**the most validated enby** @t54r4n1@mspsocial.net · Feb 24, 2023, 15:26

**the most validated enby** @t54r4n1@mspsocial.net · Feb 24, 2023, 15:26

the most validated enby @t54r4n1@mspsocial.net

Feb 24, 2023, 15:26

the most validated enby @t54r4n1@mspsocial.net

I regret to inform you, wider fediverse, that authorized fetch has defeated every scraper we've seen to date.

**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · 2023-02-24T15:29:13Z

‍fuchsiaaaaaaaaaaaaaaaaa @f0x@pixie.town

@t54r4n1 it really hasn't? there's been recent developments in scrapers using client api's on other servers, making them impossible to block without blockimg that entire server. Also Mastodon 4.x exposes a lot of the client api usable for scraping by default now, even with authorized fetch

Feb 24, 2023, 15:29 · · · ·

**the most validated enby** @t54r4n1@mspsocial.net · Feb 24, 2023, 15:31

**the most validated enby** @t54r4n1@mspsocial.net · Feb 24, 2023, 15:31

Feb 24, 2023, 15:31

the most validated enby @t54r4n1@mspsocial.net

@f0x oh, also blocking servers with bad actors. but like, that is standard,
but I hear you.

**Vyr Cossont 🏳️‍🌈🏳️‍⚧️** @vyr@demon.social · Feb 24, 2023, 16:49

**Vyr Cossont 🏳️‍🌈🏳️‍⚧️** @vyr@demon.social · Feb 24, 2023, 16:49

Feb 24, 2023, 16:49

Vyr Cossont 🏳️‍🌈🏳️‍⚧️ @vyr@demon.social

@f0x @t54r4n1 there's a second flag that disables most of the public 4.0 client API at the cost of breaking your logged-out web frontend with no end-user-facing explanation.

but the federated timeline streaming APIs that scrapers are targeting now long predates 4.0, is public by default, and the bigger servers are never going to turn it off because they like their little public tickers for showing off all the instances they're connected to.

private Fedi for grownups when 😩

Resources

Developers

What is Mastodon?

pixie.town

More…