HackerTrans
TopNewTrendsCommentsPastAskShowJobs

winkelmann

no profile record

Submissions

Cloudflare flags archive.today as "C&C/Botnet"; no longer resolves via 1.1.1.2

radar.cloudflare.com
418 points·by winkelmann·hace 4 meses·295 comments

comments

winkelmann
·hace 2 meses·discuss
FYI, if the goal is just to use something like an old Canon LiDE scanner (pretty common/cheap devices with no more driver support) on macOS: SANE runs natively and works great: https://formulae.brew.sh/formula/sane-backends (comes with `scanimage` CLI tool).
winkelmann
·hace 2 meses·discuss
The most unfortunate thing about Google's 3D photogrammetry is that they don't allow you to view historical captures, as they only serve the flattened 2D version there. For the time being, the only resource for these captures are various Microsoft Flight Simulator addons where people dumped Google's photogrammetry data to add scenery not included in the built-in photogrammetry coverage.
winkelmann
·hace 4 meses·discuss
I was wondering about this too. I thought that it could be about it being possible to use archive.today to view sites otherwise blocked via DNS, but web.archive.org[1] doesn't have that flag, so it must be something else.

[1] https://radar.cloudflare.com/domains/domain/web.archive.org
winkelmann
·hace 4 meses·discuss
> all the content in the past 4+ years is about archive.today

But it's not? This was published between the two posts about archive.today: https://gyrovague.com/2025/02/23/anatomy-of-a-boarding-pass-...
winkelmann
·hace 4 meses·discuss
I'm not a web developer, but I've picked up some bits of knowledge here and there, mostly from troubleshooting issues I encounter while using websites.

I know there are a number of headers used to control cross-site access to websites, and the linked blog post shows archive.today's denial-of-service script sending random queries to the site's search function. Shouldn't there be a way to prevent those from running when they're requested from within a third-party site?
winkelmann
·hace 4 meses·discuss
Call me naive, but I still believe that people generally disapprove of their internet connection being abused to conduct cyber-attacks.
winkelmann
·hace 4 meses·discuss
There's probably a worthwhile discussion to be had about what it takes for a site in this situation to be removed from blocklists. An apology? Surrender to authorities? Halting the malicious activity for a certain period of time?

Regardless, another user reports the attack is still ongoing[1], so this isn't a discussion that's going to happen about archive.today anytime soon.

[1] https://news.ycombinator.com/item?id=47474777
winkelmann
·hace 4 meses·discuss
As far as I am aware, all previous issues with archive.today and Cloudflare were on account of archive.today taking measures to stop Cloudflare's DNS from correctly resolving their domains, not the other way around.

The current situation is due to Cloudflare flagging archive.today's domains for malicious activity, Cloudflare actually still resolves the domains on their normal 1.1.1.1 DNS, but 1.1.1.2 ("No Malware") now refuses. Exactly why they decided to flag their domains now, over a month after the denial-of-service accusations came out, is unclear, maybe someone here has more information.
winkelmann
·hace 4 meses·discuss
"archive.today is currently categorized as: * CIPA Filter * Reference * Command and Control & Botnet * DNS Tunneling"

Ditto for their other domains like archive.is and archive.ph

Example DoH request:

$ curl -s "https://1.1.1.2/dns-query?name=archive.is&type=A" -H "accept: application/dns-json"

{"Status":0,"TC":false,"RD":true,"RA":true,"AD":false,"CD":false,"Question":[{"name":"archive.is","type":1}],"Answer":[{"name":"archive.is","type":1,"TTL":60,"data":"0.0.0.0"}],"Comment":["EDE(16): Censored"]}

---

Relevant HN discussions:

https://news.ycombinator.com/item?id=46843805 "Archive.today is directing a DDoS attack against my blog"

https://news.ycombinator.com/item?id=47092006 "Wikipedia deprecates Archive.today, starts removing archive links"

https://news.ycombinator.com/item?id=46624740 "Ask HN: Weird archive.today behavior?" - Post about the script used to execute the denial-of-service attack

Wikipedia page on deprecating and replacing archive.today links:

https://en.wikipedia.org/wiki/Wikipedia:Archive.today_guidan...
winkelmann
·hace 8 meses·discuss
This was fixed/changed at some point. I use Cloudflare's DNS and it works fine for me.
winkelmann
·hace 8 meses·discuss
I've been using an IODD 2531 enclosure for many years now, and it's doing pretty much exactly that. It works with any ISO I throw at it and has no issues with Secure Boot. It’s also platform-agnostic as it acts as a USB optical disk drive.

