this post was submitted on 21 Jun 2023
26 points (100.0% liked)

Programming.dev Meta

2480 readers
1 users here now

Welcome to the Programming.Dev meta community!

This is a community for discussing things about programming.dev itself. Things like announcements, site help posts, site questions, etc. are all welcome here.

Links

Credits

founded 2 years ago
MODERATORS
 

fjärrinlägg från: https://mstdn.social/users/stux/statuses/110582137637837383

Huh. In the list with "fastest growing #Lemmy instances" are only spam instances now

I'm currently creating an instance ban list for Geddit to block those instances if they don't take action.. This is a disaster waiting to happen :lemmy:

https://fedidb.org/current-events/threadiverse

@lemmy

top 10 comments
sorted by: hot top controversial new old
[–] PerfectParanoia 3 points 1 year ago (1 children)

So is this an incredible influx of bot accounts? For what, spamming links? I haven't encountered any yet, is there a system already in place to fend this off?

[–] sisyphean 3 points 1 year ago (1 children)

I’ve already seen and reported an obvious, low-effort spam comment. Looks like they don’t use particularly sophisticated methods.

[–] PerfectParanoia 3 points 1 year ago (1 children)

I guess the openness of the registration process and instance creation would invite this low effort type of attack. I also bumped in a post that reported community name squating, where accounts were creating empty communities with popular subreddit names in order to sell them later on I guess? I just don't see the actual benefit of it, it seems more of an oppurtinistic play more than anything else.

[–] sisyphean 3 points 1 year ago* (last edited 1 year ago) (1 children)

Community name squatting doesn't make sense at all because different instances can have communities with the same name. So unless they manage to create one on all of the big instances, that's completely useless.

[–] PerfectParanoia 2 points 1 year ago (1 children)

That's what it seems like to me too. Plus there is nothing stopping admins of instances transferring ownership in these situations.

[–] sisyphean 2 points 1 year ago (1 children)

Exactly. Federated services seem to be much more resilient against abuse by design.

[–] ruffsl 2 points 1 year ago (1 children)

When @'ing or pinging someone by username, the auto complete will suggest matching users from across federated instances. So typo squatting could be a thing, or user impersonation. But it'd be rather transparent when it occurs, but some could still fall for such tactics, just like with email spam or phishing scams.

[–] sisyphean 1 points 1 year ago (1 children)

That’s a problem for sure. And if someone has a display name, someone else can create a user with the same avatar and display name on another instance, and pretend to be them.

[–] ruffsl 1 points 1 year ago (1 children)

Do you think we should ~~sell~~show little blue checkmarks for users from your same home instance? 😆

[–] ruffsl 1 points 1 year ago

That said, it might be nice for users to be able to tag others (privately viewable only by the tag author) to lable users they've veted before, sort of like RES. Users could keep track who is authentic from a prior interaction, like friends, but also who is just a troll, etc. But perhaps that better left user or client side customizations.