Moar Cooties
-
@cheong said in Moar Cooties:
I switched to use
I once set up a knocking system whitelist, and everything else went to honeypot. This was a mistake I think....
-
17.58.101.245
(Applebot/0.1; +http://www.apple.com/go/applebot)
...seems like the biggest culprit, though it's not really going crazy. Why would Apple be doing something like this? Do they have a search engine?
-
@boomzilla said in Moar Cooties:
Do they have a search engine?
If you surf to http://www.apple.com/go/applebot you will get redirected to a support page saying this:
About Applebot
Learn about Applebot, the web crawler for Apple.
Applebot is the web crawler for Apple. Products like Siri and Spotlight Suggestions use Applebot.
So... Yes?
Try asking Siri for TDEMSYR.
-
@JBert I guess that makes sense. Hadn't considered Siri.
-
-
-
@blek said in Tales from Coronavee-rooss Italy, mamma mia!:
The biggest hospital in my town, the one that's treating Kung Flu patients from the area, is currently dealing with an unspecified "cyberattack", and is essentially shut down for the moment.
I gotta run out for a bit. I'll take a closer look when I get back.
-
@boomzilla What, do you think they're running NodeBB too? I know we've already seen Discourse used as an issue tracker, but a hospital running on forum software is definitely new
-
Seeing some suspicious stuff coming from these guys:
person: QUALITY NETWORK CORP
address: Office 14, Trinity House, Victoria, Mahe, Seychelles. SC-12
-
-
@boomzilla said in Moar Cooties:
Seeing some suspicious stuff coming from these guys:
person: QUALITY NETWORK CORP
address: Office 14, Trinity House, Victoria, Mahe, Seychelles. SC-12Load was 1.47 when I first looked. After blacklisting some of their subnets it's down to 0.81. Too soon to see a change in the dashboard graph.
-
The 8 o'clock hour took a significant nosedive and halfway through the 9 o'clock hour it's looking pretty good:
-
That'll do.
-
-
@Tsaukpaetra Only if you say it in Shrek's voice.
-
-
Is the forum slow for anyone else? Anybody forgot to call off the DDOS attack they had planned?
-
@JBert said in Moar Cooties:
Is the forum slow for anyone else? Anybody forgot to call off the DDOS attack they had planned?
I think some people attempted to export their profile, posts etc yesterday, which results in long running jobs which slow down whichever node the job was started on.
I certainly did, and after attempting to export my profile detais (which it seems includes all likes etc) noticed whichever node my session is stuck to slow right down.
Some of them are fine - if I'm connected via my home Wifi I get the slow node but if I drop onto my phone's data connection I get a normal node.I guess it'll sort itself out, or need an admin/moderator/dictator to give some of the nodes a swift kick.
-
@JBert said in Moar Cooties:
Is the forum slow for anyone else? Anybody forgot to call off the DDOS attack they had planned?
I considered mentioning something like that last night but abstained. Haven't had any trouble now though.
-
It was
502 bad gateway
for most of the day for me today.
-
FYI; I've been aware of this all day.
@boomzilla had the ability to fix it, but not the access. I theoretically had the access, but lack the ability to grant him the access. Something about getting and using the RSA key from. But anyways, I got a Linux grown up to help me run
docker restart wtdwtf-nodebb
, and I think @boomzilla will be able to do that soon too.
-
@apapadimoulis He was actually talking about yesterday's 5-hour outage, but the comment still fits
-
@hungrier same cause. Trying to figure out a fix. Hampered in part by lack of experience with docker.
-
@boomzilla Is it possible to disable the user exports? Particularly the profile JSON export as it's the one that doesn't complete in a few seconds.
-
@loopback0 said in Moar Cooties:
Particularly the profile JSON export as it's the one that doesn't complete in a few seconds.
For anyone wondering - among other stuff, it retrieves the full content of every post you've liked or downvoted.
@Tsaukpaetra's must be almost a complete database backup.
-
@boomzilla said in Moar Cooties:
docker
-
@loopback0 said in Moar Cooties:
full content of every post you've liked or downvoted.
-
@loopback0 said in Moar Cooties:
@boomzilla Is it possible to disable the user exports? Particularly the profile JSON export as it's the one that doesn't complete in a few seconds.
There is not a setting or anything to do that, no. I've notified the NodeBB team about this issue, which seems to have shown up in 1.14.0-3, where they increased the amount of data that the exports.
As you might guess from the version "number" that's not a stable release. It looks like Ben was updating his dockerfile locally because I don't see a record of that publicly, but my guess is that he updated to that version after seeing that NodeBB added more data to the export.
-
@boomzilla Is there any way to see the currently deployed version? The last one mentioned as an update was 1.13.xx IIRC
-
@boomzilla said in Moar Cooties:
There is not a setting or anything to do that, no.
Well that's special. So no one running NodeBB can decide whether or not to be GDPR compliant? It is a mandatory default?
-
@hungrier said in Moar Cooties:
@boomzilla Is there any way to see the currently deployed version? The last one mentioned as an update was 1.13.xx IIRC
Yes, in the admin console.
