Post AlOK67YYWxc8bKoCJc by volpeon@is-a.wyvern.rip
(DIR) More posts by volpeon@is-a.wyvern.rip
(DIR) Post #AlOK66wGpIzOgatcdk by erincandescent@akko.erincandescent.net
2024-08-27T11:38:21.789781Z
1 likes, 1 repeats
Periodically people talk about fediverse link previews DDoSing things and like. Yes, this is something that should be fixed ButWhen people give numbers they’re generally less than 10 requests per second. Is DDoSing your average website really this easy?
(DIR) Post #AlOK67YYWxc8bKoCJc by volpeon@is-a.wyvern.rip
2024-08-27T11:49:42.210Z
0 likes, 0 repeats
@erincandescent@akko.erincandescent.net I don't hesitate to post links to my website and it has never caused any problems. It's on a very low-tier VPS, too
(DIR) Post #AlOLS2HmuGjUa1ym2K by stfn@fosstodon.org
2024-08-27T12:04:57Z
0 likes, 0 repeats
@erincandescent It's a complicated matter. My website is pure static, hosted on a small VPS and link DDoSing from Mastodon doesn't tick the load in any observable way. But people have different hosting solutions and site types.
(DIR) Post #AlOLsQpMHhfWDuGgUq by 7666@comp.lain.la
2024-08-27T12:09:18.528360Z
1 likes, 0 repeats
@erincandescent when your average fedi admin buys a $2/mo lowendbox special 15:1 vCPU overcommit VPS from FASTVPSNOW! hosting or whatever, yes
(DIR) Post #AlOY6ShZJMpJXa55JQ by amerika@annihilation.social
2024-08-27T14:26:44.097479Z
0 likes, 1 repeats
@erincandescent Hosting costs went up, so most people are on low-quality shared hosting.
(DIR) Post #AlOmQPbNwcPT4pb0Rk by jhwgh1968@chaos.social
2024-08-27T16:58:38Z
0 likes, 0 repeats
@erincandescent I wish I could find it again, but the analysis I've read that I haven't seen in the replies to this, which I found persuasive:Browsers are fairly efficient with client-side caching -- to the point where many websites and servers (accidentally) rely on itMastodon's preview feature not only doesn't do this, but polls periodically to see if it's changed, ignoring not only cache control headers but allegedly some "permanent" status codesIt is basically a badly behaving crawler
(DIR) Post #AlOmQQGrSPaR9T085w by jhwgh1968@chaos.social
2024-08-27T17:00:28Z
0 likes, 0 repeats
@erincandescent while I don't know if it qualifies as DDoS, such a badly behaving crawler is indeed enough traffic to get noticed and cause ire among sysadminsTo the point of getting your IP address blocked and/or a nastygram in e-mail bc you are not using our website "as intended" and are "malicious"Ask me how I know
(DIR) Post #AlOmQQr1HyVgxbv0SG by erincandescent@akko.erincandescent.net
2024-08-27T17:02:26.956559Z
1 likes, 0 repeats
@jhwgh1968 it doesn't poll; it asks the site once upon message reception
(DIR) Post #AlOmVCY7tvH82jM66K by ret@furry.engineer
2024-08-27T12:17:53Z
0 likes, 0 repeats
@charlotte @erincandescent at my first job we had a data protection incident when WP Total Cache was saving form submissions that had validation errors and randomly presenting half-filled forms to other visitors.
(DIR) Post #AlOmVE7G4myItynfV2 by ret@furry.engineer
2024-08-27T12:20:30Z
0 likes, 0 repeats
@charlotte @erincandescent oh and we would regularly adopt WP sites that had 3 or 4 cache plugins installed that all fought or cached one another’s cached content. That side of web dev (“web design”) is the Wild West.