Kevin BeaumontFeb 17, 2024
Okay, this made me laugh.
Show threadKevin BeaumontFeb 17, 2024

The long story short with the Mastodon spam woes this weekend is it’s a deliberate attack exploiting Fediverse and Mastodon issues.

They’re using Tor exit nodes and everything is automated. I think they can just keep running it, as there is no barrier to stop them.

To keep it in perspective, though, I don’t think it’s a big deal at present. People should just ignore it.

Show threadKevin BeaumontFeb 17, 2024

There is a bunch of technical issues it highlights, which is that Fediverse is very open to abuse at present. There’s no spam filtering at all. It’s like email from 1996. It’s wide open to abuse.

IMHO Mastodon admins should enable CAPTCHA for registration - it’s supported out of the box - if they run open sign ups.

Ideally Mastodon would add easy install third party plugins (a la Wordpress etc) so people could develop optional plugins for anti-spam and anti-malware.

Show threadKevin BeaumontFeb 17, 2024

Now, it does become a bigger problem if the current spammers publish their source code and more join in.

There’s absolutely no effective controls to stop it - here is the Wild West still - so the elephant is the room is anybody can flip the table at present.

The good news is much of the anti spam and anti phish technologies over the years (Real time Block Lists etc) can be reworked for here. The bad news is that’s a long way off realistically.

Show threadKevin BeaumontFeb 17, 2024

Another knock on impact from the spam run - the pictures of spam in the posts are chewing up disk space if file system without deduping is used, and there’s extra Sidekiq load (it’s the biggest Saturday ever on cyberplace.social).

Also a bunch of instances have gone to failing in federation admin page, presumably because smaller instance admins got annoyed and switched them off.

Show threadKevin BeaumontFeb 18, 2024
Mastodon has been in deep decline for months (eg active user numbers have halved), but now the metrics are turning around due to one Japanese Discord spammer 🤣
Show threadMark Squires Feb 18, 2024

@GossiTheDog On my account I get almost no spam at all. I blocked some clown yesterday, but that wasn't a spam Spammer.

Concerned more on registrations. It does seem like real registrations have slowed to a crawl. Can't believe we still aren't at 15 million.

When Threads debuted, everyone suggested it would take traffic from Twitter. I wondered if it would also harm smaller alternatives like Mastodon. With no particular evidence, I think we aren't getting the same share of refugees any more.

Show threadMoon joyFeb 18, 2024
@marksquires Yikes, calling people using one social platform instead of another "refugees" doesn't feel great. There are actual refugees in the fediverse, they deserve more respect than this, and we all can benefit from being thoughtful about our language use.
@GossiTheDog
Show threadMark Squires Feb 18, 2024
@bright_helpings we can also all benefit when we don't go bonkers over a simple analogy and turn it into an unrelated discussion it wasn't intended to be. So, I will leave my post exactly as it is. Feel free to block me.
Show threadMoon joyFeb 18, 2024

@marksquires It's a bad analogy.

Some people do better once they know better. But I can't make you.

Show threadMark Squires 

@bright_helpings some people think they know better, but that doesn't mean that they do.

It's common phrasing and a common analogy. If you don't like it, it's a free country. Have whatever opinion you want. As will I. This is a diversion of the thread and an unnecessary lecture. Bye

Feb 18, 2024 at 4:45pmWeb