drkt

I can’t engage with you when you can’t or won’t quote the full sentence. You are literally picking a section of a sentence, stripping it of context so it looks wrong, and then pretending I said that.

If your bot is written poorly, it will get stuck on even legitimate pages.

The point I am making is that the only way you’re getting into my network is if you’re sitting on a crazy 0day for Debian, Apache or PHP. My network isn’t a playground that I set up like a jigsaw for someone to “solve”. There’s nothing to solve, it’s not a CTF. You can’t dump points into a hacking skill and magically bypass some of the most vetted and battle-tested software in the world.

Large orgs that take their security seriously employ defensive honeypots internally to catch intruders, but I have no experience or expertise to offer besides that I know it’s a thing. :P

I’ve been mentally experimenting with an ESP32 hooked up to my desktop’s PWR header with a switch. I’ve done worse than that before, so I know it’ll work. I just haven’t gotten my ass around to it. I can send commands to it through my domain via Apache acting as a reverse proxy.

Exposing it over HTTP ensures all can access, but that’s my best solution. I don’t know what your intentions are, or what your pain-points are, or what you’re willing to deal with, or what your data is and if it poses a risk to you personally to have it exposed.

Stop playing wack-a-mole with these fucking people and build TARPITS!

Make it HURT to crawl your site illegitimately.

Oh good; there is now a horizontal scroll indicator in addition to my native scrollbar.

Sometimes less is more, Ethan.