Recently I have had to live in a building with severe noise issues, and running appropriately EQed white noise on my speaker helped mask it and maintain at least some sanity and sleep. The mynoise app might not be the fanciest but it does exactly what it says without fail or frills, and works across devices. I don’t think I knew who made it when I bought it, but this story put a face on the app.
When someone attacks you, it is additionally traumatic in that it undermines your trust in people. In this way, it can breed trauma if it makes you become more defensive/distrustful and/or offensive/trust-violating to others. This is not an excuse to the attacker, but if I were asked how we can end this vicious circle I would probably say it’s about long-term mental health (across generations).
I had long-term noise issues with the tenant directly above me. Periodically complaining to the office got sympathy but little else.
Then I created a iOs shortcut that sent a templated email to my landlord each time I told Siri "Loud neighbors." I was surprised at the effectiveness of 3 - 4 emails a week. I suspect it is one thing to shoosh someone while ushering them out of your office. It's another to have to respond to an email every other day.
Of course, your situation may not be a amenable to this strategy. Either way, I feel you brother/sister, and I wish you peace and quiet.
I don't know if this is right time to share, but as someone who also had many noisy neighbours over the years, this made me laugh (if you haven't seen it): https://youtu.be/4IRB0sxw-YU
I lived in a situation with a noisy tenant previously. It was loud bang noises of something falling in the middle of the night, with very thin floors. In my infinite wisdom I decided to move instead of sorting it out, and traded that at least potentially negotiable situation for an inflexible yearly tenancy contract on an apartment that cost 3x more to rent with what turned to be a noisy lift that building management could not care less about despite complaints. (Silver lining, at least noise EQs more easily to cover the constant rumble.)
hackers effectively killed https://glslsandbox.com It's been closed for about a year and a half because some hackers spammed it and no one has time to deal with it. There are other sites like shadertoy that do something similar but still, it sucks to see someone's project get shit on by assholes.
As for denial of service issues, because it's free I've mostly hidden behind cloudflare in the hope of not having to personally deal with those kinds of issues on my own stuff.
It's always annoying to me the hacker attitude of "it's your fault if I can break your stuff. You should have implemented it better". Well, I can break your windows, your door, your body and it wouldn't be an excuse that it's your fault because it's possible. Still, I know it's impossible to get rid of the assholes so ...
I’m a big guy, 6’3’’ 260, multiple Ironman, sport, climbing, lifting and hunting brush with a bit of combat training over the years. Most people in my life I imagine I could kill with my bare hands. But I don’t, because like you said that isn’t how life works.
Yet people apply it to anything they want recklessly. Cars, phones, or like above peoples projects. I wonder how they would feel if I beat the shit out of them and laughed, telling them their mom should have fucked someone bigger.
I'm about your size, and have actually done what you describe (not by my own choice). The process takes much longer than one might suppose, however incredibly difficult to imagine.
We are nothing more than temporary meatbags, fragilely broken. Take care of yourself, each other.
Nobody needs to rely on Cloudflare when they can use server-side solutions like Fail2ban (already mentioned). Other tools like iptables exist for more granular control over incoming traffic. There is no one-size-fits-all solution, so just pick the tool(s) that work for your situation. If your situation is so unique that no existing tool will work, you likely have the resources to write your own.
It costs a lot of time and energy, especially for a music artist, for a website that has no private data and that is not sensitive. Cloudflare has specialized people who watch 24/7 and they provide free bandwidth, all of that for 0 USD
I'm not arguing against using Cloudflare. I was responding to the assertion that we "need to collectively rely on Cloudflare" by pointing out that other options exist.
He mentions in an earlier blog post [0] that the audio files are behind Cloudflare already so if Cloudflare did its job so I think the actual bandwidth impact on the origin server should have been pretty limited. Hopefully he'd turned on the option to ignore the query string to avoid the cache being bypassed.
I run a similar audio-heavy site [1] that's reached the front page of HN, also behind Cloudflare - the traffic spiking to terabytes a day is a bit of a shock at first but if everything's configured properly CF works well
Maybe I’m just a curmudgeonly old fart but I’m so tired of everyone pretending like the entire internet being MiTM’d by Cloudflare is somehow a good thing.
FWIF if you are looking for a decent alternative take a look at ModSecurity project by OWASP.
It’s a good cost vs reward ratio in that specific case. Very little risk if NSA knows your MyNoise history. And for emails and very confidential content they have partnerships with Apple, Google, Meta, etc
Pentester/bug bounty hunter here. I appreciate that this is frustrating for the owner to experience, but this reads like normal internet noise to me, or at worst someone fired up burp suite and hit go on a website. Many, many commercial tools run these sorts of attacks en masse by default, some SaaS companies even do it as a product. The entire internet is being scanned constantly and many of those scanners have automated collections of attacks run against websites when discovered. I’m not say it’s right, but it is the reality we live in. I wouldn’t be taking it personally.
I read it as the opposite, trying to help them process it as not something deeply malicious targeting them. I'm thankful of the times I took something deeply, then realized it was something else and had a change of heart. This is ultimately what trauma and processing is about: something blindsided you and your initial response is a large field of shock and avoidance, then slowly you process it until you have a practical approach to deal with the thing next time, so it doesn't blindside you again.
I've loved this site since I first learned about it. In today's increasingly densified office spaces (in my area at least), this has been an even bigger help to me.
The latest app redesign has been fantastic.
It's worth a small donation just to get access to the huge library he built.
Note that the vast majority of his content is stuff he, personally, recorded on site, mixed, and sliced into equalizer bands. That includes an Irish coastline, an underground waterway, and several forests.
The unfair match between good and bad has most likely been a conundrum for thousands of years. Multiple solutions has been proposed as to how to deal with the bad ones, including; kill them, forgive them, educate and reform them - but nothing really seems to work.
One solution might be to gather them all up and send them to another planet were they can live as they please without bothering the good ones - and some might suggest that this is exactly what they did and here we are :)
I think I saw an article recently where someone used the http protocol to serve gzipped content that was specially crafted to explode in size on the receiver side. This could be a good preventative to crawlers as they don't typically have that much space dedicated to each instance.
It’s worth noting that the “zip bomb” was at a resource location specified in the Disallow section of robots.txt, meaning the server specifically told the bot not to go there and it did anyway.
(Not that the parent commenter seems confused, just that it hadn’t been noted.)
> One solution might be to gather them all up and send them to another planet were they can live as they please without bothering the good ones - and some might suggest that this is exactly what they did and here we are :)
I'm a lifetime member and have enjoyed mynoise.net for many years. It's the best thing I've found for focus and distraction blocking. I have brain.fm, and YouTube music, but I keep coming back to his site because it's just better, more intentional, and more effective for me.
Feel for the guy. I had a couple of long owned domains stolen recently. They were so low value to anyone but me though, it makes me wonder why someone would bother.
Newly registered domains don't get the same recognition in search engines as older ones. That's why there's a market for stolen domains, the same is true for social media accounts
Well it was partly my fault for letting a seperate domain expire: someone grabbed it up and started an email with my old address. That old email was the contact for the stolen domain-they seem to have used it to have the password reset, locking me out. I still have the phone I used for 2FA and Godaddy is supposedly investigating, but it's been months and I've pretty much given up hope. They email every 3 days to tell me they haven't got a chance to look into it yet...
The MyNoise app has tangibly improved my life. I use a white noise machine at home, but when I travel, MyNoise is my sleep companion and I particularly appreciate that I can set the EQ to block the particular noises that are likely to wake me.
Agree completely and have been doing the same for years.
And what I find especially nice, when I'm on a spotty connection, is that once you load up your preferred noise it runs locally in your browser, so when your connection craps out it keeps playing seamlessly.
I have found that there are people who just want to watch the world burn. There are many reasons, but, at its most basic, hurt people hurt people.
That's something I like to keep in mind, when I'm reacting to someone being ... less than friendly ... By reacting badly, I then make it all right for them to justify doing it again, to someone else. I've found that I can defend myself, without becoming a foaming-at-the-mouth maniac. We can enforce our boundaries with water pistols, most of the time. We don't need nukes.
Everything is connected. This chap may be naive, but he's actually trying to set good connections in motion. I applaud that.
> I have found that there are people who just want to watch the world burn. There are many reasons, but, at its most basic, hurt people hurt people.
I'm not sure that it's even malicious. I think many hackers look at a website or a service as a game to play. They aren't thinking so far as the person that this action affects, just as far as "I wonder if I could get all the data off that site?" or something similar. And on top of that, some view the rate-limiting as a challenge.
