To all Fedi Admins Currently Being hit with a Spam Wave:
This kind of spam is now over! Unmute all the instances no longer on my list!
I've just released v4.0.0 of The UNmute List! I'd be very happy about a small donation because I have very little time and I cannot really justify working on this list with my current schedule :mycomputer:
There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.
Simply import this list and you'll mute the 47 worst spam instances currently known to me! I've worked on it for multiple weeks, sometimes ~9 hours at a time verifying all lists sent to me manually.
Limit first, defederate only in worst situations!
Consider re-federating with and un-silencing any of the mentioned instances once the spam is mitigated. The admins of some of these may have just been asleep when this all started.
Ban Spam Accounts via their E-Mail Domain
Block the following E-Mail Domain and whatever temp Mail provider it resolves to: chitthi.in
Just to be safe, block these ones too (same provider)
mailto.plus
fexpost.com
fexbox.org
mailbox.in.ua
any.pink
All our spam accounts came from these E-mails.
Since you probably have some of these accounts sleeping:
https://[your-instance.tld]/admin/accounts?email=%25%40chitthi.in there just select all and press “Ban”.
Find Remaining Spammers
I've seen instances that fixed the spam issue but began being hit later again. The spammers might use new E-Mails, so here is a way to find and block them anyway:
These spammers seem to be using the TOR Network as all of their IPs are TOR Exit Node IPs, hence an idea (with some collateral damage if executed) would be to ban all TOR exit node IPs for sign ups. I am personally against this idea as you'd also prevent users who simply wish to stay anonymous online (political refugees, leakers of important documents, etc.) from using your platform. For now, simply banning every user using a particular Spammer IP will not help and will merely ban users that try to stay anonymous! Not necessarily the spammers.
How To Block All Temp E-Mails in the Future
If you want to prevent this from ever happening again, you should block E-Mails from Temporary Mail providers all together:
In future updates on Mastodon, maybe Admins can simply click a button that says “Ban Temp E-Mail Providers” Automagically from the E-Mail Menu? There could be E-Mail categories that can be banned, such as temporary mails.
Why did this happen?
The real reason hundreds of us spent hours of our days during the spam on mitigating it is the following:
Yet another question people are asking me: "How can I, a common person, help hasten the demise of #Meta through #ActivityPub?"
Again, I want to re-emphasize this. #Fediblock is not an all-purpose tool. It's useful as a hammer. But in this scenario, we don't just need a hammer. We need drills, pliers, saws, and blowtorches.
That said, we must protect communities that choose to defederate from Meta. Which means that if those servers don't want to receive messages from any Meta-owned services, we must not only be respectful of that, we should make damn sure that those servers are quarantined from Meta. So much of the success of fighting Meta will require safe spaces from Meta.
The next thing we need is lots and lots of nodes. Currently, we only have ~25,000 nodes on the Fediverse but we need more. Preferably, these nodes should be small, agile, and well-moderated. If you have the finances and/or skill to run a node, it's important that you do so. To compete with Meta, we need to build scale -- and the easiest way to build scale is by adding more nodes to the Fediverse.
What will also be key is lobby servers. These will be servers specifically set up for migrants from Meta-owned services to help onboard them towards the rest of the Fediverse. To run such a lobby server, they need to be welcoming, moderated well, and free of the elitists and gatekeepers that poison so much of the Fediverse currently.
How to get people from Meta to try out the rest of the Fediverse? We need people willing to be ambassadors on #P92 who are ready and willing to evangelize the rest of the Fediverse. Folks like @tchambers are very good at this on Twitter, and I have no doubt that we can do the same with P92. Except this time we'll have the benefit of federation already happening 😉
Now if there's one thing I've learned about the growth of the Fediverse it's that bad corporate decisions pay dividends. We've already experienced waves of migration from Tumblr, Twitter, and Reddit. And I have no doubt that it's only a matter of time before Meta makes another corporate mistake -- as they tend to do.
In which case, we need to strike fast. When another Cambridge Analytica happens, we need to remind everyone on Meta about the lobby servers that are on standby, and ready to take them on. Unlike previous migrations, let's not be unprepared for this. Let's be especially prepared since Meta plans to join the Fediverse.
Finally, we need more devs. Specifically, we need devs willing to build innovative server and client software that takes aim at Meta. And to do that, we need to support the devs that currently exist -- show evergreen devs pondering whether they should invest here that we, as a community, are appreciative of our current devs.
If you like #Mastodon, #Calckey, #Kbin, #Friendica, etc., it's important that you open up your hearts as well as your wallets and fund the next stage of Fediverse development.
This will take a lot of work. But if you want to fight Meta, challenge their dominance of social media, this is what must be done.
