Fediverse@lemmy.world

fediverse@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !fediverse@lemmy.world

A community to talk about the Fediverse and all it’s related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to !moderators@lemmy.world!

Rules

Posts must be on topic.
Be respectful of others.
Cite the sources used for graphs and other statistics.
Follow the general Lemmy.world rules.

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

507 users / day
1.82K users / week
4.43K users / month
13K users / 6 months
1 local subscriber
28K subscribers
992 Posts
27.5K Comments
Modlog

Sean TilleytoFediverse@lemmy.worldEnglish·10 months ago

Authorized Fetch Circumvented by Alt-Right Developers

(wedistribute.org)

176

Authorized Fetch Circumvented by Alt-Right Developers

(wedistribute.org)

Sean TilleytoFediverse@lemmy.worldEnglish·10 months ago

A controversial developer circumvented one of Mastodon's primary tools for blocking bad actors, all so that his servers could connect to Threads.

Authorized Fetch (also referred to as Secure Mode in Mastodon) was recently circumvented by a stupidly easy solution: just sign your fetch requests with some other domain name.

rglullisEnglish
arrow-up
3
arrow-down
0·
10 months ago
edit-2
10 months ago
link
fedilink
Not the point. The point that instances that are open for everyone will be open for bad actors as well.

If the mere act of signing up to an instance requires a small payment, you are automatically preventing the absolute majority of spammers, “spray and pray” scammers and channer trolls.