←back to thread

Anubis Works

(xeiaso.net)
313 points evacchi | 4 comments | 12 Apr 25 22:32 UTC | HN request time: 0.001s | source
Show context
tripdout ◴[12 Apr 25 22:52 UTC] No.43668552[source]
The bot detection takes 5 whole seconds to solve on my phone, wow.
replies(4): >>43668607 #>>43668678 #>>43668723 #>>43668824 #
Hakkin ◴[12 Apr 25 23:01 UTC] No.43668607[source]
Much better than infinite Cloudflare captcha loops.
replies(1): >>43668977 #
gruez ◴[13 Apr 25 00:15 UTC] No.43668977[source]
I've never had that, even with something like tor browser. You must be doing something extra suspicious like an user agent spoofer.
replies(3): >>43669011 #>>43669040 #>>43669198 #
praisewhitey ◴[13 Apr 25 01:07 UTC] No.43669198[source]
Firefox with Enhanced Tracking Protection turned on is enough to trigger it.
replies(2): >>43669228 #>>43670028 #
gruez ◴[13 Apr 25 01:15 UTC] No.43669228[source]
The infinite loop or the challenge appearing? I've never had problems with passing the challenge, even with ETP + RFP + ublock origin + VPN enabled.
replies(1): >>43669535 #
1. cookiengineer ◴[13 Apr 25 02:22 UTC] No.43669535[source]
Cloudflare is too stupid to realize that carrier grade NATs exist a lot in Germany. So there's that, sharing an IP with literally 20000 people around me doesn't make me suspicious when it's them that trigger that behavior.

Your assumption is that anyone at cloudflare cares. But guess what, it's a self fulfilling prophecy of a bot being blocked, because not a single process in the UX/UI allows any real user to complain about it, and therefore all blocked humans must also be bots.

Just pointing out the flaw of bot blocking in general, because you seem to be absolutely unaware of it. Success rate of bot blocking is always 100%, and never less, because that would imply actually realizing that your tech does nothing, really.

Statistically, the ones really using bots can bypass it easily.

replies(3): >>43671227 #>>43672353 #>>43672910 #
2. xena ◴[13 Apr 25 08:57 UTC] No.43671227[source]
Honestly it's a fair assumption on bot filtering software that no more than like 8 people will share an IPv4. This is going to make IP reputation solutions hard. Argh.
3. viraptor ◴[13 Apr 25 12:40 UTC] No.43672353[source]
If you want to try fighting it, you need to find someone with CF enterprise plan and bot management working, then get blocked and get them to report that as wrong. Yes it sucks and I'm not saying it's a reasonable process. Just in case you want to try fixing the situation for yourself.
4. gruez ◴[13 Apr 25 14:07 UTC] No.43672910[source]
>Cloudflare is too stupid to realize that carrier grade NATs exist a lot in Germany. So there's that, sharing an IP with literally 20000 people around me doesn't make me suspicious when it's them that trigger that behavior.

Tor and VPNs arguably have the same issue. I use both and haven't experienced "infinite loops" with either. The same can't be said of google, reddit, or many other sites using other security providers. Those either have outright bans, or show captchas that require far more effort to solve than clicking a checkbox.