undefined | Better HN

0 pointsmindslight3y ago0 comments

Please stop making the world a worse place. Every online purchase I make comes from a datacenter IP with resistFingerprinting = true. I've got a good ISP that probably isn't selling surveillance about me, but websites themselves certainly abuse IP addresses (as you're doing here), and I see no reason to browse like some naive jamoke - datacenter IPs are easy to rotate, and fine-grained wireguard is already integrated into my setup.

When web sites increase the amount of hassling (and make no mistake about it, garbage like this, CAPTCHAs, nonconsensual "SMS 2FA" etc are all just hassles to customers), I file support tickets about their broken website. If a website continues down the path of snake oil to the point of becoming unusable, I generally end up no longer being a customer.

0 comments

jonathan-kosgei3y ago

Fraudulent activity by bots is a problem that everyone who's managed a large enough website is familiar with.

Most bots originate from cloud IPs or hide behind proxies and VPN services. Our scores ensure that the majority of legitimate users i.e. those coming from residential IPs are left alone, with captchas and other verification mechanisms shown to "high risk" users, that is, users visiting from a cloud provider's networks or a known proxy/vpn provider. This can be verified by the number of comments on this thread by users whose home internet IPs showed a high "Trust Score".

So if anything our scores help reduce the hassle or friction that legitimate users are subjected to by the fraud-fighting tactics employed by different websites.

mindslightOP3y ago

"Fraudulent activity by bots" is a contradiction in terms that sounds like you've just mashed distinct issues together to create an emotionally manipulative phrase. Bots are bots, fraud is fraud. "Bots" are an overstated problem - websites should want to publish their information for every type of consumption. If serving some types of consumers causes too high of a load, then the inefficient code is what needs to be fixed. And fraud is not going to be prevented by a CAPTCHA.

> our scores help reduce the hassle or friction that legitimate users are subjected to

I'm telling you right here, I am a legitimate user and when businesses fall for the garbage story you're pushing, it makes me less likely to remain their customer. Hassling customers with repeated rounds of "click on all the cars" "no you're wrong" is terrible UX. It could be understandable if it popped up after a few failed logins in a row, but putting the nagwall front and center is appalling design.

I look forward to Apple's VPN increasingly demonstrating just how wrong your marginalizing surveillance mindset is.

jonathan-kosgei3y ago

Bots here refers to automated traffic, and I don't think anyone on HN would be surprised by the assertion that most online fraud is automated.

1 more reply

xist3y ago

What is the difference between the setup you describe being used for what I assume is privacy, and the same setup being used for nefarious reasons exiting from your presumably consumer level VPS?

mindslightOP3y ago

The difference is as you just said - one is being used for privacy, and the other for "nefarious reasons".

It seems like you're trying to imply an association, while avoiding having to make the "if you have nothing to hide" argument explicitly.

xist3y ago

Not at all.

I'm wondering why you expect the websites you're attempting to utilize to understand your intentions are "pure" when I would argue that setup is vastly more commonly used for nefarious purposes.

They do blocking for a reason. I'm sure if you contacted them they would explain they lose $$$$$$ a year due to fraud/abuse/hack/nefarious attempts coming from setups similar to yours, which dwarfs however much you might buy from them. I understand their position.

There are commercial VPN and security solutions etc that would achieve some of the goals - undoubtedly at a higher cost than what you're running. You would essentially paying for a boost in reputation that websites would recognize as being more on the "good" side than "bad".

It's quite unfortunate for you I agree but I don't blame them at all.

A suggestion - get a more premiere data center host and get a /29 network allocated to you (can be using a LLC for privacy). Essentially become a commercial entity and pass the sniff test for a lot of websites.

Or subscribe to a service that does that for you, and your frustrations will melt away.

1 more reply

j / k navigate · click thread line to collapse

0 comments

jonathan-kosgei3y ago

Fraudulent activity by bots is a problem that everyone who's managed a large enough website is familiar with.

So if anything our scores help reduce the hassle or friction that legitimate users are subjected to by the fraud-fighting tactics employed by different websites.

mindslightOP3y ago

> our scores help reduce the hassle or friction that legitimate users are subjected to

I look forward to Apple's VPN increasingly demonstrating just how wrong your marginalizing surveillance mindset is.

jonathan-kosgei3y ago

Bots here refers to automated traffic, and I don't think anyone on HN would be surprised by the assertion that most online fraud is automated.

1 more reply

xist3y ago

What is the difference between the setup you describe being used for what I assume is privacy, and the same setup being used for nefarious reasons exiting from your presumably consumer level VPS?

mindslightOP3y ago

The difference is as you just said - one is being used for privacy, and the other for "nefarious reasons".

It seems like you're trying to imply an association, while avoiding having to make the "if you have nothing to hide" argument explicitly.

xist3y ago

Not at all.

I'm wondering why you expect the websites you're attempting to utilize to understand your intentions are "pure" when I would argue that setup is vastly more commonly used for nefarious purposes.

It's quite unfortunate for you I agree but I don't blame them at all.

Or subscribe to a service that does that for you, and your frustrations will melt away.

1 more reply

j / k navigate · click thread line to collapse