dual_sport_dork 🐧🗡️

“All” of them most certainly do not. You can still go buy a brand new XR650L right now that not only does not have any electronic rider aids whatsoever, it has no electronics other than its spark ignition system. Never mind a TFT dash. It still has a mechanical speedometer, driven by a rotary cable.

Electronic features on bikes are becoming more available, for sure, but if you really want to they’re dead easy to avoid.

Anyway, I was thinking of the safety aspect. If Republicans say the want cheap and less safe vehicles, motorcycles already fit the bill.

Buy motorcycles. Problem solved.

“Calls.”

There’s only one call, and it’s coming from Tim Sweeny at Epic. It’s just more of his usual yelling at clouds, because he’s got a pathological hate-on for anyone else who runs a storefont, including Apple and Google but especially Valve. He hasn’t made any positive contribution to the world since about 1998, and at this point we can all safely discard his opinion with nothing of value being lost. He wants to allow AI slime on his own platform because he thinks it’ll make him free money, but maybe he ought to worry about the smell coming from his own house before he goes around trying to dictate at others how they should run theirs.

In my case the pattern appears to be some manner of DDoS botnet, probably not an AI scraper. The request origins are way too widespread and none of them resolve down to anything that’s obviously datacenters or any sort of commercial enterprise. It seems to be a horde of devices in consumer IP ranges that have probably be compromised by some malware package or another, and whoever is controlling it directed it at our site for some reason. It’s possible that some bad actor is using a similar malware/bot farm arrangement to scrape for AI training, but I’d doubt it. It doesn’t fit the pattern from that sort of thing from what I’ve seen.

Anyway, my script’s been playing automated whack-a-mole with their addresses and steadily filtering them all out, and I geoblocked the countries where the largest numbers of offenders were. (“This is a bad practice!” I hear the hue and cry from specific strains of bearded louts on the Internet. That says maybe, but I don’t ship to Brazil or Singapore or India, so I don’t particularly care. If someone insists on connecting through a VPN from one of those regions for some reason, that’s their own lookout.)

They seem to have more or less run out of compromised devices to throw at our server, so now I only see one such request every few minutes rather than hundreds per second. I shudder to think how long my firewall’s block list is by now.

I have and there’s nothing noteworthy, other than tons of other retailers selling the same thing of course.

It doesn’t quite work that way, since the URL is also the model number/SKU which comes from the manufacturer. I suppose I could write an alias for just that product but it would become rather confusing.

What I did experiment with was temporarily deleting the product altogether for a day or two. (We barely ever sell it. Maybe 1 or 2 units of it a year. This is no great loss in the name of science.) This causes our page to return a 404 when you try to request it. The bots blithely ignored this, and continued attempting to hammer that nonexistent page all the same. Puzzling.

Maybe, but I also carry literally hundreds of other products from that same brand including several that are basically identical with trivial differences, and they’re only picking on that one particular SKU.

They also need to be able to replenish that stock at current prices. I’ve worked retail many times in my life and arguably kinda-sorta do so now (albeit largely over the Internet) and I’ve never run any store where we did not set our pricing by replacement cost rather than original invoice cost. In my current operation there are some rare exceptions for clearance items and the like, but for the vast majority of products we sell for what it’s going to cost me to get the next one to put back on that shelf, not what it cost me for the one I’m selling you now.

I don’t have any insider insight into other companies’ operations, but I imagine a lot of other retailers work things the same way. Especially these days.

Negative. Our solution is completely home grown. All artisinal-like, from scratch. I can’t imagine I reveal anything anyone would care about much except product specs, and our inventory and pricing really doesn’t change very frequently.

Even so, you think someone bothering to run a botnet to hound our site would distribute page loads across all of our products, right? Not just one. It’s nonsensical.

I run an ecommerce site and lately they’ve latched onto one very specific product with attempts to hammer its page and any of those branching from it for no readily identifiable reason, at the rate of several hundred times every second. I found out pretty quickly, because suddenly our view stats for that page in particular rocketed into the millions.

I had to insert a little script to IP ban these fuckers, which kicks in if I see a malformed user agent string or if you try to hit this page specifically more than 100 times. Through this I discovered that the requests are coming from hundreds of thousands of individual random IP addresses, many of which are located in Singapore, Brazil, and India, and mostly resolve down into those owned by local ISPs and cell phone carriers.

Of course they ignore your robots.txt as well. This smells like some kind of botnet thing to me.

I’ve got a Timex Expedition that I’ve had since high school. That means I bought it some time during the early Triassic. Its stainless steel backplate is held on with four Phillips screws and I have never in many decades had any problems undoing them when I need to replace the battery every six years or so. It remains resolutely waterproof. I know this because it lives outside rather frequently: at the moment I have it stuck to the gauge cluster on one of my motorcycles with Velcro.

Via.

I’ve noticed the drive-by accounts that immediately delete themselves afterwards lately. I was wondering what was up with that.

Lord Vetinari, the supreme ruler of Ankh-Morpork, rather liked music.

People wondered what sort of music would appeal to such a man. Highly formalized chamber music, possibly, or thunder-and-lightning opera scores.

In fact the kind of music he really liked was the kind that never got played. It ruined music, in his opinion, to torment it by involving it on dried skins, bits of dead cat, and lumps of metal hammered into wires and tubes. It ought to stay written down, on the page, in rows of little dots and crotchets all neatly caught between lines. Only there was it pure. It was when people started doing things with it that the rot set in. Much better to sit quietly in a room and read the sheets, with nothing between yourself and the mind of the composer but a scribble of ink. Having it played by sweaty fat men and people with hair in their ears and spit dribbling out of the end of their oboe… well, the idea made him shudder. Although not much, because he never did anything to extremes.