Personally, I'm hyped about the future of the Fediverse -- regardless of whether Meta eventually lives to tell the tale.
Stop Using Threads consumes a list of users and tells you which of those users interact with Threads. You can use it to remove Threads participants from your timeline.
You can find out the tool's opinion on you by entering your own name, or you can just Submit with default settings to find out about Gargron.
It’s so grating how the lesson of #fediblock and such still hasn’t been learned/intuited by a majority of furry fandom yet. Everyone’s so quick to jump on the soapbox and complain about ineffectiveness of applying broad-sweeping blocklists when they’re negatively impacted by it, and try to speak in a noble manner of morals and principles. Yet, typically in barely a few posts/days later, are still defending much of it as a necessity to ‘solve the Nazi problem’, when it does absolutely nothing of the sort. Blocking “Nazis” (whereas that term is used in such a broad spectrum from: actual non-sockpuppet neo-Nazis, to ‘people I disagree with’, that it makes it meaningless) does not make them disappear, it’s no more than the logic of a child hiding under their bedsheets hoping for the imagined monster to go away.
If you look back into history of the fediverse, even back before ActivityPub became a thing (back in OStatus days): it’s a pattern where a lot of the heavily blocked instances ended up continuing to live on, while the over-moderated instances killed themselves off by crippling their user’s ability to intercommunicate per overprotective moderation. In fact, in the present day it’s where a lot of the ‘most active’ fediverse instances are the most blocked, and yet fediblock puts very little of any dent in it. You know what happens when you list an instance in a fediblock list? You irrevocably start to put them in the “banned” side of the fediverse, the space where people don’t have to walk on eggshells nor try to soften their words to appease the sensitivities of the more overmoderated instances.
On the “banned” side, there’s no point to try to cater to the fediblock crowd anymore, because that’s already been irrevocably severed. If you’re listed once, it’s just blindly recirculated to other lists, and never resolvable. So instead of “keeping the Nazis out”, whereas the practices of fediblock–you’re actually pushing more people to ‘that side’ of the internet, and causing the opposite of whatever ‘social justice’ endeavor you’re on. I’ve actually made far more genuine and authentic friends from fedi than I have from Discord and Telegram by far, majority of friends which are on the ‘banned’ side, versus being around the people that’ll ditch out from you at the moment of getting any ‘cancel culture’ labeling.
I almost feel bad for these people that wrap themselves so deep into such fleeting, fickle online associations (usually also chasing after parasocial relationships too). Always so quick to startle, offend, or whatever. The ever-moving ‘chase’ of jumping from Twitter, to fedi, to Bluesky just to ‘not literally be in a Nazi bar’, like some neverending Scooby-Doo monster chase scene. What is so staggering and harmful in witnessing word choices you disagree with? You can just shrug it off, ignore, and move about your day. It’s no surprise that anxiety disorders are so profoundly ubiquitous in the present, if people can’t de-condition themselves from going panic mode in stumbling across something they weren’t expecting. But yet people believe it’s a responsibility to hide any level of provoking content, as if it’s “protecting” them, instead of realizing it grows their phobias.
A fediverse server is not a private Discord guild, it is not a Telegram group, it’s to be handled as internet infrastructure like an email server, a backbone router, etc–you don’t interfere with legitimate traffic just because you disagree with differing viewpoints or lexicon, otherwise you greatly reduce the effectiveness of the network and just push people back to centralized services. If you want a moderated community then start a centralized forum, a chat server, or any other variety of closed-space communities.
If you routinely have problems being a center of negative attention, then: stop virtue signaling, stop acting as ‘internet tough guy’, stop doing ‘callout’ posts to provoke drama, stop openly virtuing every block you make, stop trying to make anything mundane to be political, and you will start to be virtually invisible to these people. This isn’t even just exclusive to posting online, some of it applies to in-person interaction as well. Generally only the miserable prefer to be around the miserable, and usually it’s the most miserable people that exhibit most of the aforementioned behaviors. Stop trying to act as some different personality online, and instead talk how you genuinely would in-person.
Self-reflect. Sometimes you may have character flaws that you can improve on; don’t fall into the bait of “feel good” content, or the narcissistic “you’re absolutely perfect the way you are, don’t change a thing”, else you stunt yourself from self-improvement.
The most revealing aspect of the #hachyderm#fediblock drama has been the truly feudal nature of the fediverse / feudalverse.
A world of conflict was occurring between admins/feudal lords mostly unknown to instance users/subjects … until defederations and admin resignations occur … at which point the users have to blindly work out what’s happened and how it affects them and which instances they’re now blind to.