There are some shortcomings, like a bug where it doesn't remember the last selected ISO if its filename is too long, files also need to be fully sequential. These might be fixed in their newer models (the 2531 is fairly old).
winkelmann
·hace 9 meses·discuss
Not sure if this still works, but you used to be able to run "wsreset.exe -i" to install the Microsoft Store. The command kicks off the process in the background, so there's no progress indicator, but the Store app just appeared after a few minutes.
winkelmann
·hace 9 meses·discuss
I think a dedicated "TikTok but AI" is infinitely better than AI videos polluting other platforms. Of course, in practice, the latter is already the case, rendering the theoretical benefits of the former kind of moot.

Nonetheless, a platform for AI videos with an audience looking for them, rather than the horrible "boomer-slop" that is prevalent on other social media, is welcome in my eyes.
winkelmann
·hace 10 meses·discuss
3D rendering and fluid simulation stuff could be interesting.
winkelmann
·hace 10 meses·discuss
Warning: My German legalese isn't very good and this is not legal advice. I unfortunately know very little about how the German court system works and where to look up stuff.

The law[1] is worded like this:

> (1) Mit einer Funkanlage (§ 3 Absatz 1 Nummer 1 des Funkanlagengesetzes) dürfen nur solche Nachrichten abgehört oder in vergleichbarer Weise zur Kenntnis genommen werden, die für den Betreiber der Funkanlage, für Funkamateure im Sinne des § 2 Nummer 1 des Amateurfunkgesetzes, für die Allgemeinheit oder für einen unbestimmten Personenkreis bestimmt sind.

The law basically says that you may only listen to (or take note of in comparable way[2]) messages that are:

1. For you, the operator

2. For amateur radio operators according to the Amateurfunkgesetz

3. For the general public

4. For an indeterminate group of persons (I think that's an accurate translation?)

For me, a big question regarding aviation and marine traffic monitoring is what "unbestimmten Personenkreis"/"indeterminate group of persons" actually means. Since "die Allgemeinheit"/"the general public" is listed separately, I'd assume it's a distinct group from that, and to me the previous commenter's "meant for any member of the public who happens to be flying a plane nearby" sounds like it could fit that description. I'd argue, for example, that police radio is for a "determinate" group of persons, police officers and dispatchers working for the government, whereas aviation and maritime traffic is an "indeterminate" group of people, people working for all sorts of airlines, shipping companies, recreational pilots/boaters, who happen to be around the same area.

If anyone has any links to cases where this law was tried in relation to aviation or maritime communications, please share them, I have been struggling to figure out where to look for this stuff, on top of that, the law was also renamed or moved around, which makes it extra confusing.

[1] https://dejure.org/gesetze/TDDDG/5.html

[2] Might be related to this weird ruling, where a judge in a case about some ADS-B receiver decided that it was ok because rendering the position of aircraft wasn't "listening to" (as in, literally hearing) the traffic: https://openjur.de/u/130555.html - This decision is probably moot now, due the addition of "take note of in comparable way". The judge briefly mentions that actually listening to the traffic could be violating the law, but I am not sure if this point was ever properly litigated.
winkelmann
·hace 10 meses·discuss
Crucially, it would have to be set up so they need to use the hardware key when pushing any changes. Just requiring a hardware key as a login method does nothing to protect against token stealing, which I believe is the most common form of supply chain attack right now.
winkelmann
·hace 10 meses·discuss
Not the first time that user has been posted here: https://news.ycombinator.com/item?id=45072797 ("A16-FuseBypass: Debug Logic Enabled on Production Apple Silicon")

Edit:

"Apple A17 Pro Chip Hardware Flaw?" - https://news.ycombinator.com/item?id=45160947

"iOS 18.5 Bluetooth Privacy Vulnerabilities" - https://news.ycombinator.com/item?id=44933435

Both of these submissions are [flagged]. I suspect that OP takes iPhone device logs and feeds the to an LLM to come up with security issues.