this post was submitted on 23 Jan 2025
942 points (97.7% liked)

Technology

61227 readers
4326 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
942
Developer Creates Infinite Maze That Traps AI Training Bots (www.404media.co)
submitted 1 week ago by kororon@lemmy.cafe to c/technology@lemmy.world
130 comments fedilink hide all child comments
 

A pseudonymous coder has created and released an open source “tar pit” to indefinitely trap AI training web crawlers in an infinitely, randomly-generating series of pages to waste their time and computing power. The program, called Nepenthes after the genus of carnivorous pitcher plants which trap and consume their prey, can be deployed by webpage owners to protect their own content from being scraped or can be deployed “offensively” as a honeypot trap to waste AI companies’ resources.

“It's less like flypaper and more an infinite maze holding a minotaur, except the crawler is the minotaur that cannot get out. The typical web crawler doesn't appear to have a lot of logic. It downloads a URL, and if it sees links to other URLs, it downloads those too. Nepenthes generates random links that always point back to itself - the crawler downloads those new links. Nepenthes happily just returns more and more lists of links pointing back to itself,” Aaron B, the creator of Nepenthes, told 404 Media.

(page 2) 50 comments
sorted by: hot top controversial new old
[–] renzev@lemmy.world 34 points 1 week ago (1 children)

This reminds me of that one time a guy figured out how to make "gzip bombs" that bricked automated vuln scanners.

[–] GreenKnight23@lemmy.world 35 points 1 week ago* (last edited 3 days ago) (7 children)

deleted by creator

load more comments (7 replies)
[–] samus12345@lemm.ee 34 points 1 week ago (1 children)

[–] nova_ad_vitum@lemmy.ca 6 points 1 week ago (9 children)

I haven't seen that episode in probably 15 years and I still remember exactly what this was.

load more comments (9 replies)
[–] mayhair@discuss.tchncs.de 20 points 1 week ago

Read without sign-up

[–] tal@lemmy.today 16 points 1 week ago* (last edited 1 week ago)

I suspect that there are many websites that already dynamically generate an unbounded number of pages based on the links one clicks, and that Web spiders will have needed to deal with those for as long as there have been people spidering the Web, which is going to be no later than the first Web search engines.

I'd guess that if nothing else, they cap how far they spider a site. Probably a lot more sophisticated, use heuristics to figure out which sites are more worth spending indexing resources on, as it's not just whether to spider but also the frequency with which to do so. Some parts of a site are more "valuable" than others -- for a search engine, a more desirable target for users clicking on results -- and some will update more frequently and are more-useful to re-spider at higher frequency. Google will return current news articles, yet still indexes a large portion of the content out there. They won't be doing that by simply sending GoogleBot at everything that they've indexed at a fixed frequency.

[–] wise_pancake@lemmy.ca 10 points 1 week ago

This genus named genius game is sending pain to these previous devious data devourors

[–] Nougat@fedia.io 9 points 1 week ago (3 children)

The modern equivalent of making a page that loads in two frames, left and right, which each load in two frames, top and bottom, which each load in two frames, left and right ...

As I recall, this was five lines of HTML.

load more comments (3 replies)
[–] DarkCloud@lemmy.world 4 points 1 week ago

it might he useful to generate text on the random urls then test different repetitions to see of you can leave a mark on the training data... So after X repetitions or injected information, release the bot back into the wild with whatever message or false info you want it saddled with.

load more comments
view more: ‹ prev next ›