[eloff]

Seems like a good use case for a zip bomb. Return some tiny gzipped content that expands to 1gb.

[christophilus]

Yeah. Their proxy is parsing the HTML and stripping it / modifying it, so they're obviously unzipping the responses on their servers. Create the honeypot endpoint, and if you get a request from that endpoint, reply with a zip bomb.

Then, write a little script that repeatedly hits that honeypot URL. I quite like this idea.

[eloff]

Awesome, do post a follow-up on HN, I want to hear how this war with the proxy asshats plays out.