**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · Jun 21, 2023, 18:47

**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · Jun 21, 2023, 18:47

‍fuchsiaaaaaaaaaaaaaaaaa @f0x@pixie.town

Jun 21, 2023, 18:47

‍fuchsiaaaaaaaaaaaaaaaaa @f0x@pixie.town

Blocklist scraping by fash

So this has been an ongoing issue, would love it if people found the earlier threads about it for more context cause I don't have the spoons right now

Originally written by "mint", hosted on the kiwifarms git is a tool that continuously scrapes publicized instance blocklists to allow searching who has you blocked (resulting in emails like uwu we did nothing wrong how dare you block our instance)

Through correlation, turns out the main IP being used by fba.ryona.agency is `54.37.233.246`. Blocking that at the firewall level prevents them from getting any new data.

Other instances exist too though, being hosted on
`23.24.204.110`, `45.86.70.49`, `88.65.6.124`, `187.190.192.31`

the drow.be / bka.li / teleyal.blog / mooneyed.de "kromonos" user has their own version, that feeds an API that gives your instance a highscore for blocking their shit, scrapes from `185.244.192.119`, with user agents presenting as random instances

These, and other scrapish ip's are also listed in https://git.pixie.town/f0x/nixos/src/branch/main/nodes/aura/configuration.nix#L103

#FediBlock #MastoAdmin

**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · Jun 22, 2023, 22:22

**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · Jun 22, 2023, 22:22

Jun 22, 2023, 22:22

‍fuchsiaaaaaaaaaaaaaaaaa @f0x@pixie.town

toot/blocklist scraping info request

can other server admins grep their logs for `159.196.229.70`, they seem to be doing mass scraping of public timelines, toots and blocklists.
from an Australian residential ip?

#MastoAdmin

**‍fuchsiaaaaaaaaaaaaaaaaa** @f0x@pixie.town · 2023-06-22T22:24:00Z

‍fuchsiaaaaaaaaaaaaaaaaa @f0x@pixie.town

re: toot/blocklist scraping info request

also `2a01:4f8:162:6027::2`, with user-agents "Ruby, mastodon 0.1.1" or "mastodon_stream v0.1"

Jun 22, 2023, 22:24 · · · ·

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jun 22, 2023, 23:35

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jun 22, 2023, 23:35

Jun 22, 2023, 23:35

Alexander Bochmann @galaxis@mastodon.infra.de

re: :boosts_ok_gay: toot/blocklist scraping info request

@f0x I see both here - not a lot of requests per day, but I'm a single-user instance and I haven't checked if they just scrape any of my posts.

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jun 22, 2023, 23:36

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jun 22, 2023, 23:36

Jun 22, 2023, 23:36

Alexander Bochmann @galaxis@mastodon.infra.de

re: :boosts_ok_gay: toot/blocklist scraping info request

@f0x Wasn't there someone out there actively mapping scrapers? Unfortunately I don't remember who that was and finding things in Mastodon ... oh well.

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jul 02, 2023, 15:15

**Alexander Bochmann** @galaxis@mastodon.infra.de · Jul 02, 2023, 15:15

Jul 02, 2023, 15:15

Alexander Bochmann @galaxis@mastodon.infra.de

re: :boosts_ok_gay: toot/blocklist scraping info request

@f0x It's been a couple of days since that reply, but I just now remembered that ScraperSnitch was what I was thinking of: https://www.bentasker.co.uk/posts/blog/security/autodetecting-and-outing-mastodon-scrapers-with-scrapersnitchbot.html

(Note that @scrapersnitch posts as followers-only, so there's nothing to be seen on the public profile.)

Resources

Developers

What is Mastodon?

pixie.town

More…