-
FYI, there is DB backup running right now, which I think is slowing things a bit at times.
-
@boomzilla said in Moar Cooties:
@loopback0 said in Moar Cooties:
@boomzilla Is it possible to disable the user exports? Particularly the profile JSON export as it's the one that doesn't complete in a few seconds.
There is not a setting or anything to do that, no. I've notified the NodeBB team about this issue, which seems to have shown up in 1.14.0-3, where they increased the amount of data that the exports.
Edit the user controller manually (for now) so that
userController.exportProfile
just returnsnull
?I don't have a copy installed anymore to try it.
-
-
@boomzilla said in Moar Cooties:
FYI, there is DB backup running right now, which I think is slowing things a bit at times.
If it's a bit slow but still accessible that's a big improvement
-
@boomzilla said in Moar Cooties:
FYI, there is DB backup running right now, which I think is slowing things a bit at times.
Running a backup is a good thing (as long as it actually works and can be restored). Slowing things is ok. Hard crashes are a problem.
-
@boomzilla said in Moar Cooties:
Hampered in part by lack of experience with docker.
I, for one, hope to continue to have a lack of experience with it.
-
@HardwareGeek said in Moar Cooties:
Hard crashes are a problem.
Especially so considering that Weng crashed the forum yesterday and he has ~9,000 posts. There are ~50 users with that number of posts. If we considered him the lower limit, and I think that's being optimistic, that's about 50 users with a kill switch in their profile right now.
More reasonable estimates would probably be at least 100 users.
-
@Polygeekery said in Moar Cooties:
@HardwareGeek said in Moar Cooties:
Hard crashes are a problem.
Especially so considering that Weng crashed the forum yesterday and he has ~9,000 posts. There are ~50 users with that number of posts. If we considered him the lower limit, and I think that's being optimistic, that's about 50 users with a kill switch in their profile right now.
More reasonable estimates would probably be at least 100 users.
I exported my ~26k posts in seconds. The profile JSON is the killer. Full content for every post you've liked or downvoted.
-
@loopback0 said in Moar Cooties:
The profile JSON is the killer.
That's the one I'm talking about. There is at minimum 50 users with the ability to kill the forums right now, and I bet it's more like at least 100.
-
@loopback0 said in Moar Cooties:
For anyone wondering - among other stuff, it retrieves the full content of every post you've liked or downvoted.
@Tsaukpaetra's must be almost a complete database backup.Can we request copies of the full database from @Tsaukpaetra ? I want to have a copy for posterity for when the phobophobes take over the world - it won't be long now.
-
@loopback0 said in Moar Cooties:
@Polygeekery said in Moar Cooties:
@HardwareGeek said in Moar Cooties:
Hard crashes are a problem.
Especially so considering that Weng crashed the forum yesterday and he has ~9,000 posts. There are ~50 users with that number of posts. If we considered him the lower limit, and I think that's being optimistic, that's about 50 users with a kill switch in their profile right now.
More reasonable estimates would probably be at least 100 users.
I exported my ~26k posts in seconds. The profile JSON is the killer. Full content for every post you've liked or downvoted.
Locally I have a development version running with an old Mongo (ca 2017?) dataset (back when I had about 43K posts. Downloading that profile resulted in a 100MB json file. Didn't take long (a minute or two?), but again, Mongo, not postgres, and no other users.
-
@Polygeekery said in Moar Cooties:
@loopback0 said in Moar Cooties:
The profile JSON is the killer.
That's the one I'm talking about.
The person exporting's post count isn't the issue with that one.
There is at minimum 50 users with the ability to kill the forums right now, and I bet it's more like at least 100.
At least.
-
@loopback0 Yeah. Because it only takes someone who's been around long enough to have liked or disliked ~9k posts. And that's a lot of people, including a lot of people who haven't really posted much.
-
@Polygeekery said in Moar Cooties:
that's about 50 users with a kill switch in their profile right now.
I have a kill switch in my profile?
-
@HardwareGeek said in Moar Cooties:
@boomzilla said in Moar Cooties:
Hampered in part by lack of experience with docker.
I, for one, hope to continue to have a lack of experience with it.
At least mine are limited to just running builds in them. (that's how we build the product) And to installing the VSCode plugin so I can easily delete old instances.
-
This post is deleted!
-
@loopback0 said in Moar Cooties:
@Polygeekery said in Moar Cooties:
@HardwareGeek said in Moar Cooties:
Hard crashes are a problem.
Especially so considering that Weng crashed the forum yesterday and he has ~9,000 posts. There are ~50 users with that number of posts. If we considered him the lower limit, and I think that's being optimistic, that's about 50 users with a kill switch in their profile right now.
More reasonable estimates would probably be at least 100 users.
I exported my ~26k posts in seconds. The profile JSON is the killer. Full content for every post you've liked or downvoted.
So Blakey'll have zero problem.
-
@pie_flavor I'm fucking tempted to ask him to try.
-
@Gąska it's fine. You get an http error now if you try it.