Comment by palata

Comment by palata 3 days ago

5 replies

View on Hacker News

> they are just feigning a lack of understanding to be dismissive of Anubis.

I actually find the featured article very interesting. It doesn't feel dismissive of Anubis, but rather it questions whether this particular solution makes sense or not in a constructive way.

johnklos 3 days ago

I agree - the article is interesting and not dismissive.

I was talking more about some of the people here ;)

Reply View 4 replies
  • dmesg 2 days ago

    I still don't understand what Anubis solves if it can be bypassed too easily: If you use User-agent switcher (i emulate wget) as firefox addon on kernel.org or ffmpeg.org you save the entire check time and straight up skip Anubis. Apparently they use a whitelist for user-agents due to allowing legitimate wget usage on these domains. However if I (an honest human can) the scrapers and grifters can too.

    https://addons.mozilla.org/en-US/firefox/addon/uaswitcher/

    If anyone wants to try themselves. This is by no means against Anubis, but raising the question: Can you even protect a domain if you force yourself to whitelist (for a full bypass) easy to guess UAs?

    Reply View 3 replies
    • hooverd 2 days ago

      It's extra work for scrapers. They pretend to be upstanding citizens (Chrome UA from residential IPs). You can more easily block those.

      Reply View 2 replies
      • 20after4 2 days ago

        A lot of scrapers are actually utilizing some malware installed on residential user's machines, so the request is legitimately coming from a chrome UA on a residential ip.

        Reply View 1 reply
        • dragonwriter 2 days ago

          Well, “actually”, perhaps; “legitimately” is still a stretch.

          Reply View 0 replies