this post was submitted on 20 Jun 2023
286 points (99.7% liked)

Announcements

765 readers
1 users here now

Official announcements from the Lemmy project. Subscribe to this community or add it to your RSS reader in order to be notified about new releases and important updates.

You can also find major news on join-lemmy.org

founded 5 years ago
MODERATORS
 

The new major version of Lemmy is now ready, and we need your help with testing. Most importantly it uses HTTP for API requests now, which is much more efficient than websocket. Additionally Two-factor-auth is supported. There are also countless other improvements and bug fixes.

You can register on any of the following servers to start testing, no approval required. You can post to your hearts content to find out if anything is broken. The test instances only federate with each other to avoid affecting production instances with spam.

If you encounter any bugs that aren't present in 0.17, open an issue and mention in the title that it happened with a release candicate version. Over the next days we will publish new RC versions to fix bugs that will invariably pop up.

Instance admins can try the new version by using Docker images dessalines/lemmy-ui:0.18.0-rc.2 and dessalines/lemmy:0.18.0-rc.1. Make sure that working backups are in place. For production instances its better to wait at least some days for the major issues to be fixed.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 36 points 2 years ago (3 children)

Peeps, I am seeing some really worrying trends on https://lemmy.fediverse.observer/list. Many instances are quickly filling up with thousands of spam accounts which will soon be unleashed on the threadiverse. While bots can bypass captchas, they at least limit the simplest scripts. We are going to face this really really soon https://lemmy.dbzer0.com/post/87753

Can we at least add support for disabling VPNs, or using some other captcha solution like recaptcha? IP rate limiting is useless with VPNs, and email verification is more trivially bypassed than the current captchas.

[–] [email protected] 12 points 2 years ago (3 children)

I like the ideas of good captchas or text applications to join. However, using one's IP kinda goes against the idea of privacy. I'd prefer if we find alternatives.

[–] [email protected] 8 points 2 years ago

One alternative that already exists and has been working well for instances that use it is an application process.

[–] [email protected] 6 points 2 years ago (1 children)

The server can see your IP when you connect to it and IPs are not sensitive either way. That's not a privacy issue.

load more comments (1 replies)
[–] [email protected] 2 points 2 years ago (1 children)

Using an IP in this way has no impact on privacy. Instances already have your IP info as a result of interacting with them.

load more comments (1 replies)
[–] [email protected] 8 points 2 years ago (1 children)

I would also imagine some tooling to make it easier to remove spam accounts might be helpful, especially if they start acting up.

Additionally, even once spam bot users have been banned or bounced by failed email verification or whatever, they continue toward the user count of the instance. Not really a functional problem, but the growth of lemmy is garnering some attention, and with the bot account explosion, this growth looks astounding.

It may become a rather bad look once lemmy’s user count is basically seen to be all spam bots.

So maybe some way to adjust user counts? I’ve seen something like this in the GitHub issues I think.

[–] [email protected] 2 points 2 years ago

See, eg: https://botsin.space/@threadcount/110581723322900741

A bot reporting on the growth of lemmy has ceased posting because the numbers are clearly bloated and wrong.

[–] [email protected] 2 points 2 years ago (1 children)

How can you tell they're spam accounts btw?

[–] [email protected] 12 points 2 years ago (1 children)

Small instance, open signups, rapidly growing users. On balance, given the issues others are having, it's probably bots creating the accounts.

On my instance if you looked in the database they all had gmail emails and all had the same pattern to the email. We were adding 20 users a day, then suddenly had 100 new accounts in an hour. There was a lot of talk from other instance admins seeing the same thing.

[–] ulu_mulu 2 points 2 years ago

On top of that there's also activity, I saw a server with only 7 posts for 6K users, there's no way those are real people.

