Comment by SoftTalker

Comment by SoftTalker 6 hours ago

2 replies

View on Hacker News

> it's less easy to figure out which residential IPs are part of a commercially-operated botnet

Is the client navigating the site faster than humanly possible? It's a bot. This seems like a simple test.

> 1000 requests coming from residential ISPs around the world could be an organic surge

But probably isn't.

Retr0id 6 hours ago

> This seems like a simple test.

Not when the singular bot has a pool of millions of IPs to originate each request from.

If you think there's an easy solution here, productize it and make billions.

Reply View 1 reply
  • SoftTalker 6 hours ago

    IPs that you've never seen before are hitting a single random page deep within your site are bots, or first-time followers of a search engine link. Grey list them and respond slowly. If they are seen again at normal human rates, unthrottle them.

    Reply View 0 replies