Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Uncategorized
73
Posts
44
Posters
7
Views
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall Cloudflare is a protection racket. It's disgusting.
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall late 2020s and LLM brought us choice. If Cloudflare isn’t of your liking Anubis is happy to add some delay to page load
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall Also along those lines, I miss the days when page contents included the most important information instead of being loaded later via JavaScript.
-
@the_wub They check user-agent and challenge anything that claims to be Mozilla (because that's what the majority of bots masquerade as).
Also, weird that Seamonkey can't pass it – I just tried with Servo, and it had no problems.
@jernej__s @the_wub Every graphical web browser claims to be Mozilla.
-
@david_chisnall @MeiLin 400-500 separate data tracking recipients on each page..m
@david_chisnall @drwho
And the worst part is that the majority of effects and stuff, you can do with pure CSS and HTML. But because everyone started to jump on the React bandwagon the moment JavaScripe infected servers in addition to browsers, it was over.In addition to tracking cookies and the like.
I am still wondering what 'legitimate interest' is, aside from a figleaf to still try and track me...
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall
So what will you do?Nobody gets fired for buying cloudflare.
-
@david_chisnall it's funny, everytime I try to access a website that uses Cloudflare, I have to use sth else or disable my VPN && my DNS resolver.
So if they can have my data, they let me use them. So don't tell me it is about prorection against bots.
It's about gathering data - or am I just paranoid af?@hex0x93 I know nothing about Cloudflare's data practices. But I do know a lot of sites have been forced to go with Cloudflare because so many AI bots are incessantly scraping their site that the site goes down and humans can't access it - essentially AI is doing a DDOS, and when that's sustained for weeks/months/more then the Cloudflare-type system seems to be the only way to have the site actually available to humans.
I hate it but those f---ing AI bots, seriously, they are ruining the net.
-
@hex0x93 I know nothing about Cloudflare's data practices. But I do know a lot of sites have been forced to go with Cloudflare because so many AI bots are incessantly scraping their site that the site goes down and humans can't access it - essentially AI is doing a DDOS, and when that's sustained for weeks/months/more then the Cloudflare-type system seems to be the only way to have the site actually available to humans.
I hate it but those f---ing AI bots, seriously, they are ruining the net.
@david_chisnall @zeborah i know, and it probably isn't about data and stuff. But for me it is annoying, that it deems me as a bot, just because of some settings I enabled on my browser and system....^^
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall There's the self-hosting option of sticking anubis in front of your service so that it can throttle visitors by making their browser do a bunch of work.
There's also the bouncing around between various services and proxies in order to get logged in...something I'm currently struggling to figure out because apparently I'm a dumbass that can't figure out traefik or how to properly set environment variables or something.
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall I remember optimizing thumbnail-images to within kilobytes of their lives...
...and now apparently nobody thinks twice about requiring many MB of JS code per page-load.
(TLDR: this current nonsense is nonsense.)
-
@david_chisnall I remember optimizing thumbnail-images to within kilobytes of their lives...
...and now apparently nobody thinks twice about requiring many MB of JS code per page-load.
(TLDR: this current nonsense is nonsense.)
@woozle I'll just be happy if people stop serving images that should be jpegs or webp in png format.
-
@woozle I'll just be happy if people stop serving images that should be jpegs or webp in png format.
JPG screenshots 🔥
-
Web design in the early 2000s: Every 100ms of latency on page load costs visitors.
Web design in the late 2020s: Let's add a 10-second delay while Cloudflare checks that you are capable of ticking a checkbox in front of every page load.
@david_chisnall Don't forget the oh so lovely "select all the squares with cars in them" with a picture of one single car and you're not quite sure if you should select the squares in the bottom middle or not.
I'm given to understand that those actually do jack squat for stopping bots... They just use tokens to straight up bypass or something.
I personally don't mind t he delay so much, but I do hate having to deal with that crap — especially when it fails and declares that I'm supposedly not human. (How the F was I supposed to know that the blurry red glob in the bottom right was supposed to be a lion? It wasn't even the right color!) The one with the catgirl and a loading bar is fine I guess. But all that other crap can take a flying leap.
-
@autiomaa So the bots have an option to bypass the captchas meant to catch bots but the humans don't. That tracks. 😩 @mark @david_chisnall
@internic That's not a bug, that's a feature!
I guess... -
@mark @david_chisnall I don't think that's actually the case, at least not entirely. The main issue is that the Internet is currently being inundated with LLM content crawlers to the point that it overwhelms websites or scrapes content some sites don't want sucked into AI training data. It has caused a massive number of sites to serve those bot-detection pages to everyone. So it's not quite an issue of too many visitors but actually "too many non-human visitors"
@danherbert @mark @david_chisnall Sadly, that is our reality. One siteʼs traffic was 75–80 per cent scraper (even back in 2023) so up went the Cloudflare blocks and challenges. (Before anyone @s me about this, Iʼm not a computer whiz so this is the only thing I know how to use.) And itʼs finally worked after figuring out which ASNs and IP addresses are the worst, with traffic on that site back to pre-2023 levels (which I know means an overall drop in ranking).
-
@david_chisnall I remember optimizing thumbnail-images to within kilobytes of their lives...
...and now apparently nobody thinks twice about requiring many MB of JS code per page-load.
(TLDR: this current nonsense is nonsense.)
@woozle @david_chisnall I still do! Old habits.
-
@hex0x93 I know nothing about Cloudflare's data practices. But I do know a lot of sites have been forced to go with Cloudflare because so many AI bots are incessantly scraping their site that the site goes down and humans can't access it - essentially AI is doing a DDOS, and when that's sustained for weeks/months/more then the Cloudflare-type system seems to be the only way to have the site actually available to humans.
I hate it but those f---ing AI bots, seriously, they are ruining the net.
@zeborah @hex0x93 @david_chisnall This pretty much describes us. Scrapers as well as brute-force hackers multiple times per hour (even literally per second). One siteʼs traffic was 75–80 per cent scraper.
-
@david_chisnall "Please wait while we check that your Browser is safe" while my laptop goes for a minute or two into full load and screaming hot
Perhaps ending in "We are sorry but we could not verify you are an actual human, your machine shows suspect behaviour, sent an e-mail to admin to get access"
@Laberpferd @david_chisnall proof of work is such a bad CAPTCHA. Like, who thought bots couldn't evaluate JS
-
@zeborah @hex0x93 @david_chisnall This pretty much describes us. Scrapers as well as brute-force hackers multiple times per hour (even literally per second). One siteʼs traffic was 75–80 per cent scraper.
@jackyan @zeborah @david_chisnall and it is totally understandable to protect yourself against that. It is just super annoying for ppl like me, who value and protect their privacy.
An I am no webscraper, nor am I a hacker.... -
@jackyan @zeborah @david_chisnall and it is totally understandable to protect yourself against that. It is just super annoying for ppl like me, who value and protect their privacy.
An I am no webscraper, nor am I a hacker....@hex0x93 @zeborah @david_chisnall I hear you as I get annoyed, too. I believe ours is the one with the tick box, so no stupid 'Choose the bicycles' or rejection because you use a VPN.
Gli ultimi otto messaggi ricevuti dalla Federazione
-
Carnival sweets
With half mixed dough I notice
I forgot to buy eggs
-
@francina1909 buongiorno a te 😊
-
E buongiorno così...
#sangio
-
Sò annata a Niscemi a fà la scienetta, ma li mortacci che posto demmerda oh!
Spero solo che nun me se vede schifata ne le foto che nun ce tengo proprio a tornà pe n'artro giro
https://www.ilpost.it/2026/02/17/foto-meloni-niscemi-commissario-straordinario/
-
Awesome! 😂
-
Retro Rover: LT6502 Laptop Packs 8-Bit Power on the Go
Making your own laptop can be a challenging project, but a doable one, especially given the large number of options available today for computing. Of course nothing says you need to use a modern component in your build, and in the LT6502 project by [TechPaula] they didn’t go with a modern RPi or the like, nope went right back to about 50 years ago to use a 6502 at the heart of this DIY laptop build.
The 6502 is an 8-bit microprocessor from the 1970s, found in the Commodore 64 and Apple II. This wasn’t their first venture into 8 MHz world of the 6502, prior to this laptop build there was a desktop build the PC6502 bringing this chip of old into a PC/104 form factor. The LT6502 adds in the things you’d expect with a laptop, a 9-inch foldable screen, a 10,000 mAh battery, several external ports for things such as serial console and USB-C charging. A custom keyboard adds in low-profile switches as well as including a HDSP-style 8-character display, a great addition for a modern take on this vintage chip. Onboard there is 46 KB of RAM and with the addition of the CompactFlash for storage the LT6502 runs EhBASIC which we’ve seen before in some other great projects.
The case is mainly 3D-printed safely enclosing the custom PCBs for both the keyboard and motherboard, and providing a satisfying glow with the built-in LEDs within. All of the files are up on the project’s site so be sure to swing by and check out both this and the desktop PC/104 predecessor to it. Great job [TechPaula], looking forward to seeing the future installments on the LT6502 such as implementing the included internal expansion slot.
-
@SnoopJ @whitequark @futuresprog yeah the whole point of v3 is the capability negotiation mechanism, with everything else being optional and up to the client to choose, so you can't really version it
-
SSHStalker: 16 bug per compromettere Linux. Vecchi ma ancora molto letali
📌 Link all'articolo : https://www.redhotcyber.com/post/16-bug-per-compromettere-linux-alcuni-sono-vecchi-ma-molti-ancora-letali/
I #ricercatori di Flare hanno scoperto una nuova botnet #Linux, SSHStalker. Il malware si infiltra nei #dispositivi tramite attacchi brute-force SSH, quindi utilizza #sistemi compromessi per trovare nuovi obiettivi, diffondendosi efficacemente come un #worm.
Gli attacchi della #botnet prendono di mira principalmente l’infrastruttura #Oracle #Cloud. Secondo gli #esperti, l’infezione iniziale avviene tramite #scansione SSH automatizzata e attacchi brute-force.
A cura di Bajram Zeqiri
#redhotcyber #news #cybersecurity #hacking #malware #botnet #linux #sshstalker #oraclecloud #gcc #attacchibruteforce #sicurezzainformatica
