Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Uncategorized
17
Posts
15
Posters
2
Views
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall
It's also the tens of MByte of Frameworks and JavaScript and ad services that have to be loaded every single time. -
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall I'd like to automate the process of responding to Cloudflare's checks
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall why is that there? Bots and AI scraping. None of this would be necessary otherwise.
-
@david_chisnall I like this one specifically because the Cloudflare gate is there to address the problem of "Too many visitors."
@mark @david_chisnall I don't think that's actually the case, at least not entirely. The main issue is that the Internet is currently being inundated with LLM content crawlers to the point that it overwhelms websites or scrapes content some sites don't want sucked into AI training data. It has caused a massive number of sites to serve those bot-detection pages to everyone. So it's not quite an issue of too many visitors but actually "too many non-human visitors"
-
@david_chisnall I like this one specifically because the Cloudflare gate is there to address the problem of "Too many visitors."
This morning, Cloudflare decided that a company I wanted to place an order with shouldn't trust me, so I went to one of their competitors.
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
On top of all the broken links we’ll send if your not using the proper browser.
-
@david_chisnall why is that there? Bots and AI scraping. None of this would be necessary otherwise.
The thing is, you don't a CAPTCHA. Just three if statements on the server will do it:
1. If the user agent is chrome, but it didn't send a "Sec-Ch-Ua" header: Send garbage.
2. If the user agent is a known scraper ("GPTBot", etc): Send garbage.
3. If the URL is one we generated: Send garbage.
4. Otherwise, serve the page.The trick is that instead of blocking them, serve them randomly generated garbage pages.
Each of these pages includes links that will always return garbage. Once these get into the bot's crawler queue, they will be identifiable regardless of how well they hide themselves.
I use this on my site: after a few months, it's 100% effective. Every single scraper request is being blocked. At this point, I could ratelimit the generated URLs, but I enjoy sending them unhinged junk. (... and it's actually cheaper then serving static files!)
This won't do anything about vuln scanners and other non-crawler bots, but those are easy enough to filter out anyway. (URL starts with /wp/?)
-
@mark @david_chisnall Instead of fixing broken code with proper logging and code performance observability, lets stop all the effort and expect Cloudflare to care about actual humans (and not just about their PaaS billing). 😓
@autiomaa @mark @david_chisnall Honestly I'm kind or surprised there isn't a "pay Cloudflare for X connections without a challenge/captcha", because it would be another revenue stream for them.
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall This was when the tech bros realized that it is all in comparison to everything else.
If you just make EVERYTHING worse then it doesn't matter that you're bad.
The real story of computing (and perhaps all consumer goods)
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall it's funny, everytime I try to access a website that uses Cloudflare, I have to use sth else or disable my VPN && my DNS resolver.
So if they can have my data, they let me use them. So don't tell me it is about prorection against bots.
It's about gathering data - or am I just paranoid af? -
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall I don't even care about Cloudflare (and Anubis) checks – those at least rarely last more than a few seconds. What I loathe are the throbbing placeholders that seem to be everywhere now, causing simple text pages to load slower than similarly-looking pages (once the content renders) loaded on dial-up.
-
@david_chisnall I don't even care about Cloudflare (and Anubis) checks – those at least rarely last more than a few seconds. What I loathe are the throbbing placeholders that seem to be everywhere now, causing simple text pages to load slower than similarly-looking pages (once the content renders) loaded on dial-up.
-
undefined aeva@mastodon.gamedev.place shared this topic
Gli ultimi otto messaggi ricevuti dalla Federazione
-
@ThinkTankNotOfficial e se la prende con Albanese mentre sono morti 72.000 gazawi!
-
[ 🇫🇷 FRANCE ]
🔸 La Ministre française des armées, Catherine Vautrin, affirme que la France « n’a plus le luxe d’un fonctionnement de temps de paix » et annonce avoir réuni les grands industriels de défense à l’hôtel de Brienne.
L'objectif est de renforcer le modèle industriel de défense autour de l’audace, des partenariats et de la compétitivité, avec le triptyque forces–DGA–industrie présenté comme au cœur de la souveraineté et de la sécurité collective.
-
@ideeperscrittori @attualita ma infatti meloni la russa si occupano di pucci mentre l'industria da tre anni, da quando ci sono loro al potere, è crollata ed è la rovina per l'italia!
-
Le battute di Pucci sono orrende, sono d'accordo. Quello che non capisco è il fatto che la sua "comicità" (chiamiamola così) sia descritta come una cosa non degna del Festival di Carlo Conti, come se si trattasse di una kermesse letteraria frequentata dai migliori accademici italiani.
-
Istat: M5s, tre anni di crollo, il governo meloni ha ucciso l'industria
ANSA
https://www.ansa.it › sito › economia › pmi › 2026/02/11
8 ore fa — È il risultato della più totale assenza di politiche industriali e di investimento, di fallimentari misure per le aziende come l'Ires premiale
-
I ricercatori avvertono: il Wi-Fi potrebbe diventare un sistema invisibile di sorveglianza di massa
una nuova tecnologia può identificare gli individui anche quando non hanno con sé un dispositivo WiFi, registrando passivamente i segnali nelle reti radio, sollevando seri problemi di privacy e spingendo a richiedere protezioni più severe.
https://scitechdaily.com/researchers-warn-wifi-could-become-an-invisible-mass-surveillance-system/
-
@repubblica @politica-la-repubblica-repubblica meloni non parla perchè è occupata a risolvere la crisi industriale e di stellantis...ah..no...pensa a pucci!
-
Argenta: morire di lavoro? Roba da archiviare
@anarchia
di Vito Totire (*). A seguire una nota della “bottega”. In coda il promemoria per l’incontro bolognese, il 16 febbraio, della Rete Nazionale Lavoro Sicuro. LAVORATORE NIGERIANO MORTO NEL 2022: Perché archiviare? QUANDO PARLARE DI “MORTE NATURALE” E’ UNA https://www.rivoluzioneanarchica.it/argenta-morire-di-lavoro-roba-da-archiviare/
