- Joined
- May 4, 2020
When I switch device and start kf first time that day I get two triggers, and it works perfectly after that.
KiwiFlare
- Thread starter Null
- Start date
- Joined
- Dec 28, 2014
I can't reproduce it either, even with my usual insane "open 100 pages at a time" practice.
- Joined
- Dec 13, 2022
I’ve noticed if I turn my VPN off, then back on after having received the KiwiFlare a-ok for my device, the site becomes pretty much browsing-only. I’ve had ongoing issues with KiwiFlare, but if I just keep the VPN on this device then the site seems to work
Hopefully that’s useful for someone who knows what they’re talking about idk I didn’t read the thread
Hopefully that’s useful for someone who knows what they’re talking about idk I didn’t read the thread
PoC wagner group
kiwifarms.net
- Joined
- Feb 6, 2023
is kiwiflare only applicable for the farms or could you offer a ddos protection service for small sites in a similar position to kiwifarms?
- Joined
- May 4, 2020
I’m able to reliably reproduce triggering the protection every page load by simulating certain devices and network conditions.
Possible reason:
- Upon loading the page for the first time, many requests are sent for each sticker / script / css / other resource.
- The user is on a low-end mobile phone / network, and navigates to another page before the aforementioned requests are returned and stored in the browser cache. (Or cache is too aggressively cleared due to memory constraints.)
- All the requests are sent again causing the protection to revoke the clearance cookie.
Steps to simulate / reproduce issue:
(Using Firefox or Tor Browser for demonstration)
- Open dev tools > Network > Top right > Change “No Throttling” to “Good 2G” (Optional).
- Tick “Disable Cache” (Optional).
- Navigate to any thread, from a fresh session.
- Wait for the challenge to be complete.
- (Optional) Copy the clearance cookie.
- After the DOM loads, but before the other resources do, click on the link to the next page (preferably before the page numbers even show up).
- The protection is either immediately triggered, or halfway through the loading of the next page.
- (Optional) Verify the same clearance cookie is sent, but rejected.
- (Optional) Verify the original clearance cookie is revoked.
- (Optional) Enable cache, allow the page to fully load and have all resources cached, and the issue should go away.
Possible solution:
- Serve static content that doesn’t stress the database separately, not counting towards protection throttling.
I don’t know if it’s the problem, especially since I don't know if it's actually exceeding the allowance (or what the allowance is), but it’s the only way I’m able to reliably trigger the check every load.
For incognito users:
Some browsers (notably Safari on iOS, but all iOS browsers are effectively Safari reskins) use a separate cookie jar for each new private tab, the check triggers since the existing clearance cookie isn’t sent from the new tab, and has nothing to do with the above.
- Joined
- Nov 14, 2012
I cannot, following your exact instructions.
The issue you're encountering has been fixed. I specifically adjusted the throttling so that initial loads would not inherently surpass the authorization token.
The only thing I can imagine is that I didn't deploy this update on a specific service, so I am going to go ahead and manually rebuild and redeploy the latest code on every frontend.
This message was posted after the redeploy. If you're STILL encountering this issue, let me know.
- Joined
- Aug 1, 2019
Whatever tweaks you made to the settings have had the site running silky smooth on my phone today. One quick kiwiflare screen in the morning when I logged in and none since then!
- Joined
- Mar 18, 2019
Sometimes on loading it up the site breaks completely for ten minutes or so, with every single request requiring its own proof of work, which of course breaks all non-cached assets and the ajax functionality. Then it kind of balances out. Maybe that is the initial load with dozens of parallel requests triggering the throttling, calming down once most assets are cached? Stock iOS Safari
Edit: just scrolled up my theory is probably dumb since null fixed this exact case already. Or maybe it only triggers if you instantly go to a thread with many attachment preview images?
Edit: just scrolled up my theory is probably dumb since null fixed this exact case already. Or maybe it only triggers if you instantly go to a thread with many attachment preview images?
- Joined
- Sep 26, 2019
Kiwiflare is firing up on every single page load on my iPad. I’m on Brave, iOS 15.6. Cannot quote nor sticker anyone. No problems on anything else I use, including my phone.
I don't know much about web development, but for what it's worth, my iPad only has 3GB of RAM, whereas everything else I use has no less than 8GB.
I don't know much about web development, but for what it's worth, my iPad only has 3GB of RAM, whereas everything else I use has no less than 8GB.
Last edited:
- Joined
- Apr 1, 2020
I have the same problem some days. Other days it works fine. It seems like it has to do with the amount of time I stay on the front page. if I go immediately to my alerts, I get kiwiflare on every page open, can’t enlarge images, etc. But it seems like if I stay on the front page for a minute or two things go smoothly from there. Doing some experimenting to see if it continues to track.
- Joined
- Aug 28, 2019
What I'm wondering is why I'll often (not always) get the KiwiFlare page ~5-10 times rapidly on a new IP, but then it goes away after that. What changes between the KiwiFlare flurry and using the site normally?
- Joined
- Nov 14, 2012
We've been under near-constant D/DoS attacks for the last few days. The system has mostly been able to handle it with some config tweaks, but the net was cast too wide, which was causing 429 errors. I've identified the problem and you should no longer see 429 errors.
Just now, I applied a small update to the KiwiFlare which should have a big change. I believe I have improved the system's ability to handle concurrency. I had observed that the CPUs were not pegged (meaning, they were well below 100% utilization), but there was another bottleneck, which I believe was poor concurrency causing all 48 cores to block when receiving thousands of requests a second.
In my local tests, I had previously been able to cause DDoS loads of 30,000+ requests before seeing issues. However, with the new improvement, I was not able to reproduce the issue with any number of requests before being bottlenecked by socket counts.
Edit: There's a very heavy attack that I'm using to experiment with config options.
Please report if you receive an Error 403, or Error 429, while using the website.
I need to know if you are using a VPN or public network as well. If you are using a VPN, please say which one.
Edit 2: There's still an on-going attack. If there's downtime, switching to European VPNs or Tor may help.
Just now, I applied a small update to the KiwiFlare which should have a big change. I believe I have improved the system's ability to handle concurrency. I had observed that the CPUs were not pegged (meaning, they were well below 100% utilization), but there was another bottleneck, which I believe was poor concurrency causing all 48 cores to block when receiving thousands of requests a second.
In my local tests, I had previously been able to cause DDoS loads of 30,000+ requests before seeing issues. However, with the new improvement, I was not able to reproduce the issue with any number of requests before being bottlenecked by socket counts.
Edit: There's a very heavy attack that I'm using to experiment with config options.
Please report if you receive an Error 403, or Error 429, while using the website.
I need to know if you are using a VPN or public network as well. If you are using a VPN, please say which one.
Edit 2: There's still an on-going attack. If there's downtime, switching to European VPNs or Tor may help.
Last edited:
- Joined
- Jan 1, 2020
- Joined
- Aug 13, 2022
Never seen a 429 error before today, made me feel like a real hacka.
- Joined
- Apr 23, 2018
When it wasn't being spotty here and there, it seemed like it was loading new pages of threads a bit quicker than i've seen it since before the troon crusade. Not sure if that's useful, or not sure if i'm not just imagining shit, heh.
- Joined
- Jan 29, 2022
every time I see the words "DDOS retarding" I laugh my ass off.
how much seething do you suppose the word "retarding" is causing the wokefags? can we get some kind of a counter to measure it?
- Joined
- Oct 11, 2021
The website is running smooth for me (Almost). Wouldn't have even guessed it was being D-Dos'd.
- Joined
- Aug 7, 2021
How many hundreds of thousands of troonbux have been blown on these ultimately ineffectual attacks?
derpherp2
kiwifarms.net
- Joined
- Jan 3, 2020
We still being fucked? Cuz me making new tabs to load threads before reading them gets me an error 429 like before kiwiflare.
It was bad these few days, after not getting it for weeks. But now it's just fuuuucked.
*:Forgot to add this is on desktop. I still get 429 sometimes, it's usually after nighttime that it starts getting fuckeddd
It was bad these few days, after not getting it for weeks. But now it's just fuuuucked.
*:Forgot to add this is on desktop. I still get 429 sometimes, it's usually after nighttime that it starts getting fuckeddd
Last edited: