Most active commenters
  • Yoric(6)

←back to thread

Blocking LLM crawlers without JavaScript

(www.owl.is)
198 points todsacerdoti | 24 comments | 15 Nov 25 23:30 UTC | HN request time: 1.786s | source | bottom
Show context
DeepYogurt ◴[16 Nov 25 03:00 UTC] No.45942404[source]
Has anyone done a talk/blog/whatever on how llm crawlers are different than classical crawlers? I'm not up on the difference.
replies(5): >>45942457 #>>45942733 #>>45942771 #>>45942875 #>>45946525 #
btown ◴[16 Nov 25 04:56 UTC] No.45942875[source]
IMO there was something of a de facto contract, pre-LLMs, that the set of things one would publicly mirror/excerpt/index and the set of things one would scrape were one and the same.

Back then, legitimate search engines wouldn’t want to scrape things that would just make their search results less relevant with garbage data anyways, so by and large they would honor robots.txt and not overwhelm upstream servers. Bad actors existed, of course, but were very rarely backed by companies valued in the billions of dollars.

People training foundation models now have no such constraints or qualms - they need as many human-written sentences as possible, regardless of the context in which they are extracted. That’s coupled with a broader familiarity with ubiquitous residential proxy providers that can tunnel traffic through consumer connections worldwide. That’s an entirely different social contract, one we are still navigating.

replies(3): >>45943046 #>>45943240 #>>45943282 #
1. cwbriscoe ◴[16 Nov 25 06:40 UTC] No.45943240[source]
I am not well versed in this problem but can't the web servers rate limit by known IP addresses of these crawler/scrapers?
replies(4): >>45943317 #>>45943344 #>>45943570 #>>45943597 #
2. ninja3925 ◴[16 Nov 25 07:00 UTC] No.45943317[source]
Large cloud providers could offer that solution but then, crawlers can also change cycle IPs
3. strogonoff ◴[16 Nov 25 07:09 UTC] No.45943344[source]
You cannot block LLM crawlers by IP address, because some of them use residential proxies. Source: 1) a friend admins a slightly popular site and has decent bot detection heuristics, 2) just Google “residential proxy LLM”, they are not exactly hiding. Strip-mining original intellectual property for commercial usage is big business.
replies(2): >>45943398 #>>45943472 #
4. skrebbel ◴[16 Nov 25 07:31 UTC] No.45943398[source]
How does this work? Why would people let randos use their home internet connections? I googled it but the companies selling these services are not exactly forthcoming on how they obtained their "millions of residential IP addresses".

Are these botnets? Are AI companies mass-funding criminal malware companies?

replies(3): >>45943441 #>>45943478 #>>45943557 #
5. stackghost ◴[16 Nov 25 07:43 UTC] No.45943441{3}[source]
>Are these botnets? Are AI companies mass-funding criminal malware companies?

Without a doubt some of them are botnets. AI companies got their initial foothold by violating copyright en masse with pirated textbook dumps for training data, and whatnot. Why should they suddenly develop scruples now?

6. globalnode ◴[16 Nov 25 07:50 UTC] No.45943472[source]
so user either has a malware proxy running requests without being noticed or voluntarily signed up as a proxy to make extra $ off their home connection. Either way I dont care if their IP is blocked. Only problem is if users behind CGNAT get their IP blocked then legitimate users may later be blocked.

edit: ah yes another person above mentioned VPN's thats a good possibility, also another vector is users on mobile can sell their extra data that they dont use to 3rd parties. probably many more ways to acquire endpoints.

replies(1): >>45951439 #
7. joha4270 ◴[16 Nov 25 07:52 UTC] No.45943478{3}[source]
I have seen it claimed that's a way of monetizing free phone apps. Just bundle a proxy and get paid for that.
replies(1): >>45943539 #
8. cuu508 ◴[16 Nov 25 08:11 UTC] No.45943539{4}[source]
A recent HN thread about this: https://news.ycombinator.com/item?id=45746156
9. fakwandi_priv ◴[16 Nov 25 08:16 UTC] No.45943557{3}[source]
It used to be Hola VPN which would let you use someone else’s connection and in the same way someone could use yours which was communicated transparently, that same hola client would also route business users. Im sure many other free VPN clients do the same thing nowadays.
10. Yoric ◴[16 Nov 25 08:20 UTC] No.45943570[source]
Not the exact same problem, but a few months ago, I tried to block youtube traffic from my home (I was writing a parental app for my child) by IP. After a few hours of trying to collect IPs, I gave up, realizing that YouTube was dynamically load-balanced across millions of IPs, some of which also served traffic from other Google services I didn't want to block.

I wouldn't be surprised if it was the same with LLMs. Millions of workers allocated dynamically on AWS, with varying IPs.

In my specific case, as I was dealing with browser-initiated traffic, I wrote a Firefox add-on instead. No such shortcut for web servers, though.

replies(2): >>45943593 #>>45947250 #
11. bonsai_spool ◴[16 Nov 25 08:28 UTC] No.45943593[source]
Why not have local DNS at your router and do a block there? It can even be per-client with adguardhome
replies(1): >>45943661 #
12. adobrawy ◴[16 Nov 25 08:29 UTC] No.45943597[source]
They rely on residential proxies powered by botnets — often built by compromising IoT devices (see: https://krebsonsecurity.com/2025/10/aisuru-botnet-shifts-fro... ). In other words, many AI startups — along with the corporations and VC funds backing them — are indirectly financing criminal botnets.
13. Yoric ◴[16 Nov 25 08:49 UTC] No.45943661{3}[source]
I did that, but my router doesn't offer a documented API (or even a ssh access) that I can use to reprogram DNS blocks dynamically. I wanted to stop YouTube only during homework hours, so enabling/disabling it a few times per day quickly became tiresome.
replies(1): >>45944806 #
14. extra88 ◴[16 Nov 25 13:02 UTC] No.45944806{4}[source]
Your router almost certainly lets you assign a DNS instead of using whatever your ISP sends down so you set it to an internal device running your DNS.

Your DNS mostly passes lookup requests but during homework time, when there's a request for the ip for "www.youtube.com" it returns the ip of your choice instead of the actual one. The domain's TTL is 5 minutes.

Or don't, technical solutions to social problems are of limited value.

replies(1): >>45945344 #
15. Yoric ◴[16 Nov 25 14:22 UTC] No.45945344{5}[source]
Any solution based on this sounds monstruously more complicated than my browser addon.

And technical bandaids to hyperactivity, however imperfect, are damn useful.

replies(2): >>45945464 #>>45946643 #
16. extra88 ◴[16 Nov 25 14:41 UTC] No.45945464{6}[source]
A browser add-on wouldn't do the job. The use case was a parent controlling a child's behavior, not someone controlling their own.
replies(1): >>45945517 #
17. Yoric ◴[16 Nov 25 14:48 UTC] No.45945517{7}[source]
Yes, my kid has ADHD. The browser add-on does the job at slowing down the impulse of going to YouTube (and a few online gaming sites) during homework hours.

I've deployed the same one for me, but setup for Reddit during work hours.

Both of us know how to get around the add-on. It's not particularly hard. But since Firefox is the primary browser for both of us, it does the trick.

replies(1): >>45946704 #
18. renewiltord ◴[16 Nov 25 17:13 UTC] No.45946643{6}[source]
I think dnsmasq plus a cron on a server of your choice will do this pretty easily. With an LLM you could set this up in less than 15 minutes if you already have a server somewhere (even one in the home).
replies(1): >>45948673 #
19. FrinkleFrankle ◴[16 Nov 25 17:20 UTC] No.45946704{8}[source]
For those that don't want to build their own addon, Cold turkey Blocker works quite well. It supports multiple browsers and can block apps too.

I'm not affiliated with them, but it has helped me when I really need to focus.

https://getcoldturkey.com/

20. m3047 ◴[16 Nov 25 18:31 UTC] No.45947250[source]
Yoric, dropping some knowledge vis a vis the downstream regarding DNS:

* https://www.dnsrpz.info/

* https://github.com/m3047/rear_view_rpz

replies(1): >>45955279 #
21. Yoric ◴[16 Nov 25 21:42 UTC] No.45948673{7}[source]
Thanks for the tip.

In this case, I don't have a server I can conveniently use as DNS. Plus I wanted to also control the launching of some binaries, so that would considerably complicate the architecture.

Maybe next time :)

replies(1): >>45950133 #
22. renewiltord ◴[17 Nov 25 01:37 UTC] No.45950133{8}[source]
Makes sense! Keeping your home tech simple definitely a recipe for a happier life when you have kids haha
23. strogonoff ◴[17 Nov 25 07:09 UTC] No.45951439{3}[source]
“Known IP addresses” to me implies an infrequently changing list of large datacenter ranges. Maintaining a dynamic list (along with any metadata required for throttling purposes) of individual IPs is a different undertaking with higher level of effort.

Of course, if you don’t care about affecting genuine users then it is much simpler. One could say it’s collateral damage and show a message suggesting to boycott companies and/or business practices that prompted these measures.

24. Yoric ◴[17 Nov 25 16:41 UTC] No.45955279{3}[source]
Thanks!