Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

If you only care about regular users I'd advice banning all known datacenters, Browserbase, China and Brazil.


I also banned the middle east, Logs actually reflected real users, cost dropped, and my mental health improved.

Win Win.


If you know that you don't have customers or users in the area, or very few, then go for it.

I worked in e-commerce previously, we reduce fraud to almost zero by banning non-local cards. It affected a few customers that had international credit cards, but not enough to justify dealing with the fraud. Sometimes you just need to limit your attack surface.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: