It’s no secret the bots have arrived on Lemmy.
I’ve been monitoring https://fedidb.org/software/lemmy and it seems that a number of instances with open sign-ups are getting thousands of new user registrations but have very, very little user activity to show for it.
To stay ahead of potential problems, I’m preemptively defederating several instances that appear to be used for bot signups. If there are instances that contain legitimate content that end up blocked I will be more than happy to consider removing them off of the list. The intent is not to remove access to legitimate content, the intent is to make it more difficult for bad actors to propagate spam to communities hosted here.
Current criteria I’m looking at:
- Little/No mention of the instance on popular social media sites – I don’t want to defederate an instance that became popular overnight for legitimate reasons
- Large number of accounts (>5000)
- Very little local posts/comments (<25)
- Few/No subscribed communities elsewhere (<5)
- Very low active user count in the past day/week (<20)
I really fear that they all awake at the same time and flood / attack our instances… This seems to be a temporary solution but time consuming for you. Beehaw defederated too from a list of instances. Maybe this list could help you :
here the original post :
https://beehaw.org/post/701910
and this one that built a tool to identify bots’ instances:
https://kbin.social/m/agora@sh.itjust.works/t/78131/Vote-Use-the-Fediverse-Overseer-to-pre-emptively-defederate-from-suspected
Thanks for this, and that was exactly my concern. I checked out a few and verified that they definitely looked odd. They’re blocked now and I’ll check out the script you linked later this evening.