I think it's the same thing that drives the excessive snark or cruelty in comments. They don't think of the person on the other end as a person, they think of them as an endpoint.
I feel like a lot of people desperately want to make some kind of impact on the world. Something that causes some number of people to acknowledge their existence (or the effects of it).
It takes real effort to do that in a positive way with a society built around surfacing negativity.
I dunno, that reads a little too simple to me. People aren't magical black boxes of mysterious drives and unfathomable causes, they're components of a larger system and reflections of their environment.
Speaking as a reformed 'teen who wanted to watch the world burn', for some it isn't simple omnidirectional malice, but rather a deep and confusing sense that the world is out to get you (spoiler; in some ways it absolutely is) and an instinct to throw a haymaker just so you feel you didn't go down without a fight.
Once this kind of person begins investigating the causes of their discontent - I myself have come to the conclusion that outdated institutions and capitalism are prime suspects - you can do quite a bit more to focus down that energy on the deserving. If you're young and/or dumb enough to not know the difference between the mynoise guy and 'the system' it's almost a forgivable mistake.
That said, from a practical standpoint, yes. Some people just kinda suck real bad. The why isn't always going to get you closer to a cure.
“One wants to be loved, in lack thereof admired, in lack thereof feared, in lack thereof loathed and despised. One wants to instill some sort of emotion in people. The soul trembles before emptiness and desires contact at any price.”
It’s not targeted. Having maintained a site, my experience is the internet is a wasteland of AI crawlers, script kiddies trying to turn every form into an amplification vector, or vulnerability probers.
Right? I got his email too and man, I love what he does, I'm glad he's recovering from his illness etc. I've donated many times. But it's insane for him to think this was targeted. This was some bot/AI gone rogue. Or similar.
If someone wants to take you DOWN they will. And not by downloading a bunch of a files a heap.
It's just possible that someone at some big AI company just pressed a button to add this to their collection of training material. And lazily or otherwise just hit the checkboxes for 'repeat' and 'forever'.
Without knowing more about it, this coulda also just be one of the uncountable amounts of automated scanners that are iterating the whole internet constantly trying to find wp-admin etc. type vulnerabilities.
If all my years on the internet have taught me anything, it's that some people are just severely mentally unwell and will attempt to destroy anything they can get their hands on, purely because they can. Sometimes it's for attention, sometimes they just want to watch the world burn, but either way, asking "what did their target do to deserve it?" is pointless because the attacker likely never asked themselves that question either, and could very well just be a straight up sociopath.
As the internet grows, so grows the number of such people on it. In days gone, these people would've been rightly shunned from society, and their ability to cause harm to others was severely limited, unless they were willing to resort to more... extreme methods that would usually come with serious consequences. But the internet has given them a new outlet, a new way to ruin things for people from across the world that would've been far, far beyond their reach before, usually without any risk of punishment.
But naive in a way that most people (?) would like the world to be.
But ultimately, unfortunately, unrealistic.
Building has always been the kind of difficult that, had you known at the beginning then maybe you wouldn't have started. And still quickly and easily destroyed.
Keep creating and building, otherwise there's nothing else to do. Love the obstacles for challenge of defeating them, don't hate them for their existence. To build X you often have to build A, B, and C (and sometimes all the rest of the alphabet) just to have the right setup to maximise the success of X. It can grind, but focus on the benefits of X.
Which sounds like the position they've taken, thankfully.
(Where X represents "anything" and is specifically not the <whatever it's classified as> platform formally known as Twitter).
The melancholy will return, just ride it out each time. It gets easier, gradually.
I love the guy, I love mynoise, but he needs to chill out. Nobody "did this to him". This is almost certainly, like 99.99% certainly, just normal internet noise and he's just never noticed before. All sites get this sort of thing.
That doesn't make it ok or less impactful. He's been running MyNoise for years and it sounds like if he had been attacked before, this one was much worse, prompting a blog post about it.
I really like this perspective, it's right along there with what the Stoics would do:
"The wise act with a reverse clause--meaning that they not only consider what might go wrong, but they are prepared for that to be exactly what they want to happen--it is an opportunity for excellence and virtue.
Regardless of the moral and ethical implications brought up in response to the individual in TFA, you’re spot on. One of my favorite reasons for creating is that it’s me against myself vs reality. Theres not an endeavor I find myself in that this is not true… of course I have the privilege of having accomplished all of my life goals from childhood at an early age, which only led to depression. So I set loftier goals only to complete them. It was only the third time around and confronting failure did it finally click that it wasn’t about accomplishing things and it was all about the journey. I was a latch key kid, so basic stuff like this and everything else that people from well adjusted families that are not poor af I’ve had to learn the hardest way possible. Which I guess in a way is a super power because now whatever I want to do I know what the learning curve looks and feels like and I know that failing a lot is the only way to crawl out of the trough of disillusionment.
You probably need to calm down a bit. Everyone who has any kind of service on the open internet sees this stuff in their logs all the time. Most of it is entirely automated. That's just how the internet works.
It being common doesn't make it OK, but it does make it not a personal attack.
Exploit scanners are common, they are not someone attacking you personally.
I'd be surprised if the mass download and the exploit scanner were even related. Much more likely they weren't and somebody just messed up some bot they were building and fetched everything in a loop.
It's annoying, yes, but it's not personal. Nobody is attacking him personally. Feeding into that understanding of the situation isn't helpful, just like you shouldn't encourage people who believe they are the victims of gang stalking because they've seen 5 red cars this morning.
Their website has been around for along time though, so they're probably very used to those automated requests. Even all the scrapers nowadays won't take up too much bandwidth so it's probably something dedicated.
I, too, just keep going back to mynoise.net for ambient sounds. It just looks "right" for the task, and is clearly designed to get out of your way and let you choose the kind of sounds that you want. Amazing site, I highly recommend it.
The attacks are painful, I hope the creator can attract some competent help from here or elsewhere to mitigate this problem.
Poor guy probably got crawled by LLM bots. The "attacker" probably doesn’t know who this person is. Just a faceless corporation using his sound or white noise content to train and feed llm.
I get similar "attacks" on daily basis, but find out it’s just a bot crawling the certificate transparency logs. Inspecting site certificates, and it’s issued by Let’s Encrypt CAs. Script kiddies, at best, trying to pick off the low hanging fruit.
Hope he doesn’t take these "attacks" too personally going forward. Seems like a good guy overall, maybe too good for this world.
It does suck. Because it’s a reminder that they’re are jerks out there and hard to avoid. Especially on the web. It also must sting because he’s trying to be a good citizen.
We see this in abusive behavior towards open source maintainers. It saps their will. And 100 thanks < 1 savage attack.
About a year ago the site I worked on had a hacking attempt. I’m not sure why, it was a site that provided online genetic tools for researchers. We had no financials, or even logins. I felt bad in a similar way as when someone broke into my car years ago, or when I had a package go missing.
Just as a note to 100 thanks < 1 savage attack. I run several open source sites that collectively get 240k unique vistors per day. They've been running for > 10 years. I get less than 2 thanks a year. I'm not saying I deserve any or that I want them. Only providing data.
I also have 100+ open source projects on github. A few with ~1000 stars. Same thing, few if any thanks.
I wish there was some way to make it easier to thank. I'm just as guilty of not thanking all the open source projects I use except for the few I donate to.
It would still suck to get attacked but it would be motivating to get thanked as well.
sorry to hear that and i can absolutely relate to this feeling of losing something, of perhaps even being dragged into a game you never wanted to even play, where no one wins and everyone loses something.
the one silver lining is that it seems to have strengthened your resolve, to keep planting and keep building instead of just letting chaos and destruction stop you in your tracks. so in that way maybe you haven’t lost after all and maybe this isn’t even a bad thing, it helped clarify the things you find important in life and even inspire others (me included). thank you!
A few years back someone set fire to our land and our home just to see what it would look like on fire.
Vast destruction, hundreds of hectares reduced to ash, wildlife displaced, us displaced, thousands of man-hours of firefighter time used, millions of euro of aviation costs for firefighting aircraft, years of rebuilding now behind us, years of restoring the land ahead of us.
The individuals concerned faced no consequences, as extradition was refused, and our insurer refused coverage as they don’t cover arson.
This is just the way things are. Some people just want to watch the world burn, and there’s nothing you can do about it.
I hope Stéphane doesn't let this sort of thing get to him too much - focus on the happy users of the site, learn to combat this sort of attack, and move on. Don't give these assholes any sort of attention.
Universal connectivity was the internet’s biggest promise and it turned out to be its biggest flaw. It turns out if you allow literally anyone on this planet to walk up to your front door, you will end up with the world’s criminals, psychopaths, you know, the ones in a more civilized time would be driven out of town by townsfolk wielding pitchforks, all hanging out on your porch figuring out how to pick your lock, or just to spray paint your house for the lulz and cred.
Look around and you will see every piece of cybersecurity knowledge assumes your porch will be inhabited by bad actors and there is nothing to stop them, so you absolutely need to harden your server as if you are a bank. Have you ever lived somewhere you genuinely don’t need to lock your front door to feel safe? I have, it was amazing, and it depresses me to no end to see the polar opposite to be what is expected on the internet. We were promised a world of peace and unity and total freedom of information but instead we got the tyranny of the petty cyberdelinquent, with no way to enforce prosocial values as we ought to do in a sane society. “On the internet no one knows you are a dog” was a warning, but we would be in a much better world if it’s only dogs we have to share an internet with. When humans get low they can get way lower than the worst dogs ever born.
We are already seeing a Brazilification of the internet. Crime is rampant, so you live in a gated community with private security if you can afford it. On the internet the name of this private security operation is Cloudflare. I hate one private company becoming the de facto gatekeeper of the internet but I cannot blame any individual website (including the one in the article) for using Cloudflare. It’s the thin orange line between a somewhat usable service and getting knocked off the internet by smart fridges every other day because some kid somewhere on the planet got bored.
I heard of this on other websites. AI chatbots are web scraping data off websites, and you have to use fail2ban to block them. People are learning how to teach AI Chatbots to hack websites as well. My website http://blastar.in/ was affected, and I don't host it; a friend runs it for me, but he doesn't respond to email.
When someone attacks you, it is additionally traumatic in that it undermines your trust in people. In this way, it can breed trauma if it makes you become more defensive/distrustful and/or offensive/trust-violating to others. This is not an excuse to the attacker, but if I were asked how we can end this vicious circle I would probably say it’s about long-term mental health (across generations).
Then I created a iOs shortcut that sent a templated email to my landlord each time I told Siri "Loud neighbors." I was surprised at the effectiveness of 3 - 4 emails a week. I suspect it is one thing to shoosh someone while ushering them out of your office. It's another to have to respond to an email every other day.
Of course, your situation may not be a amenable to this strategy. Either way, I feel you brother/sister, and I wish you peace and quiet.
I also wish you all peace and quiet.
I lived in a situation with a noisy tenant previously. It was loud bang noises of something falling in the middle of the night, with very thin floors. In my infinite wisdom I decided to move instead of sorting it out, and traded that at least potentially negotiable situation for an inflexible yearly tenancy contract on an apartment that cost 3x more to rent with what turned to be a noisy lift that building management could not care less about despite complaints. (Silver lining, at least noise EQs more easily to cover the constant rumble.)
As for denial of service issues, because it's free I've mostly hidden behind cloudflare in the hope of not having to personally deal with those kinds of issues on my own stuff.
It's always annoying to me the hacker attitude of "it's your fault if I can break your stuff. You should have implemented it better". Well, I can break your windows, your door, your body and it wouldn't be an excuse that it's your fault because it's possible. Still, I know it's impossible to get rid of the assholes so ...
I’m a big guy, 6’3’’ 260, multiple Ironman, sport, climbing, lifting and hunting brush with a bit of combat training over the years. Most people in my life I imagine I could kill with my bare hands. But I don’t, because like you said that isn’t how life works.
Yet people apply it to anything they want recklessly. Cars, phones, or like above peoples projects. I wonder how they would feel if I beat the shit out of them and laughed, telling them their mom should have fucked someone bigger.
Anyway, I agree it sucks.
We are nothing more than temporary meatbags, fragilely broken. Take care of yourself, each other.
¢¢
2. Some kind of rate limiter is becoming essential for servers. Scanning/probing is worse than rude but there's plenty of obnoxious out there.
Fail2ban can easily be configured to handle simple login or vulnerability scans.
If there's not something similar for web servers, it wouldn't be hard to write one. Anyone know of fail2ban or rate-limiters for webservers?
I run a similar audio-heavy site [1] that's reached the front page of HN, also behind Cloudflare - the traffic spiking to terabytes a day is a bit of a shock at first but if everything's configured properly CF works well
[0] https://mynoise.net/blog.php#landed
[1] https://ambiph.one
> myNoise is now running on a Virtual Private Server (VPS) hosted at One, with audio assets served via a CDN through Cloudflare ...