[–] ulu_mulu 18 points 2 years ago

Thank you for your work :)

p.s. test instance names are fantastic! :D

[–] ulu_mulu 15 points 2 years ago* (last edited 2 years ago) (1 children)

Appending the char "!" to the password gives the error "SyntaxError: JSON parse: unexpected character at line 1 column 1 of the JSON data" - same screenshots posted by @Lodion - that's on Enterprise (haven't tried other instances yet).

Removing the ! let me create my user just fine.

Edit: oh just saw mod message, will wait for next build then try again.

Edit2: adding the ! to the password now works

[–] [email protected] 3 points 2 years ago (2 children)

Oh that kinda seems like a bad sign regarding proper data validation. Hopefully it's just a small bug and not part of a larger issue.

[–] atimholt 1 points 2 years ago

I heard someone say that you can't make your password too long. Does not bode well. I use a unique password, at least.

load more comments (1 replies)
[–] [email protected] 14 points 2 years ago

0.18.0-rc.4 is now pushed up.

[–] gabriele97 13 points 2 years ago

Only ❤️ for you guys!

[–] [email protected] 13 points 2 years ago (3 children)

A bit off topic, but can something be done about the power mods? I see a few users already forking every subreddit trying to ensure they remain a mod. No user can meaningfully manage 50-100+ communities.

Please consider capping the limit to 20 or less. First-mover advantage is huge, so starting up a community down the road to prevent this consolidation of privileges is likely out of the question.

[–] [email protected] 16 points 2 years ago (2 children)

If you get a bad mod, you can always move to a community on another instance. That's one of the advantages of federation.

[–] [email protected] 7 points 2 years ago (1 children)

I think this is something reddit users generally have a hard time grasping about lemmy, including myself.

One of the fundamentals of the fediverse is that there will be communities with the same name on different instances. Users can subscribe to good ones and / unsubscribe from bad ones as they wish.

load more comments (1 replies)
[–] [email protected] 2 points 2 years ago

And an advantage of community redundancy. Old quiet communities can be literally brought back to life if we enough people decide to move.

[–] [email protected] 6 points 2 years ago

I think you have the right problem with the wrong answer.

It'd be better if communities could subsume other, worse-moderated communities with the same name in some integrated/organic way.

I mean, I could run c/politics on some server, but if another 20 or 30 instances agree on c/politics that's the winner. If they agree on c/politics because it's the better one and cross-moderates in some way, more power to them.

[–] wit 1 points 2 years ago

Name and shame.

[–] [email protected] 13 points 2 years ago* (last edited 2 years ago) (3 children)

Posted this on Martrix... but receiving this error on all three instances on clicking the "Sign Up" button after entering my details:


edit: Also DS seems to require admin approval for new signups.

[–] [email protected] 14 points 2 years ago

Sorry, we merged someone's bad PR without testing, we'll revert it and start another build.

[–] marsta 1 points 2 years ago
[–] [email protected] 1 points 2 years ago

FWIW I tried an hour later and it worked. Not sure if something was fixed in the back end.

[–] [email protected] 12 points 2 years ago

We've pushed up a new UI version for testing there: lemmy-ui:0.18.0-rc.3 .

Back-end should also be done in a few hours.

[–] citizen67 9 points 2 years ago* (last edited 2 years ago) (1 children)

Can we please get the 10K char post limit raised to 50K or even 100K chars in v0.18? Many mods are desperate to get their wikis/guides ported from reddit and this has been a showstopping issue.

[–] [email protected] 5 points 2 years ago (1 children)

This is a UI issue. As a temporary solution, you can modify the post (maxlength) using your browser's dev tools until lemmy devs implement a fix.

[–] citizen67 1 points 2 years ago* (last edited 2 years ago)

I'm not having any luck with that solution. Can you please explain further?

The v0.18 test instance is already showing maxlength="50000" in the post body textarea and still failing with invalid_body_field for any posts over 10K chars. The github issues above mention that it's the backend that is limited to 10K.

