Lemmy.World Announcements
This Community is intended for posts about the Lemmy.world server by the admins.
Follow us for server news π
Outages π₯
https://status.lemmy.world
For support with issues at Lemmy.world, go to the Lemmy.world Support community.
Support e-mail
Any support requests are best sent to info@lemmy.world e-mail.
Report contact
- DM https://lemmy.world/u/lwreport
- Email report@lemmy.world (PGP Supported)
Donations π
If you would like to make a donation to support the cost of running this platform, please do so at the following donation URLs.
If you can, please use / switch to Ko-Fi, it has the lowest fees for us
Join the team
Part of the problem is the instance's open registrations which do not require you to enter an e-mail address during signup.
How is this even a thing? Why would the Lemmy software even allow operation like this?
Lemmy is open source. Everyone can modify it to fit their needs.
Cuz weβre on an anonymous forum basically?
Because anyone running it can decide to do it this way. That's how code works; you can edit it. Even if the option wasn't there, if any instance admin wants that to happen it's easy to do.
Last I checked, even Reddit allows signups without an email addressβ¦
Let's be real - an email address doesn't really stop much of anything. Anyone can really easily spin up new email addresses freely.
Sadly yeah. We absolutely should use email signup because it filters our the absolute lowest effort bots, but it does nothing against higher quality bots or humans. Not only can you easily spin up new emails on the fly, but many emails allow ways to make the email appear unique (eg, Gmail ignores dots and anything after the + sign), there's plenty of temporary email services with a variety of domains, and if you own a domain, you can trivially create unlimited emails until they catch on and ban the entire domain.
Inactive admins are also an issue, but if malicious users are determined enough, it doesn't matter that much how active an admin is. An active admin can mostly help by making IP banning an option (imperfect, but will work on many humans) and can temporarily turn on approvals to make it easier to weed out low hanging fruit. Nothing will work against someone determined enough, but could at least reduce how many instances they can turn to.
Personally I don't think anything will stop anyone determined to bring this type of harm to the community, there's an endless list of workarounds. These communities need a larger network of moderators across timezones
Nope, but it will stop the less determined ones.
With no email verification, you can pretty much create dozens of fake accounts per second - as fast as the API can handle.
Sure. But we changed our sign-up policy recently. Users are now informed during sign-up that temporary email accounts are banned.
We have another announcement regarding this soon.
How do you define a "temporary email account"?
I'm reminded of old games that insisted you couldn't sign up with an email provider and had to use an ISP email ... which kinda screwed over the literally BILLIONS of people whose ISPs don't give email addresses...
Yeah I still don't have an email associated with my reddit account. Which shocks people... although I haven't logged on in months, so maybe it's now required for legacy accounts
it's not required globally but some subs require it to be able to post
So far only /r/formula1 does for me
Oh no, not my beloved neighbors :(