this post was submitted on 20 Sep 2024
12 points (92.9% liked)

Reddthat Community and Support

713 readers
1 users here now

Reddthat Community & Support

This community is for us to chat about anything and everything, including support topics!

There is no defining specific rules for this community and it can be anything from "I do not like the weather" to "I've won the jackpot and want to give all the money away to charity!" ๐Ÿ˜„

Before posting, have you read the rules?

Introductory Required Reading

For anything else, try a search and see what turns up, if not post away!

Alternative Matrix Chatroom:

Alternative Support Forums:

founded 1 year ago
MODERATORS
ticoombs@reddthat.com
reddthat@reddthat.com
12
Are we falling behind Lemmy.World again? (reddthat.com)
submitted 1 month ago by Telorand@reddthat.com to c/community@reddthat.com
7 comments fedilink hide all child comments
 

I noticed that a lot of the posts from Lemmy.World are showing with few or no votes, and often no comments. Going to the actual post shows votes and comments.

Did something change with how we/they sync up?

Reddthat: https://reddthat.com/post/26198974

Slrpnk.net: https://slrpnk.net/post/13517175

you are viewing a single comment's thread
view the rest of the comments
[โ€“] ticoombs@reddthat.com 18 points 1 month ago (3 children)

We enabled the CloudFlare AI bots and Crawlers mode around 0:00 UTC (20/Sept).

This was because we had a huge number of AI scrapers that were attempting to scan the whole lemmyverse.

It successfully blocked them... While also blocking federation ๐Ÿ˜ด

I've disabled the block. Within the next hour we should see federation traffic come through.

Sorry for the unfortunate delay in new posts!

Tiff

[โ€“] Telorand@reddthat.com 8 points 1 month ago

It happens. Appreciate the effort! I noticed a marked uptick in the lemmit bot mirroring Reddit, so I wonder if it was a coincidence or a sibling effort.

[โ€“] awwwyissss@lemm.ee 4 points 1 month ago

Thank you

[โ€“] cranakis@reddthat.com 4 points 1 month ago* (last edited 1 month ago) (1 children)

Might be to much work but you can allow a subset of traffic to bypass a CF WAF rule if the federated traffic is identifiable vs the scrapers.

Edit: I'm reading up. What I said above may not apply to the one click thing: https://blog.cloudflare.com/declaring-your-aindependence-block-ai-bots-scrapers-and-crawlers-with-a-single-click/

I do support turning it on after what I read at that link.

Edit 2: From here: https://developers.cloudflare.com/bots/get-started/free/#limitations

Limitations You cannot bypass or skip Bot Fight Mode using the Skip action in WAF custom rules or using Page Rules. Skip, Bypass, and Allow actions apply to rules or rulesets running on the Ruleset Engine. While Super Bot Fight Mode rules are implemented in the Ruleset Engine, Bot Fight Mode checks are not. This is why you can skip Super Bot Fight Mode, but not Bot Fight Mode. If you need to skip Bot Fight Mode, consider using Super Bot Fight Mode.

It's like they tried to make that confusing to read.

[โ€“] ticoombs@reddthat.com 5 points 1 month ago (1 children)

Possibly, as it's one generic endpoint, but it also blocked a few other things people in the fediverse created, which are mighty helpful in diagnosis of these and other issues.

So using some AI model or whatever CF uses is probably not going to be the best thing for us as it classified a POST request as a crawler?? ๐Ÿคท

I'd have to whitelist every regular endpoint as well and then it gets messy as CF only gives you so much control as a free user.

So, for the moment I've blocked the most annoying ones based on UserAgent.

[โ€“] cranakis@reddthat.com 4 points 1 month ago* (last edited 1 month ago)

I'd have to whitelist every regular endpoint

That's why I started with "this might be to much work" ๐Ÿ˜†. Seems like there would be a way to do it without the automated bot blocking just using allow and deny (or challenge I guess it is here). The list would be a bitch to create by hand but shouldn't it exist already somewhere in the federation configs? If so you could broadly allow those while blocking or challenging otherwise. I guess it comes down to how do you identify bot traffic with free, without the tool on.

Full disclosure: I have CF Enterprise experience but I'm just guessing in the Lemmy/federation part and haven't messed with CF free.