Just like monarchs declaring war against each other. @fediversenews
#FediBlock snarfed.org and brid.gy for bridging fediverse folks to Bluesky against their will (and in likely contravention of GDPR in the EU) with typical Silicon Valley techbro sense of entitlement:
“[O]pt in results in far fewer users, and users are critical for a bridge to be useful.”¹
So i spent a few hours guaranteeing 20 instances, and adding about 25 or 30 endorsements/censors/hesitations.
I love the idea and I think it has a LOT of potential.
Regardless I want to list it all here so the effected instances can be aware and if they wish respond/react. You can read my reason for endorsement of any of the below servers in the links provided.
The reason I'm suggesting this, is because if you are a small/medium instance with open registrations, and spammers find and abuse your instance, I imagine that other instances will limit/suspend your instance without hesitation, given how willing some were to limit/suspend the much larger mastodon.social.
But do note this comment on the PR:
“To give some context to people seeing this: this is an emergency feature backport from Glitch SOC to help mitigating an ongoing spam wave, this feature may not make it in a next release, or with significative changes.”
Edited to add: multiple people have rightly commented on the accessibility concerns with hCaptcha: hCaptcha is really really really bad for blind and visually impaired people.
Please have a look at this excellent reply for more details:
Only system administrators can get accounts, but users can view the data
a chain of trust which in and of itself only proves you arent a spammer. Anyone in the chain of trust can add other instances. Once an instance is in the chain then their admin can get an account and contribute
an instance in the chain of trust can add up to 20 other instances to the chain of trust. Should the instance loose their trust from their parent then the entire chain breaks including instances it trusted.
You can add endorsements.. this is stronger than adding someone to the chain of trust. It is a way of you saying "this is a good server" and explaining what features make them a server you endorce
You can censure instances too, these are instances you block and give reasons why.
there are also lesser categories like hesitations where you can list concerns but not suggesting blocking.
All this can be automatically populated from your instances black/white list if you wish. Or you can add entries manually
you get a little badge you can put on your servers about me that shows the number of endorsements you have live.
Hallo alle Fedi-Admins die Probleme mit Spam haben!
Die Mute-Liste 2.2.2
Ich habe die Spam-Liste aktualisiert und ~104 zusätzliche Instanzen gefunden, die weiterhin spammen! Ich habe, mit viel Hilfe von anderen Fedi Admins, die Instanzen in einer Liste zusammengestellt, die sie stumm schaltet und nicht von ihnen deföderiert!
Ich würde mich sehr über eine kleine Spende hier freuen, da Ich wirklich hart und lange an der Erstellung dieser Liste gearbeitet habe, was Ich angesichts meines aktuellen Zeitplans kaum rechtfertigen kann! Dankeschön!
Es gibt eine neue Art von Spam, die gleichen Instanzen sind betroffen wie vorher. Die Verantwortlichen in Japan sollen verhaftet worden sein.
Ist diese Liste importiert ist ein Großteil des Spams vorbei. Das ganze ist für euch leicht, geht mit einem klick! Zudem wird keinerlei Instanz für immer geblockt, keinerlei Follower etc. zerstört oder deföderiert, sondern nur stummgeschaltet. Das ist sehr leicht umkehrbar.
Ihr könnet diese Liste einfach importieren, indem ihr auf https://yourinstance.tld/admin/export_domain_blocks/new geht und yourinstance.tld durch die Domain derer Instanz ersetzt, von der ihr der Administrator seid!
Alternativ könnt ihr auch auf Einstellungen => Moderation => Föderation => Importieren drücken, um diese Liste zu importieren.
Beachtet, dass zwar alle Instanzen mit einem Klick importiert werden können, dass aber diese Instanzen einzeln entfernt werden müssen, wenn der Spam vorbei ist.
Beachtet auch, dass es nur Sinn ergibt, diese Liste zu importieren und die Spam-Instanzen stumm zu schalten, wenn ihr euren Spam lokal und nachhaltig blockiert habt, wie hier beschrieben.
HIGHLY recommend Fediblock for user '@MKULTRADiamond' as they're tagging random users and spamming porn with no CW. Receipts attached in the screenshot.
Edit: The whole instance is Freeze Peach. Toss it in the trash.
EDIT: 23 June 2023 6:54BST - I've reversed this limit for the time being on the advise of @Artifex who has been able to confirm both this is not normal behaviour on the instance, and that there is still active moderation taking place. We will continue to monitor things and re-evaluate as appropriate.
We have added tooters.org to our #fediblock as a limit (potentially increasing to a suspend) due to the admin acting in bad faith and spamming unrelated hashtags.
@trumpet please stop blocking threads so that I can follow and boost @POTUS
This policy of blocking entire instances simply because you don't like who runs them is silly and detrimental to the Fediverse not to mention our democracy.