hngopher.com

       [HN Gopher] The Day Anubis Saved Our Websites from a DDoS Attack
       ___________________________________________________________________
        
       The Day Anubis Saved Our Websites from a DDoS Attack
        
       Author : DoctorOW
       Score  : 19 points
       Date   : 2025-05-01 22:34 UTC (25 minutes ago)
        
 (HTM) web link (fabulous.systems)
 (TXT) w3m dump (fabulous.systems)
        
       | ranger_danger wrote:
       | Seems like rate-limiting expensive pages would be much easier and
       | less invasive. Also caching...
       | 
       | And I would argue Anubis does nothing to stop real DDoS attacks
       | that just indiscriminately blast sites with tens of gbps of
       | traffic at once from many different IPs.
        
         | bastawhiz wrote:
         | Rate limiting does nothing when your adversary has hundreds or
         | even thousands of IPs. It's trivial to pay for residential
         | proxies.
        
         | Ocha wrote:
         | Rate limit according to what? It was 35k residential IPs. Rate
         | limit would end up keeping real users out.
        
         | PaulDavisThe1st wrote:
         | In the last two months, ardour.org's instance of fail2ban has
         | blocked more than 1.2M distinct IP addresses that were trawling
         | our git repo using http instead of just _fetching the goddam
         | repository_.
         | 
         | We shut down the website/http frontend to our git repo. There
         | are still 20k distinct IP addresses per day hitting up a site
         | that issues NOTHING but 404 errors.
        
       | herpdyderp wrote:
       | Can Anubis be restyled to be more... professional? I like the
       | playfulness, but I know at least some of my clients will not.
        
         | ranger_danger wrote:
         | yes it's open source
         | 
         | https://git.kernel.org/ changed theirs
        
         | LPisGood wrote:
         | I've heard people say that before. They would love to use it if
         | there wasn't a playful animated character.
         | 
         | The code is open source, so I can't imagine making a fork to
         | remove that is a Herculean effort.
        
           | unsnap_biceps wrote:
           | When I last looked into it, they are planning a white label
           | service to customize the look and has been requesting folks
           | to not fork and modify the images.
           | 
           | > Regardless, Xe did ask nicely to not change out the images
           | shipped as a whitelabel service is planned in the future
           | 
           | https://github.com/TecharoHQ/anubis/pull/204#issuecomment-27.
           | ..
        
             | natebc wrote:
             | It's also mentioned on the docs site:
             | https://anubis.techaro.lol/docs/funding/
        
         | natebc wrote:
         | discussed here: https://anubis.techaro.lol/docs/funding/
        
         | samhclark wrote:
         | You can, but they ask that you contact them to set up a
         | contract. It's addressed here on the site:
         | 
         | >Anubis is provided to the public for free in order to help
         | advance the common good. In return, we ask (but not demand,
         | these are words on the internet, not word of law) that you not
         | remove the Anubis character from your deployment. > >If you
         | want to run an unbranded or white-label version of Anubis,
         | please contact Xe to arrange a contract.
         | 
         | https://anubis.techaro.lol/docs/funding
        
       ___________________________________________________________________
       (page generated 2025-05-01 23:00 UTC)