@Codeberg @gturri >Calling our usage of anubis an attack on our users is far-fetched.
Subjecting the users to software that the users don't control (remote JavaScript) is always an attack.

The recent refresh-challenge is fine, but you don't need Anubis to do that.

Another user-respecting option it to set temporary cookies for files on the site - poorly programmed scrapers won't include those cookies on subsequent requests.


Yes, poorly programmed scrapers just do the operation and then continue scraping.

Decently programmed scrapers just change their useragent and continue scraping at a lesser rate unimpeded by Anubis.