Trying to run a little experiment and want to make sure my understanding is correct.
If I post something on my fediverse server, assuming it takes some time to reach all of my followers' servers, does that post get inserted into their feeds as if posted at the original time, or rather on top of their feed, but with the original timestamp?
Hm. I wonder if I can get any fediverse admins onboard to disable all images on their instance on the World Sight Day in October, so that only alt text shows up.
:heart_trans: Request for IT assistance :heart_trans:
Hi friends! Our SysAdmins are still blocked by a network issue that prevents our migration to the new servers. We are running out of ideas and would appreciate any possible support. If you have or know someone who has experience with IPv6 networks, then please contact me or another member of our staff. We would earnestly appreciate any help or advice!
The problem, as I understand it, is that traffic fails to pass through our OPNSense firewall. We have a /48 block allocated on the WAN side, and want to expose a public IP from the LAN. See this reply for a longer description and some discussion.
Yo Chooms and #FediAdmins, we've cooked up something special for our instance, but we didn't want to keep all the fun to ourselves. So, we're dropping the "From CORTEX IMPLANT with love!" Emote Pack for all you fine folks in the Fediverse. Give your instance some extra Cyber-Style vibes, on the house! Enjoy! :cyberheart_pink::cyberheart_purple::cyberheart_red:
Hallo alle Fedi-Admins die Probleme mit Spam haben!
Die Mute-Liste 2.2.2
Ich habe die Spam-Liste aktualisiert und ~104 zusätzliche Instanzen gefunden, die weiterhin spammen! Ich habe, mit viel Hilfe von anderen Fedi Admins, die Instanzen in einer Liste zusammengestellt, die sie stumm schaltet und nicht von ihnen deföderiert!
Ich würde mich sehr über eine kleine Spende hier freuen, da Ich wirklich hart und lange an der Erstellung dieser Liste gearbeitet habe, was Ich angesichts meines aktuellen Zeitplans kaum rechtfertigen kann! Dankeschön!
Es gibt eine neue Art von Spam, die gleichen Instanzen sind betroffen wie vorher. Die Verantwortlichen in Japan sollen verhaftet worden sein.
Ist diese Liste importiert ist ein Großteil des Spams vorbei. Das ganze ist für euch leicht, geht mit einem klick! Zudem wird keinerlei Instanz für immer geblockt, keinerlei Follower etc. zerstört oder deföderiert, sondern nur stummgeschaltet. Das ist sehr leicht umkehrbar.
Ihr könnet diese Liste einfach importieren, indem ihr auf https://yourinstance.tld/admin/export_domain_blocks/new geht und yourinstance.tld durch die Domain derer Instanz ersetzt, von der ihr der Administrator seid!
Alternativ könnt ihr auch auf Einstellungen => Moderation => Föderation => Importieren drücken, um diese Liste zu importieren.
Beachtet, dass zwar alle Instanzen mit einem Klick importiert werden können, dass aber diese Instanzen einzeln entfernt werden müssen, wenn der Spam vorbei ist.
Beachtet auch, dass es nur Sinn ergibt, diese Liste zu importieren und die Spam-Instanzen stumm zu schalten, wenn ihr euren Spam lokal und nachhaltig blockiert habt, wie hier beschrieben.
I'm (not) sorry if this sounds like gatekeeping, but if you aren't technical enough and/or don't have the time to administrate an instance properly, please do not host a fediverse server. At the very least, don't allow open registrations or keep it single-user.
I've seen users losing their entire social graph due to instances randomly shutting down or losing their data, which is unfair to those users and paints a negative light of fediverse. And now, we're seeing the entire fediverse bogged down with spam because of instances that fail to mitigate bots, affecting the experience of everyone else.
In a related light, it's concerning how a small group of actors (at least based on our internal intelligence) can degrade the experience of the fediverse this effectively. It signals that we have a have a long ways to go in terms of the technologies, strategies, and tools we use to mitigate bad actors in the fediverse. What we currently have isn't enough for a resilient fediverse.
someone on a Japanese hacker forum decided it was a good idea to spam the entire Fediverse because they wanted to cancel a minor that DDoSed a Discord bot which apparently made them lost millions (what?)
