New agents.txt file found on DreamHost(journal.kvibber.com)
journal.kvibber.com
New agents.txt file found on DreamHost
https://journal.kvibber.com/2026/05/agents-txt-on-dreamhost/
16 comments
Any measure you put in place can/will be ignored by the actors who never planned to respect your wishes in the first place.
That's just how the web works, though.
That's just how the web works, though.
I don’t think just how the web works is good enough for this situation. This is a new situation that’s never existed before.
I have no way to prevent things I create being ingested into an llm and used to make money for another company? With search engines there was quid pro quo. I get traffic they get traffic. This is entirely one-sided and there’s no intellectual property protections or sigils i can use to opt out? Messed up
I have no way to prevent things I create being ingested into an llm and used to make money for another company? With search engines there was quid pro quo. I get traffic they get traffic. This is entirely one-sided and there’s no intellectual property protections or sigils i can use to opt out? Messed up
This is true for measures that require the actor to respect your wishes, but doesn't apply to measures that force them to.
This is just like security; the most secure system is the one that nobody can use.
I think the proof-of-work approach that anubis[0] takes is pretty interesting.
I love the idea of having to do a small amount of work for the author of the content in order to get access to their content. It would be interesting to a scheme where the proof-of-work that clients do in systems like anubis actually had a way to directly benefit the author.
[0]: https://github.com/TecharoHQ/anubis
I think the proof-of-work approach that anubis[0] takes is pretty interesting.
I love the idea of having to do a small amount of work for the author of the content in order to get access to their content. It would be interesting to a scheme where the proof-of-work that clients do in systems like anubis actually had a way to directly benefit the author.
[0]: https://github.com/TecharoHQ/anubis
From working with hashcash and anti-spam, using a proof of work puzzle as a rate modulator is far more effective if you extended the application protocol to include that hashcash token.
Using a Hashcash token to HTTP would have multiple wins: - Puts the load on the sender, i.e. server hands off the token request and then drops the connection, leaving it free to serve somebody else. - Token size is dynamic. - rate limiting a client - hug of death resistance - token inflation resistance - CURL and Wget or any other programmatic HTTP request can be made to work with the addition of a Hashcash token.
At a crayon sketch level, the protocol works something like this:
HTTP request WITH header stamp: available.
Server returns a 3xx <stamp size required>
Next request Stamp: <stamp matching required stamp size> header
HTTP request then completes.
Put this protocol into Firefox/Chromium, and the usefulness of this protocol would increase as people upgrade their browsers.
If we do not get a `Stamp-Available` header, then the system will revert to the Anubis mechanism. One advantage of the Anubis interrupting is that can be used to advertise the presence and value of upgrading to an Anubis++ browser. I.e. You don't get the interrupting web page telling you all about Anubis and Anubis++, and you join the resistance pushing back against AI scrapers.
Using a Hashcash token to HTTP would have multiple wins: - Puts the load on the sender, i.e. server hands off the token request and then drops the connection, leaving it free to serve somebody else. - Token size is dynamic. - rate limiting a client - hug of death resistance - token inflation resistance - CURL and Wget or any other programmatic HTTP request can be made to work with the addition of a Hashcash token.
At a crayon sketch level, the protocol works something like this:
HTTP request WITH header stamp: available.
Server returns a 3xx <stamp size required>
Next request Stamp: <stamp matching required stamp size> header
HTTP request then completes.
Put this protocol into Firefox/Chromium, and the usefulness of this protocol would increase as people upgrade their browsers.
If we do not get a `Stamp-Available` header, then the system will revert to the Anubis mechanism. One advantage of the Anubis interrupting is that can be used to advertise the presence and value of upgrading to an Anubis++ browser. I.e. You don't get the interrupting web page telling you all about Anubis and Anubis++, and you join the resistance pushing back against AI scrapers.
partial answer: the major labs (Anthropic, OpenAI) do respect robots.txt for their named crawlers, so blocking ClaudeBot/GPTBot in robots.txt works for those specific bots. What you can't easily opt out of is the indirect ingestion via Common Crawl, scraped datasets, and unnamed crawlers. agents.txt doesn't change that picture.
The Allow-Training vs Allow-RAG split in the default is the useful part of the file. They're different operations with different costs to the site owner. Training is a one-time bulk ingest. RAG is a runtime fetch per query. A site owner might reasonably allow one and not the other.
I can report that Facebook does not respect robots.txt. Heck, I even mailed [email protected] with the specific IP ranges and log samples three times over a month and they of did not even respond. Keeps on wasting my CPU cycles to this day by crawling massive development forks (I hope they choke on the data...):
$ (cat /var/www/logs/access.log; zcat /var/www/logs/access.log*.gz) | grep 2a03:2880: | wc -l
626396
About three hits per second for months now.Can you serve them a specific file that would make it expensive on their end?
If I had the time and energy, I would make some sort of simple code language model and generate infinite junk and feed that to them in the hope that it ruins their future training runs. But, I lack the former and some of the latter. Alternatively, maybe I would actually read one of those "backdoor papers" and try to inject something like that.
I was wondering if this could be done without being malicious to that level. If they are costing you money, then I have no moral qualms playing in kind. Taking that next step would then give up the moral high ground and potentially introduce yourself to legally questionable grounds.
I get the lack of time/energy for this type of thing. It is one of those projects that could be satisfying for yourself, but very hard to justify if you're a family person but something a younger person might get a lot of pleasure from.
I get the lack of time/energy for this type of thing. It is one of those projects that could be satisfying for yourself, but very hard to justify if you're a family person but something a younger person might get a lot of pleasure from.
I block their entire ASN when they do that.
Well Claude still thinks it shouldn't read AGENTS.md [1] so they probably also don't care about agents.txt on a web server...
[1] https://github.com/anthropics/claude-code/issues/6235
[1] https://github.com/anthropics/claude-code/issues/6235
Add HTTP Basic Auth in front of your website, then share the credentials with people who are allowed to view your website. Make sure you don't hand our credentials to employees of OpenAI, Anthropic, xAI or Microsoft.
Ah, yes. A reasonable situation. If you don’t want your data slurped up by these companies, simply don’t publish anything anywhere. Seems fine.
Part of the Managed VPS Hosting package, I guess
Is there a way to opt my websites out of ai data collection?