Which website? CSAM is probably the fastest for 99.9% of instances, but Lemmy all federated, and rogue instances can exist outside the commonly federated instances.
Which website? You’re on piefed.social, but posting on lemmy,ml.
If this is confusing, that’s fair. Federation is a new thing. It’s multiple websites that work with each other, so nobody has total control.
Maybe the answer, then, is “nothing”. It’s whatever your instance (website) will allow. If it allows too much, it itself might start getting blocked by other instances, or even shut down in real life. That’s it, though.
You should probably ask again at !piefed_meta@piefed.social, for practical concerns, as this is for questions about your instance, specifically.
Cheese pizza is probably one way to get yourself banned (at a minimum)
🍕 I only have pepperoni.
Depends on each instance’s rules, based on what you are referring to.
Account ban? (You not being able to access your account at all) Refer to your instance piefed.social’s rules.
Communty ban? (A community within an instance banning your participation) Refer to said community’s rules.
Can’t interact with an instance? (not being able to interact with all communities using the same instance) Said instance might have defeferated with your instance; contact piefed.social’s admins for clarification. Both parties should be in an agreement for them to federate again.
Instance dependent
Nothing exactly, you can make another account on other instance using the same email. And as it is pseudo-anonymous you can always use a new email and other username and no one will know you are the same person.
Well, there’s also IP address. If you’re savvy you might be able to get around that as well, but it’s deliberately difficult to do sustainably for exactly that reason.
To my knowledge, there is no coordinated sharing of IP addresses between instances. Different instances are run by different people, so it’s very unlikely the IP address will matter.
A new username on a new instance is likely enough that no one will ever know, so long as your posts or comments don’t give you away.
Well, if you’re not a dick you theoretically shouldn’t get banned the first time.
If you are a dick, I imagine you’ll run out of instances pretty quickly, using that strategy. You could keep it up for a while, though. I do worry about the reckoning with spammers that will eventually have to happen on here.
There are already spammers all over Lemmy. There’s a coordinated effort to remove spam, it just doesn’t include IP addresses (which aren’t that helpful because they change and with CG-NAT entire neighbourhoods can share them, and with VPNs people not near each other can - plus if you have a dynamic IP then restarting your router can give you a new one).
Ah, so you do know how it all works.
During the Reddit exodus, at least, there were a lot of instances that required very little for you to make a new user. I’ve put down the lack of mass abuse (that I’ve seen) to the small level of traffic, but that won’t last. The standard thing is to require an email address, and for email providers to require either another email address or something like a phone number with a meatspace papertrail. That way, they can bother an abuse department which can bother other abuse departments.
Of course, there’s still ways around it, as you probably know, but they’re not free, and so a Nash equilibrium is achieved where stuff is usable.
You can buy valid gmail address by the thousands. Email validation is one part of a multilayered approach. It cuts some out, but you need more layers. Captchas work, they cut some proportion out, but not all.
Probably the most effective is registration applications, but this is a huge barrier to entry. If we want Lemmy to grow, we are going to have to change the current state (most instances require an application to join), or change peoples expectations. You can sign up for a reddit account just like that, and start using it without waiting for approval. Why would people choose Lemmy? On our instance we had a drop in registrations to about 1/10 of what we had with open registrations.
Unfortunately I don’t know the answer. It probably involves taking on strategies like reddit if we are going to scale that big (auto-mod, karma, etc). Unfortunately we will have even more trouble, because in the users host instance doesn’t ban them then an admin on every other instance has to ban them for that instance. So we probably need to be able to follow ban lists to auto-ban users that have been banned on other trusted instances or something like that. As we grow, I’m sure we will have more pain before it gets better, but I’m hopeful that we will solve issues as they arise.
You can buy valid gmail address by the thousands
Yep, although the economics of that depend on what you’re doing. I’m trying not to mention too many details, because internet hooliganism is one of the few things I think I could make worse just by publicly and accessibly explaining, haha.
Probably the most effective is registration applications, but this is a huge barrier to entry.
I know of people with similar mechanisms who had problems with very sincere-sounding bad actors before ChatGPT. Best of luck with it, though. It’s how I got into my instance.
Unfortunately I don’t know the answer. It probably involves taking on strategies like reddit if we are going to scale that big (auto-mod, karma, etc).
Hey, unrelated, but do you know if they ever got the database code cleaned up? One of these days that’s actually going to start to bite; my instance already had to do a hardware upgrade once.
I should try and figure out how a list of bad IPs would best fit into ActivityPub. It sounds like it would be easy enough to add.
As we grow, I’m sure we will have more pain before it gets better, but I’m hopeful that we will solve issues as they arise.
It’s been done, we can do it again!
Exactly.