A Discord bot. I can't make this shit up man.
The real culprit seems to be someone who goes by mumei in the ctkpaarr.org forums, whose first post was literally a threat to ap12, that if they don't delete their "Kuroneko Server" Discord bot, they will spam every blog, forum and SNS and cancel him.
This shit is ridiculous.
The ap12 account from mastodon-japan was actually fake, and this dude impersonated a minor to get all of the Fediverse (us) to bully him.
Today's attack proved that the Fediverse is unfortunate pretty vulnerable even to just a skid (or maybe OP who warned the skid).
The cause of the attack includes:
insufficient moderation on some servers allowing mass account creation.
no good methods to filter out even just a keyword for an entire instance.
Even though most of us survived the first wave, we have to prepare for the second and future ones:
Servers should enable the equivalent feature in their software that enables moderators to check if an account is ok first before letting them post anything.
Mastodon, Misskey and major software should implement a regex filter that ignores posts from any instances.
I'm doing some funny OSINT stuff and... I have found some funny stuff.
I looked him up on Google, Found a Discord report about him with his real email attached.
Looked up his email, and found a post on the ctkpaarr forums (the one he's advertising the discord) of him being currently flamed for this current ongoing incident.
The best part? He bought the script using a PayPal account. With his real name and identity.
He is a real skid. He just bought an off-the-shelf script and decided to piss off a lot of people, even the dude he bought it from with his antics. Bro snitched on himself and his entire community LMEOW
For the sake of my own job, my rep and legal security I'm not gonna tell where exactly I found this, but you guys can find it yourself. Figure it out.
This guy is making me dying out of laughter 💀 Our team @hq is hysterical right now at this horrible opsec.
Why does #Sharkey / #Misskey need an "authenticator app" registered before you can use a hardware key? That doesn't make sense #security wise.
Yeah I know it's to prevent people from just accidentally getting locked out of their accounts, but there should be an option for #FediAdmins to allow this risk. 🤔
Do any #FediAdmins have a simple way to add Elasticsearch to a Docker instance of Mastodon?
I'm looking to try it out but there's no simple guide and I can't figure out how to get it working. The furthest I got was adding Elasticsearch to my Compose file and getting that container spun up & adding a few fields to my .env file.
Mastodon did thrown an error on the admin panel saying it couldn't connect, so progress? But past that I can't figure out how to create a user or connect the two. Help?
Dear #FediAdmins, consider hosting a macro blogging platform as well if you haven’t already. Especially if your system is not on a major hosting provider, this could greatly help decentrialize the web. Poll what your users, friends and love ones might prefer, whether it is a SSG or CMS and syndicates via web feeds or emails, and help them set up and/or migrate there.
I’m asking this after noticing suggestions for Substack users to move to WordPress.com or Buttondown. WordPress.org is libre software and a good candidate for CMS; migrating to its flagship server on the other hand is not much better than transferring all eggs from one basket to another, technically and socially.
I know this is not a small request and none of you owes me any favor, I just hope some of you will agree this is the right direction to head in. If anything, hosting a (largely) static site with a rather low post frequency (almost no one is @pluralistic) should be relatively much cheaper in system and moderation resources compared to your current fedi instance.
Dear Admins of Fediverse
As #Firefish / #Calckey still doesnt have "unsub" button like Mastodon: https://git.joinfirefish.org/firefish/firefish/-/issues/9727 e.g. - im talking about defederation.
What would be the best way to remove instance?
after i moved my account i should remove relays, then remove all tracking from existing account (to and from), wait few days to make everyone knows that "there is no connection" and then remove?
Dann lieber unsere #fediadmins mit einem "kleinen Betrag" über @Liberapay unterstützen & dort clever Geld #umverteilen in Gemeinwohl orientierte Unternehmungen.
Today is the deadline for Fediverse #moderators to fill in our #Moderator Needs Assessment - the survey will remain open but today is the cutoff for IFTAS to review the responses and begin work on solutions.
If you administrator, manage, or moderate an ActivityPub service of any size - please take a few minutes to let us know how we can be helpful.
All questions are optional, skip anything you don't want to share: