you sure it isn't a DDoS masquerading as Amazon?

Requests coming from residential ips is really suspicious.

Edit: the motivation for such a DDoS might be targeting Amazon, by taking down smaller sites and making it look like amazon is responsible.

If it is Amazon one place to start is blocking all the the ip ranges they publish. Although it sounds like there are requests outside those ranges...

OptionOfT 12 hours ago

You should check your websites like grass dot io (I refuse to give them traffic).

They pay you for your bandwidth while they resell it to 3rd parties, which is why a lot of bot traffic looks like it comes from residential IPs.

Reply View 17 replies
  • Aurornis 12 hours ago

    Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies.

    If this person is seeing a lot of traffic from residential IPs then I would be shocked if it’s really Amazon. I think someone else is doing something sketchy and they put “AmazonBot” in the user agent to make victims think it’s Amazon.

    You can set the user agent string to anything you want, as we all know.

    Reply View 15 replies
    • guardiangod 7 hours ago

      I used to work for malware detection for a security company, and we looked at residential IP proxy services.

      They are very, very, very expensive for the amount of data you get. You are paying for per bit of data. Even with Amazon's money, the number quickly become untenable.

      It was literally cheaper for us to subscribe to business ADSL/cable/fiber optic services to our corp office buildings and thrunk them together.

      Reply View 0 replies
    • voakbasda 12 hours ago

      I wonder if anyone has checked whether Alexa devices serve as a private proxy network for AmazonBot’s use.

      Reply View 2 replies
      • tepidsaucer 3 hours ago

        Yes, people have probably analyzed Alexa traffic once or twice over the years.

        Reply View 1 reply
        • photonthug an hour ago

          You joke, but do people analyze it continuously forever also? Because if we’re being paranoid, that’s something you’d need to do in order to account for random updates that are probably happening all the time.

          Reply View 0 replies
    • [removed] 9 hours ago
      [deleted]
      Reply View 0 replies
    • ninkendo 12 hours ago

      They could be using echo devices to proxy their traffic…

      Although I’m not necessarily gonna make that accusation, because it would be pretty serious misconduct if it were true.

      Reply View 1 reply
      • ninkendo 9 hours ago

        To add: it’s also kinda silly on the surface of it for Amazon to use consumer devices to hide their crawling traffic, but still leave “Amazonbot” in their UA string… it’s pretty safe to assume they’re not doing this.

        Reply View 0 replies
    • dafelst 12 hours ago

      I worked for Microsoft doing malware detection back 10+ years ago, and questionably sourced proxies were well and truly on the table

      Reply View 3 replies
      • WarOnPrivacy 11 hours ago

        >> but the point is that big company crawlers aren’t paying for questionably sourced residential proxies.

        > I worked for Microsoft doing malware detection back 10+ years ago, and questionably sourced proxies were well and truly on the table

        Big Company Crawlers using questionably sourced proxies - this seems striking. What can you share about it?

        Reply View 2 replies
    • baobun 12 hours ago

      > Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies

      You'd be surprised...

      Reply View 2 replies
      • WarOnPrivacy 11 hours ago

        >> Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies

        > You'd be surprised...

        Surprised by what? What do you know?

        Reply View 0 replies
      • [removed] 9 hours ago
        [deleted]
        Reply View 0 replies
    • skywhopper 12 hours ago

      It’s not residential proxies. It’s Amazon using IPs they sublease from residential ISPs.

      Reply View 0 replies
  • SOLAR_FIELDS 9 hours ago

    Wild. While I'm sure the service is technically legal since it can be used for non-nefarious purposes, signing up for a service like that seems like a guarantee that you are contributing to problematic behavior.

    Reply View 0 replies