| > It means that more than one percent of the IPv4 real estate on the Internet (and probably much more) is occupied by people and organizations who are either clueless or just do not care how much the rest of us are paying to keep our websites on line. Oh, tell me, how much? The whopping $5/month? Oh, maybe this is a high load WordPress/like CMS running on LAMP stack... so $8/month? > I wrote the following small PHP script to search though my Nginx configuration file and tally up the number of IP addresses that I am blocking. Holy shit. Blocking bots through nginx configuration, more so, blocking 56M addresses through nginx configuration... Okay, for those of you who never did the thing or have no idea: Just use the firewall (most of the time it is built-in in your OS), use some way to tell the firewall about the 'offenders' (eg fail2ban though there are options) and don't ever block something indefinitely, it's totally meaningless, just use timeouts. If some Bob got his computer infected in 2015 and that computer tried to access /wp-admin.php then there is absolutely no reason to assume what in 2024 the IP address Bob's computer had in 2015 is still 'malicious'. Automatic activity like the scans, bruteforcing and whatever is all about opportunity. They are searching for an easy opportunities to exploit and scanning a server what actively blocks you even for 30m at time is just pointless, there is way, way more opportunities in other places than wasting ~4 weeks trying to scan this server. > I have custom 403 and 404 error pages that explain to those who may care why they are being blocked and how to regain access to the website https://cheapskatesguide.org/custom404really.html |