As the title says, lemm.ee is defederating instances that are allowing thousands of spam bots to be created on them. Will we be taking similar action? What is the game plan here?

  • Seraph089
    link
    fedilink
    English
    arrow-up
    12
    ·
    1 year ago

    So far, we have a captcha on account creation now and it seems to be working (from what I’ve seen, anyway)

    It’ll be a tough balancing act though. Relatively frictionless sign-up has been great for us, and anything that deals with bots will also affect that. Whatever else we may end up doing will need to be carefully considered.

  • Kazaii
    link
    fedilink
    English
    arrow-up
    10
    ·
    1 year ago

    Great question, great read. Thanks for posting this.

  • mnemonicmonkeys
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    1 year ago

    Personally, I think adding a recaptcha and possibly a recovery email are reasonable to add to sign in.

    When I made my account this past weekend, it was refreshing to only need a username and password, but it’s also way too easy to abuse.

    • drascus
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I’m not sure email even does anything though. It will depend if that instance even has SMTP set up.

  • nanoUFO
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    I think obviously botted instances that aren’t doing anything about it should be defederated. It can only cause harm to communities that allow those bots to interact with them.