New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Flood Attack on Federated Public Timeline #10300
Comments
Pleroma accomplishes this using a system called MRF. Specifically, MRF is used to solve this problem by applying actions to configured instances (such as removing the entire instance's future posts from the FTL), tagged users (such as removing the user's future posts from the FTL), or post content (such as rejecting posts which reference a specific domain or keyword). This may be a good design basis for a similar system in Mastodon which would provide the desired flexibility. |
Mastodon has MRF. We just call it domain blocks. Domain blocks don't have to be blocks, they just control what happens to specific domains, such as rejecting reports, media, removing them from FTL, or blocking completely... |
Mastodon has functionalities that are similar to what MRF can provide, but they aren't granular (you get silence or suspend with some augmentations). I believe that the granularity is the key for solving this type of issue, as you may simply want to remove content from the FTL without exposing the users in question to a "default block" state as with silences. |
Would it be possible to give admins instance-wide spam filters to fix this problem? For example in the case of the "womenarestupid" stunt admins could have just hidden every toot that linked to that domain or auto-blocked/suspended any users linking to it. |
that might be overly broad but it should be easy to, say, remove from the public timeline, maybe auto-generate a report and forward it to the originating server. mods can then deal with the reports by suspending the spammers and dismissing erroneous reports. |
It would be nice to have a way, in the adminisration, interface to sort instances by the size of their media attachments. |
How can we use Mastodon's MRF functionality to, say, drop all messages containing a particular text that's being widely spammed from many many Mastodon instances with impunity? |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
This is not fixed |
Pitch & Motivation
I don't know how to describe this problem, so I just tell a story.
Imagine that you own a small instance with a group of friends. One day you find that some newcomers sign up. At first you are so happy and send a lot welcome message, but after a while you are not happy anymore. Well, they just follow an amount of accounts at different instances (or just import a csv file) and your federated public timeline is now full of News/AD/Porn/Religion/Arabic(No offense)/...
Maybe a kind of flood attack? I don't know whether Mastodon has a solution to this situation:
And another curious problem: will Mastodon have a performance problem when every user has a long mute/block list of accounts?
The text was updated successfully, but these errors were encountered: