I also mentioned that PerlMonks could do with a quality-of-service monitor, as simple as recording access time of some few random nodes every few minutes. In order to assess various solutions, the problem must be quantified. This is paramount and, talking from the comfort of my keyboard, sounds easy. I think some fellow Monks here were already keeping such a record. Well, let's install this internally ASAP.

That was already done quite some time ago. The on-site record is here.

> The on-site record is here.

FWIW: This page has an orphaned <td align= breaking the overall table design (the nodelets jump to the bottom) and I don't know how to patch it.

update

OK seems to be a side product from chatterbot which has an overflow problem:

            <tr>
                <td>2026-01-16 17:00:00</td>
                <td align="right">319</td>
                <td align="right">0.527</td>
                <td align="right">0.683</td>
   
### CUT OFF HERE

<!-- END general container -->
[download]

Cheers Rolf
_{(addicted to the Perl Programming Language :)
see Wikisyntax for the Monastery}

Damn it all to heck. I thought i fixed that bug. Twice.

OK, i'll look into it on the weekend.

PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP
Also check out my sisters artwork and my weekly webcomics

oh thanks, that's news to me. It has good hours and bad hours.

I know I said recently, several times, that PerlMonks was easily accessible after several attempts to fix it, and many honest thank yous to Corion and everyone involved. But it seems to me that as it is now, it has degraded since then. OTOH it is much much better than when the problem peaked (and my current post had no timeout unlike other recent posts). But still it times-out quite often. Perhaps it is what I said before that if indeed the problem is caused by (decentralised) bots then they will take all available space if it is given to them by these improvements. So perhaps this is what we see, bots upping up the tempo because they found extra harvesting-bandwidth which PerlMonks itself has given them.

I understand that Perlmonk's version of the Everything Engine is a big hurdle in changing the Perlmonks code, and that it is hard to harden it against DDoS. I've accidentally hidden a - hopefully simple - proposal to keep the unwanted, misbehaving bots away from the EE in Re^2: Taking advantage of E2 improvements.

It boils down to avoiding passing bot requests to the EE by becoming even more unfriendly to anonymous users than Perlmonks is now.

• Prevent all anonymous access to the Perlmonks code running on the EE, except for well-known, well-behaved bots (e.g. Google), right in the webserver, before any Perl code is executed. Require in the webserver that the request contains a valid login/session cookie, or comes from well-known IP addresses of well-behaved bots. In any other case, redirect to a static HTML document with a login form. Yes, this effectively locks out anonymous users. Put a hint on the login page to either create an account or use Google's cache.
• Add a new CGI/FastCGI/modperl/anything-non-EE program that can check username and password from the static login form against the database used by the EE. Have that program set the login/session cookie, compatible with EE, and redirect to the Monasty Gates on success. On error, redirect back to the static login page.
• Add a second static HTML document with a new user form, querying just username, password and email address.
• Add a second CGI/FastCGI/modperl/anything-non-EE program that can inject a new user into the EE database, set the login/session cookie, compatible with EE, and redirect to the Monasty Gates on success. On error, redirect back to the static create user page.
• Both programs may need some bot lock-out mechanism. Captcha, some client-side Javascript, IP-based rate limiting, whatever helps. And because this is outside the EE, changing the bot lock-out should be way easier than within the EE.

Again, I'm aware that this is not friendly to anonymous users. But if Perlmonks keeps being DDoS-ed by bots, it won't matter, because nobody will be here any more.

Alexander

Again, I'm aware that this is not friendly to anonymous users. But if Perlmonks keeps being DDoS-ed by bots, it won't matter, because nobody will be here any more.

I agree with afoken. No one will come to this site when they have to wait minutes (sometimes many minutes) between requests.

"It's not how hard you work, it's how much you get done."

> Prevent all anonymous access to the Perlmonks code running on the EE

I think that summarizes what I suggested here Re^8: Perlmonks site has become far too slow (Reverse Proxies).

Using nginx reverse proxies with rules to only pass thru logged in users (or yet uncached requests) and alternatively serving static content to anonymous clients (or blocking them if needed).

The EE can flag updated content such that nginx would update it's cache automatically.¹

Looks like an out-of-the box solution for me which can easily scale.

Nginx would grow it's cache gradually and carry the bot load while keeping the logged in users operational.

Cheers Rolf
_{(addicted to the Perl Programming Language :)
see Wikisyntax for the Monastery}

¹) That's the only change we would need at the backend which can be implemented and improved gradually.

> It boils down to avoiding passing bot requests to the EE by becoming even more unfriendly to anonymous users than Perlmonks is now.

No need to ruin the perlmonks to save perlmonks! Anubis saved nitter and it can save perlmonks too! C'mon guys it's not that hard...