this post was submitted on 21 Feb 2024
6 points (66.7% liked)

lemmy.ml meta

1406 readers
1 users here now

Anything about the lemmy.ml instance and its moderation.

For discussion about the Lemmy software project, go to [email protected].

founded 3 years ago
MODERATORS
 

This might spark outrage but can we note ips to accounts so if they mass register, other servers get notified through federation and deactivate those (new) accounts or block registration at all?

The idea would be:

  • I register an acocunt, my ip gets noted, I assume they federate immediately?
  • i register another account on the same ip since no relog/isp change happened, my ip came through federation, i dont get blocked since this could have been a mistake
  • i register another account, gets blocked for mass registration

The obvious way around this would be changing your ip constantly but its at least uncomfortable for an attacker.

Now comes the kicker:

  • I start spamming, get banned
  • I spam with another account, same ip, same ban reason on another server, ip ban gets triggered since they’re close in time
  • ip ban shuts me down for 12 hrs? i will change the ip anyway but it slows down the attack again and makes automation hard.

Feel free to poke holes in this. i‘m trying to find solutions, not be right. But please be gentle, I‘m trying to help.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 7 points 8 months ago (1 children)

IP bans suck, they're not a good idea even if not federated.

I don't think there's a real solution to spam on the fediverse unless it's limiting stuff to closed-registration instances.

[–] [email protected] 1 points 8 months ago (2 children)

Feel free to argue why IP bans suck. So far, it has been „can be abused“ and „might hit innocents on occasion“ which both is the case for every rule and even law we have in the world. Closed registration is the same thing imo just implemented differently.

[–] [email protected] 6 points 8 months ago* (last edited 8 months ago)

CGNAT IPs are shared by a wide range of customers, so you could unintentionally cut off an entire community in one go.

https://en.m.wikipedia.org/wiki/Carrier-grade_NAT

The only good scenario that IP bans work is if they are static, but there's not an easy way of checking that.