As an aside, can I say thank you for the suggestion in this public setting.
I know it's not nessesarily a MediaWiki specific topic, but, can we mention it on MW.org somewhere because I know a few MW site owners who've been getting absolutely hammered by the same problem, and like Bryan, don't want to end up blocking potential legitimate traffic or using third party services.
I've rolled Anubis out today on ShoutWiki and initial results are looking positive - even if the documentation left a bit to be desired.
-- Lewis Cawte
On Thu, 24 Apr 2025, 01:06 Bryan Davis, bd808@wikimedia.org wrote:
On Wed, Apr 23, 2025 at 5:59 PM AntiCompositeNumber acn@anticomposite.net wrote:
https://anubis.techaro.lol/ is currently being deployed by a number of
other sites, small and large, from the Arch Wiki to UNESCO. It is MIT licensed, sits between a front proxy and the appserver, and uses a proof-of-work CAPTCHA to prevent bots. It is a blunt hammer, but it's probably better than IP blocking. There is some ability to allow acceptable bots: https://anubis.techaro.lol/docs/admin/policies/
https://git.gammaspectra.live/git/go-away is a similar project with
more configuration available, but I haven't heard as many folks deploying it.
I don't like advocating for these masures. I'm not sure there are any other reasonable options for resource-limited
projects.
Anubis is on my list of potential tricks to try. I agree that proof of work proxies are not an ideal solution, but maybe they are slightly less terrible than outright blocks on 12% of the internet as I have done today.
Bryan
Bryan Davis Wikimedia Foundation Principal Software Engineer Boise, ID USA [[m:User:BDavis_(WMF)]] irc: bd808 _______________________________________________ Wikitech-l mailing list -- wikitech-l@lists.wikimedia.org To unsubscribe send an email to wikitech-l-leave@lists.wikimedia.org https://lists.wikimedia.org/postorius/lists/wikitech-l.lists.wikimedia.org/