Blocking LLM scrapers on Alibaba Cloud from your nginx configuration

There are currently LLM scrapers running off many Alibaba Cloud IPs, that ignore robots.txt and pretend to be desktop browsers. They also generate absurd request rates, to the point of being basically a DDoS attack. One way to deal with them is to simply block all of Alibaba Cloud.

This will also block legitimate users of Alibaba Cloud!

Here's how you can block them:

Generate a deny entry list at https://www.enjen.net/asn-blocklist/index.php?asn=45102&type=nginx
Add the entries to your nginx configuration. It goes directly in the server { ... } block.

On NixOS

If you're using Nix or NixOS, you can keep the deny list in a separate file, which makes it easier to maintain and won't clutter up your nginx configuration as much. It would look something like this:

services.nginx.virtualHosts.<name>.extraConfig = ''
  ${import ./alibaba-blocklist.nix}
  # other config goes here
''

... where you replace <name> with the name of your hostname.

Automatic authentication keys

Whirlwind tour of (correct) npm usage

An overview of Javascript tooling

Monolithic vs. modular - what's the difference?

Synchronous vs. asynchronous

What is state?

Promises reading list

The Promises FAQ - addressing the most common questions and misconceptions about Promises

Error handling (with Promises)

Bluebird Promise.try using ES6 Promises

Please don't include minified builds in your npm packages!

How to get the actual width of an element in jQuery, even with border-box: box-sizing

A survey of unhandledRejection and rejectionHandled handlers

Quill.js glossary

Riot.js cheatsheet

Quick reference for `checkit` validators

ES Modules are terrible, actually

A few notes on the "Gathering weak npm credentials" article

How to install Node.js applications, if you're not a Node.js developer

Getting started with Node.js

Node.js for PHP developers

Rendering pages server-side with Express (and Pug)

Running a Node.js application using nvm as a systemd service

Persistent state in Node.js

node-gyp requirements

Introduction to sessions

Secure random values

Checking file existence asynchronously

Fixing "Buffer without new" deprecation warnings

Why you shouldn't use Sails.js

Building desktop applications with Node.js

Setting up Bookstack

A *complete* listing of operators in Nix, and their predence.

Setting up Hydra

Fixing root filesystem errors with fsck on NixOS

Stepping through builder steps in your custom packages

Using dependencies in your build phases

Source roots that need to be renamed before they can be used

Error: `error: cannot coerce a function to a string`

`buildInputs` vs. `nativeBuildInputs`?

QMake ignores my `PREFIX`/`INSTALL_PREFIX`/etc. variables!

Useful tools for working with NixOS

Proprietary AMD drivers (fglrx) causing fatal error in i387.h

Installing a few packages from `master`

GRUB2 on UEFI

Unblock ports in the firewall on NixOS

Guake doesn't start because of a GConf issue

FFMpeg support in youtube-dl

An incomplete rant about the state of the documentation for NixOS

Futures and Tokio

Database characteristics

Prefix codes (explained simply)

Cleaning sticky soda spills in a mechanical keyboard without disassembly

Hacking the Areson L103G

Batch-migrating Gitolite repositories to Gogs

What is(n't) Docker actually for?

Blocking LLM scrapers on Alibaba Cloud from your nginx configuration

Dealing with a degraded btrfs array due to disk failure

Don't use VPN services.

Normies just don't care about privacy

Why you probably shouldn't use a wildcard certificate

The 5-minute guide to the fediverse and Mastodon

No, your cryptocurrency cannot work

Is my blockchain a blockchain?

You don't need a blockchain.

Transitive dependencies and the commons

How to de-escalate situations

Treating hair lice in difficult hair

State resolution attacks

Working with DBus

Blocking LLM scrapers on Alibaba Cloud from your nginx configuration

On NixOS

No Comments

A complete listing of operators in Nix, and their predence.