this post was submitted on 20 Jun 2023
232 points (99.2% liked)

Fediverse

28245 readers
205 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 1 year ago
MODERATORS
ruud
Xylinna
MrCenny
TragicNotCute
automodbeta
woelkchen
232
PSA: Many Lemmy instances are currently experiencing massive automated sign-ups (bots)! If you run an instance with open sign-ups, please read! (zemmy.cc)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/fediverse
35 comments fedilink hide all child comments
 

cross-posted from: https://lemm.ee/post/177673

Cross posting this here for visibility since lemmy.ml federation has been very hit or miss the last week. Original post from @[email protected]

Today, a bunch of new instances appeared in the top of the user count list. It appears that these instances are all being bombarded by bot sign-ups.

For now, it seems that the bots are especially targeting instances that have:

  • Open sign-ups
  • No captcha
  • No e-mail verification

I have put together a spreadsheet of some of the most suspicious cases here.

If this is affecting you, I would highly recommend considering one of the following options:

  1. Close sign-ups entirely
  2. Only allow sign-ups with applications
  3. Enable e-mail verification + captcha for sign-ups

Additionally, I would recommend pre-emptively banning as many bot accounts as possible, before they start posting spam!

Please comment below if you have any questions or anything useful to add.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago (1 children)

You should make the spreadsheet private, otherwise botters will find it. Don’t make their job too easy.

[–] [email protected] 1 points 1 year ago (1 children)

Not my spreadsheet, this is a crosspost. Also it looks like the content is being auto-generated and the sheet is read-only. There's nothing they could really do by having this information.

[–] [email protected] 1 points 1 year ago

Ah, ok. Thanks