FWIF if you are looking for a decent alternative take a look at ModSecurity project by OWASP.
Also, sharks weren't made by ethically-questionable hackers.
I don't see why you need to dismiss this person's legitimate trauma, seems awfully boorish of you to do so.
You don't know that.
The latest app redesign has been fantastic.
It's worth a small donation just to get access to the huge library he built.
Note that the vast majority of his content is stuff he, personally, recorded on site, mixed, and sliced into equalizer bands. That includes an Irish coastline, an underground waterway, and several forests.
One solution might be to gather them all up and send them to another planet were they can live as they please without bothering the good ones - and some might suggest that this is exactly what they did and here we are :)
Has been tried before, they started with telephone sanitizers, hairdressers, and advertising account executives
It’s worth noting that the “zip bomb” was at a resource location specified in the Disallow section of robots.txt, meaning the server specifically told the bot not to go there and it did anyway.
(Not that the parent commenter seems confused, just that it hadn’t been noted.)
Sounds like we're the bad ones here.
Sorry to hear about the annoying hack…
And what I find especially nice, when I'm on a spotty connection, is that once you load up your preferred noise it runs locally in your browser, so when your connection craps out it keeps playing seamlessly.
That's something I like to keep in mind, when I'm reacting to someone being ... less than friendly ... By reacting badly, I then make it all right for them to justify doing it again, to someone else. I've found that I can defend myself, without becoming a foaming-at-the-mouth maniac. We can enforce our boundaries with water pistols, most of the time. We don't need nukes.
Everything is connected. This chap may be naive, but he's actually trying to set good connections in motion. I applaud that.
I'm not sure that it's even malicious. I think many hackers look at a website or a service as a game to play. They aren't thinking so far as the person that this action affects, just as far as "I wonder if I could get all the data off that site?" or something similar. And on top of that, some view the rate-limiting as a challenge.
I think it's the same thing that drives the excessive snark or cruelty in comments. They don't think of the person on the other end as a person, they think of them as an endpoint.
Hacking, these days, isn’t just for the lulz. Hackers have a purpose, and that’s usually monetary or military (sometimes both).
Hacking crews, these days, run professional organizations that would make a lot of SV C-Suiters green with envy.
It takes real effort to do that in a positive way with a society built around surfacing negativity.
Speaking as a reformed 'teen who wanted to watch the world burn', for some it isn't simple omnidirectional malice, but rather a deep and confusing sense that the world is out to get you (spoiler; in some ways it absolutely is) and an instinct to throw a haymaker just so you feel you didn't go down without a fight.
Once this kind of person begins investigating the causes of their discontent - I myself have come to the conclusion that outdated institutions and capitalism are prime suspects - you can do quite a bit more to focus down that energy on the deserving. If you're young and/or dumb enough to not know the difference between the mynoise guy and 'the system' it's almost a forgivable mistake.
That said, from a practical standpoint, yes. Some people just kinda suck real bad. The why isn't always going to get you closer to a cure.
I’ve always really enjoyed building up, but it’s definitely not the easiest path.
I have managed to make a couple of mid-sized splashes, but many folks have no idea that I was behind them, which is fine with me.
— From Doctor Glas (1905) by Hjalmar Söderberg
If someone wants to take you DOWN they will. And not by downloading a bunch of a files a heap.
As the internet grows, so grows the number of such people on it. In days gone, these people would've been rightly shunned from society, and their ability to cause harm to others was severely limited, unless they were willing to resort to more... extreme methods that would usually come with serious consequences. But the internet has given them a new outlet, a new way to ruin things for people from across the world that would've been far, far beyond their reach before, usually without any risk of punishment.
But naive in a way that most people (?) would like the world to be.
But ultimately, unfortunately, unrealistic.
Building has always been the kind of difficult that, had you known at the beginning then maybe you wouldn't have started. And still quickly and easily destroyed.
Keep creating and building, otherwise there's nothing else to do. Love the obstacles for challenge of defeating them, don't hate them for their existence. To build X you often have to build A, B, and C (and sometimes all the rest of the alphabet) just to have the right setup to maximise the success of X. It can grind, but focus on the benefits of X.
Which sounds like the position they've taken, thankfully.
(Where X represents "anything" and is specifically not the <whatever it's classified as> platform formally known as Twitter).
The melancholy will return, just ride it out each time. It gets easier, gradually.
it’s unbelievable to me that anyone would do this to him.
are you familiar with what he’s done? the amount of work he’s put into helping people?
you should dig a little bit more into the story before badmouthing someone.
There are people in the world who are profoundly nihilistic [0]. They will do mean shit for no reasons, and move on without caring.
This has always been true throughout human history.
"Father, forgive them, for they know not what they do"
0: often without actually knowing what that word means
"The wise act with a reverse clause--meaning that they not only consider what might go wrong, but they are prepared for that to be exactly what they want to happen--it is an opportunity for excellence and virtue.
Want to know why? Because major websites have to do is no matter what so figure minor websites getting screwed doesn't matter.
Casual racism and bigotry are common, "You probably need to calm down a bit" is dismissive and condescending.
Exploit scanners are common, they are not someone attacking you personally.
I'd be surprised if the mass download and the exploit scanner were even related. Much more likely they weren't and somebody just messed up some bot they were building and fetched everything in a loop.
It's annoying, yes, but it's not personal. Nobody is attacking him personally. Feeding into that understanding of the situation isn't helpful, just like you shouldn't encourage people who believe they are the victims of gang stalking because they've seen 5 red cars this morning.
Seems to me, a vandal has learned how their less than worthy craft is done virtually.
The attacks are painful, I hope the creator can attract some competent help from here or elsewhere to mitigate this problem.
I get similar "attacks" on daily basis, but find out it’s just a bot crawling the certificate transparency logs. Inspecting site certificates, and it’s issued by Let’s Encrypt CAs. Script kiddies, at best, trying to pick off the low hanging fruit.
Hope he doesn’t take these "attacks" too personally going forward. Seems like a good guy overall, maybe too good for this world.
We see this in abusive behavior towards open source maintainers. It saps their will. And 100 thanks < 1 savage attack.
About a year ago the site I worked on had a hacking attempt. I’m not sure why, it was a site that provided online genetic tools for researchers. We had no financials, or even logins. I felt bad in a similar way as when someone broke into my car years ago, or when I had a package go missing.
Move forward/ move on is how I handled it.
I also have 100+ open source projects on github. A few with ~1000 stars. Same thing, few if any thanks.
I wish there was some way to make it easier to thank. I'm just as guilty of not thanking all the open source projects I use except for the few I donate to.
It would still suck to get attacked but it would be motivating to get thanked as well.
the one silver lining is that it seems to have strengthened your resolve, to keep planting and keep building instead of just letting chaos and destruction stop you in your tracks. so in that way maybe you haven’t lost after all and maybe this isn’t even a bad thing, it helped clarify the things you find important in life and even inspire others (me included). thank you!
mynoise is one of the best things on the net.
A few years back someone set fire to our land and our home just to see what it would look like on fire.
Vast destruction, hundreds of hectares reduced to ash, wildlife displaced, us displaced, thousands of man-hours of firefighter time used, millions of euro of aviation costs for firefighting aircraft, years of rebuilding now behind us, years of restoring the land ahead of us.
The individuals concerned faced no consequences, as extradition was refused, and our insurer refused coverage as they don’t cover arson.
This is just the way things are. Some people just want to watch the world burn, and there’s nothing you can do about it.
Look around and you will see every piece of cybersecurity knowledge assumes your porch will be inhabited by bad actors and there is nothing to stop them, so you absolutely need to harden your server as if you are a bank. Have you ever lived somewhere you genuinely don’t need to lock your front door to feel safe? I have, it was amazing, and it depresses me to no end to see the polar opposite to be what is expected on the internet. We were promised a world of peace and unity and total freedom of information but instead we got the tyranny of the petty cyberdelinquent, with no way to enforce prosocial values as we ought to do in a sane society. “On the internet no one knows you are a dog” was a warning, but we would be in a much better world if it’s only dogs we have to share an internet with. When humans get low they can get way lower than the worst dogs ever born.
We are already seeing a Brazilification of the internet. Crime is rampant, so you live in a gated community with private security if you can afford it. On the internet the name of this private security operation is Cloudflare. I hate one private company becoming the de facto gatekeeper of the internet but I cannot blame any individual website (including the one in the article) for using Cloudflare. It’s the thin orange line between a somewhat usable service and getting knocked off the internet by smart fridges every other day because some kid somewhere on the planet got bored.
How will this end? I honestly don’t know.