this post was submitted on 06 Oct 2023
390 points (97.1% liked)
World News
32314 readers
777 users here now
News from around the world!
Rules:
-
Please only post links to actual news sources, no tabloid sites, etc
-
No NSFW content
-
No hate speech, bigotry, propaganda, etc
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Correct... Which you can use ASN data to determine general location... If 1 million people start logging in from the same set of ASNs or ASNs known to be VPN services. That's a red flag... I'm not sure how many times I can state this... Especially since your server is serving the requests that are these malicious people logging in. You can check the query/account details against the IP location WITHOUT LOGGING ANYTHING.
Now you purposefully conflating what I specifically said and am imparting some mystical properties I never stated were required. You're a terrible person who goes out of their way to argue in bad faith.
I was clear and specifically outlined what mechanism should be put in place. I never stated anything about logging. then you come out of the woodwork and complain that logging is bad and argue against that point. And now here you are claiming that it would increase security. Bro... nobody here said shit about logging. Go argue with someone else.
My original comment, and every one since then has not made any requirements that logging is enabled. You can view active TCP connections without logs. You don't need behavior tracking to do these things. You don't need logging. This can be done without ANY of that shit and is regularly done on the internet without logging. You must think that companies have unlimited storage space... to store infinite logs and that logs are the end all-be all of how all of computing works.
Until you can show where I said ANYTHING that REQUIRES logging to function. This conversation is over since you've proven at this point you're arguing in bad faith.