GossiTheDog, 3 months ago to random

Okay, this made me laugh.

ErikUden, 3 months ago to random

someone just asked me why i was wearing a mcdonalds logo

cappy, 3 months ago to random

Working on a full exposé, should be done by tomorrow, or Monday.

Anyway, these guys are going to get expelled from their schools regardless (they're minors). I just want to set the record straight from all these live investigation posts. So we can finally know what really happened, and what's going on.

I apologize for all the misinformation I have posted earlier, KuronekoServer's devs and ap12 are not the culprit in this raid.

Do not listen to their lies.

RE: https://fedi.fyralabs.com/notes/9psnooe6p1

halva, 3 months ago to random

HOT TAKE

FRONT END DEVELOPERS SHOULD BE BANNED FROM USING THEIR HARDWARE FOR A MONTH EACH YEAR AND INSTEAD GIVEN A LOW END 10 YEARS OLD NETBOOK

ErikUden, 3 months ago (edited 1 month ago) to random

To all Fedi Admins Currently Being hit with a Spam Wave:

This kind of spam is now over! Unmute all the instances no longer on my list!

I've just released v4.0.0 of The UNmute List! I'd be very happy about a small donation because I have very little time and I cannot really justify working on this list with my current schedule :mycomputer:​

There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.

Without further ado...

Limit these instances:

[Full List of Affected Instances Here]

Just get the list to download and import here.

Simply import this list and you'll mute the 47 worst spam instances currently known to me! I've worked on it for multiple weeks, sometimes ~9 hours at a time verifying all lists sent to me manually.

Limit first, defederate only in worst situations!

Consider re-federating with and un-silencing any of the mentioned instances once the spam is mitigated. The admins of some of these may have just been asleep when this all started.

Ban Spam Accounts via their E-Mail Domain

Block the following E-Mail Domain and whatever temp Mail provider it resolves to: chitthi.in

Just to be safe, block these ones too (same provider)

• mailto.plus
• fexpost.com
• fexbox.org
• mailbox.in.ua
• any.pink

All our spam accounts came from these E-mails.

Since you probably have some of these accounts sleeping:

https://[your-instance.tld]/admin/accounts?email=%25%40chitthi.in there just select all and press “Ban”.

Find Remaining Spammers

I've seen instances that fixed the spam issue but began being hit later again. The spammers might use new E-Mails, so here is a way to find and block them anyway:

https://mamot.fr/@vincib/111946701929274350

IP Bans and TOR

These spammers seem to be using the TOR Network as all of their IPs are TOR Exit Node IPs, hence an idea (with some collateral damage if executed) would be to ban all TOR exit node IPs for sign ups. I am personally against this idea as you'd also prevent users who simply wish to stay anonymous online (political refugees, leakers of important documents, etc.) from using your platform. For now, simply banning every user using a particular Spammer IP will not help and will merely ban users that try to stay anonymous! Not necessarily the spammers.

How To Block All Temp E-Mails in the Future

If you want to prevent this from ever happening again, you should block E-Mails from Temporary Mail providers all together:

• Here is the list of all Temp email providers (there are both blocklist and allowlist)
• Here how to install it in Mastodon
• The script that automatically pulls the list via Cronjob and imports it into Mastodon
• Script template

Because of this, hessen.social, for example, was not affected by the spam attack! They had already banned the email domain the spammers used ages ago.

In future updates on Mastodon, maybe Admins can simply click a button that says “Ban Temp E-Mail Providers” Automagically from the E-Mail Menu? There could be E-Mail categories that can be banned, such as temporary mails.

Why did this happen?

The real reason hundreds of us spent hours of our days during the spam on mitigating it is the following:

Cyberbullying Gone Global: Fediverse Spam and Operation Beleaguer

This is the full exposé @cappy has been working on regarding the February 15th Spam Attacks!

Thank you @BrodieOnLinux for mentioning this post in a video!

Good luck, everyone!
Thanks for participating in the Fediverse Experiment!

#FediBlock #FediAdmin

cappy, 3 months ago to random

There's currently an incident involving some kind of Japanese skids who call themselves the "Kuroneko" organization.

They seem to be attempting to commit DDoS attacks on Misskey servers, constantly creating new accounts on compromised instances and spamming advertisements for their hacking services.

Admins who are federating with these compromised servers, while they might not get compromised themselves, may be affected by the sheer amount of traffic volume from their spam.