[–] [email protected] 9 points 2 years ago

Report from a tester that "Sign Up" with duplicate username or email is producing JSON errors and not a proper error message: https://github.com/LemmyNet/lemmy-ui/issues/1356

[–] [email protected] 8 points 2 years ago (2 children)

Trying to register a pre-existing username/password still doesn't return a proper correct error, but at least it returns an error instead of spinning endlessly

[–] [email protected] 14 points 2 years ago

The fix for that isnt merged yet, will be in one of the next RCs

https://github.com/LemmyNet/lemmy/pull/3093

[–] SterlingVapor 1 points 2 years ago

That's just because of the websockets - they just don't respond to a bad login

[–] stylishboar 7 points 2 years ago

Navigating to a different page scrolls all the way to the bottom of the page. I assume it’s part of some feature to remember the previous position (i.e., when navigating back), but I don’t think it should apply when using the pagination navigation. I’m on mobile.

[–] rr7 5 points 2 years ago
[–] [email protected] 3 points 2 years ago
[–] [email protected] 2 points 2 years ago

Congratulations on the improvements to the protocol and to you both sexy leftist pimps for keeping the FOSS philosophy alive.

On behalf of the Mujican community, I send you a fraternal hug and we reiterate that we are with you in whatever is needed, wherever the fediverse takes us.

[–] [email protected] 2 points 2 years ago* (last edited 2 years ago)

A random note- federation, is being very weird for this particular server.

│ 2023-06-21T14:16:09.127573Z  WARN activitypub_federation::core::activity_queue: Queueing activity https://lemmyonline.com/activities/follow/d6d4fccb-c1e3-40ea-918b-6426d3080b3f to https://lemmy.world/inbox for retry after failure with status 502 Bad Gateway: <html>       │
│ <head><title>502 Bad Gateway</title></head>                                                                                                                                                                                                                                     │
│ <body>                                                                                                                                                                                                                                                                          │
│ <center><h1>502 Bad Gateway</h1></center>                                                                                                                                                                                                                                       │
│ <hr><center>nginx/1.18.0 (Ubuntu)</center>                                                                                                                                                                                                                                      │
│ </body>                                                                                                                                                                                                                                                                         │
│ </html>  

(Also- I can't actually see replies to this, due to... federation acting very weird with this particular server...)

Also- Is, there a changelog available for the upcoming 0.18 release?

[–] [email protected] 2 points 2 years ago

I created a community /c/lemmycode and invite people to share information about beta testing and upgrade planning

[–] [email protected] 2 points 2 years ago (1 children)

Is "Local" removed by default?

[–] [email protected] 4 points 2 years ago

It's not shown because federation is turned off for those test instances.

[–] gabriele97 1 points 2 years ago

Does it include the activityPub patch that increases the expiration time of an activity from 10s to 5min?

[–] [email protected] 1 points 2 years ago* (last edited 2 years ago) (1 children)

As of the time of this comment, i can not create a new post on Enterprise server. The bottom to submit the post goes grey (light green) and won't allow submit once I put a URL on a posting. Adding a title and body doesn't help.

[–] [email protected] 1 points 2 years ago* (last edited 2 years ago) (1 children)

Another thing. even if I do a "create posts" button while in a community, the "community" drop-down box is not picking the community name.

If I'm on this page, https://enterprise.lemmy.ml/create_post?communityId=41380

The communityid parameter is passed, but the form for creating a post isn't picking it from the drop-down list. It still says "select a community", when I already was passing a community choice as a URL parameter...

[–] ulu_mulu 1 points 2 years ago

Seems fixed now on Enterprise, new build deployed.

[–] [email protected] 1 points 2 years ago* (last edited 2 years ago) (1 children)

The test instances only federate with each other

I’m unable to find external communities on either ds9 or voyager. Also, ds9 seems to think it’s federated with instances other than these three.

Not a problem, but couldn’t test subscribing over federation, or, it’s broken 😅

[–] [email protected] 1 points 2 years ago

Is there a full list somewhere of all new features for us to test?

load more comments
view more: next ›