HackerTrans
TopNewTrendsCommentsPastAskShowJobs

throwaway99210

no profile record

Submissions

The Nearest Neighbor Attack

volexity.com
230 points·by throwaway99210·2 yıl önce·69 comments

comments

throwaway99210
·2 yıl önce·discuss
> E.g. a large fai2ban rule to just ban anything that attempts to HTTP GET /admin.php or /phpmyadmin etc, even just once, gets rid of almost all nefarious bot traffic.

unfortunately fail2ban wouldn't even make a dent in the attack traffic hitting the endpoints in my day-to-day work, these are attackers utilizing residential proxy infrastructure that are increasingly capable of solving JS/client-puzzle challenges.. the arms race is always escalating
throwaway99210
·2 yıl önce·discuss
> I can't help but feel like these are the dying breaths of the open Internet though

I agree with the over zealous tracking by the megacorps but this is also due to bad actors, I work for a financial company and the amount of API abuse, ATO, DDoS, nefarious bot traffic, etc. we see on a daily basis is absolutely insane
throwaway99210
·2 yıl önce·discuss
Based on what I've seen, most command-line clients and basic HTTP libraries typically ship with leaner, more static configurations (e.g., no GREASE extensions in the Client Hello, limited protocols in the ALPN extension header, smaller number of Signature Algorithms). Mirroring real browser TLS fingerprints is also more difficult due to the randomization of the Client Hello parameters (e.g., current versions of Chrome)
throwaway99210
·2 yıl önce·discuss
If someone claims they can solve Leetcode hard problems without studying the questions and the solutions beforehand, then I would put them in the "full of shit" category