Comment by Aurornis

Comment by Aurornis 3 months ago

15 replies

View on Hacker News

Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies.

If this person is seeing a lot of traffic from residential IPs then I would be shocked if it’s really Amazon. I think someone else is doing something sketchy and they put “AmazonBot” in the user agent to make victims think it’s Amazon.

You can set the user agent string to anything you want, as we all know.

voakbasda 3 months ago

I wonder if anyone has checked whether Alexa devices serve as a private proxy network for AmazonBot’s use.

Reply View 2 replies
  • tepidsaucer 3 months ago

    Yes, people have probably analyzed Alexa traffic once or twice over the years.

    Reply View 1 reply
    • photonthug 3 months ago

      You joke, but do people analyze it continuously forever also? Because if we’re being paranoid, that’s something you’d need to do in order to account for random updates that are probably happening all the time.

      Reply View 0 replies
guardiangod 3 months ago

I used to work for malware detection for a security company, and we looked at residential IP proxy services.

They are very, very, very expensive for the amount of data you get. You are paying for per bit of data. Even with Amazon's money, the number quickly become untenable.

It was literally cheaper for us to subscribe to business ADSL/cable/fiber optic services to our corp office buildings and thrunk them together.

Reply View 0 replies
dafelst 3 months ago

I worked for Microsoft doing malware detection back 10+ years ago, and questionably sourced proxies were well and truly on the table

Reply View 3 replies
  • WarOnPrivacy 3 months ago

    >> but the point is that big company crawlers aren’t paying for questionably sourced residential proxies.

    > I worked for Microsoft doing malware detection back 10+ years ago, and questionably sourced proxies were well and truly on the table

    Big Company Crawlers using questionably sourced proxies - this seems striking. What can you share about it?

    Reply View 2 replies
    • crote 3 months ago

      They worked on malware detection. The most likely reason is very obvious: if you only allow traffic from residential addresses to your Command & Control server, you make anti-malware research (which is most likely coming from either a datacenter or an office building) an awful lot harder - especially when you give non-residential IPs a different and harmless response instead of straight-up blocking them.

      Reply View 0 replies
    • to11mtm 3 months ago

      they probably can't because some of the proxies were used by TLAs is my guess...

      Reply View 0 replies
[removed] 3 months ago
[deleted]
Reply View 0 replies
ninkendo 3 months ago

They could be using echo devices to proxy their traffic…

Although I’m not necessarily gonna make that accusation, because it would be pretty serious misconduct if it were true.

Reply View 1 reply
  • ninkendo 3 months ago

    To add: it’s also kinda silly on the surface of it for Amazon to use consumer devices to hide their crawling traffic, but still leave “Amazonbot” in their UA string… it’s pretty safe to assume they’re not doing this.

    Reply View 0 replies
baobun 3 months ago

> Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies

You'd be surprised...

Reply View 2 replies
  • WarOnPrivacy 3 months ago

    >> Yes, but the point is that big company crawlers aren’t paying for questionably sourced residential proxies

    > You'd be surprised...

    Surprised by what? What do you know?

    Reply View 0 replies
  • [removed] 3 months ago
    [deleted]
    Reply View 0 replies
skywhopper 3 months ago

It’s not residential proxies. It’s Amazon using IPs they sublease from residential ISPs.

Reply View 0 replies