Admins are advised to #fediblock or temporarily stop sending requests to affected servers for now, if they don't want to get secondhand DoS'd

IMO I never expected them to be Japanese out of all things, kinda funny. They also host VOICEROID and VOICEVOX TTS bots on their Discord apparently. Kinda a weird flex I guess.

But yeah, probably just a bunch of skids.
#fediblock #fediadmin #fedadmins #mastodadmin #misskeyadmin

driusan, 3 months ago to random

Mozilla neglecting its core product for years and losing marketshare while the suits that run it flail around wildly feels really true to its Netscape heritage.

doomsdayrs, 3 months ago to github

If anyone wants to help #Ruffle get on #FlatHub

https://github.com/ruffle-rs/ruffle/pull/11227

I need someone who understands #GitHub #Actions to auto-update the meta info with each nightly release 🥺️

BrodieOnLinux, 4 months ago to random

I may have triggered a certain avian individual with my Wayland video

karolherbst, 4 months ago to random

my first keynote :3

https://www.iwocl.org/iwocl-2024/program/#wednesday (not sure the link is stable enough, but whatever)

BrodieOnLinux, 4 months ago to linux

Power Of Linux Gaming On Android Phones?!? #Linux #YouTube https://youtu.be/0cqZmApjWw4

gamingonlinux, 4 months ago to random

PLEASE don't private message me, email me or whatever directly to ask for support about Linux stuff. I will ignore it. I don't do personal support for random people.

Go to a public place, ask your question and then people can help you.

Like the forum: https://www.gamingonlinux.com/forum/ or Discord https://discord.gg/AghnYbMjYg

yonle, 4 months ago to random

The next time you purchase an domain, It's important to see the TLD of who it was belong to and if the owner was a currently problematic country, It's really important to not purchase it.

In this case, the .AF (Afghanistan) TLD.

thelinuxcast, 4 months ago to random

The second expose on a YouTuber this week is now up from Trafotin.

We're all getting cancelled, it's just a matter of time.

andrea_andrea, 4 months ago to random

Some takeaways from @bagder talk at #FOSDEM about mantaining curl.

Presentation slide of email header with subject "i will slaughter you"

AlexS_kx_wx, 4 months ago to random

Hopefully this silly joke doesn't offend anyone 😅 @thelinuxcast
@BrodieOnLinux

Brodie Robertson as Jesus showing Wayland to Matt from The Linux Cast

serebit, 4 months ago to random

Wine's new #Wayland backend is now enabled in @archlinux as of about a minute ago! 🍷 @felixonmars was kind enough to let me push the update.

gamingonlinux, 4 months ago to random

Recently @lutris put up anti-cheat notices on game pages. Cool 👍 but then also links right to a cheats website 🤦‍♂️

This is not the way and actively harms how the project looks. I really hope they reconsider removing it.

It’s like linking directly to a pirate website for indie games. Oh but you don’t support it you just link to it easily for people? Don’t be stupid. See sense please.🙏

BrodieOnLinux, 4 months ago to linux

Multi Window Apps Are A Disaster On Wayland #Linux #YouTube https://youtu.be/YGnVBbSzay4

larsfrommars, 5 months ago to random

reasons that traditional social media sites get shut down

• we're out of money
• we want more money
• someone else wants our money
  reasons that fedi instances get shut down
• harry potter video game
• someone lost the one flash drive all the data was on
• The Taliban

matk, 5 months ago to random

I wanted to say a few things about the importance of applications, Wayland porting, and the joy of discussing Wayland protocol extensions... ;-)
(new blog post)
https://blog.tenstral.net/2024/01/wayland-really-breaks-things-just-for-now.html

BrodieOnLinux, 5 months ago to random

How does every discussion eventually become an argument about CSD vs SSD in this project https://gitlab.freedesktop.org/wayland/wayland-protocols/-/merge_requests/269

karolherbst, 5 months ago to random

but have you considered 🦀

bagder, 5 months ago to random

"Buffer Overflow Vulnerability in WebSocket Handling".

A bot? An AI? Just a silly reporter? Another fine waste of #curl maintainer time.

https://hackerone.com/reports/2298307

BrodieOnLinux, 5 months ago to KDE

Have you heard of The #KDE Networks?, well I hadn't but today we have a member of the Australian branch on the show to explain all the details we need to know #Linux

Video Release: https://www.youtube.com/watch?v=dN5v4eUBylI

Audio Release: https://podcasters.spotify.com/pod/show/tech-over-tea/episodes/Bringing-The-Joys-Of-KDE-Around-The-World--Kye-Potter-e2dh33c