Hey all - I'm unsure how many other #fediadmin accounts I reach out here, but if you didn't know, here's a #feditips for admins - you can now exclude certain text substrings from account names that users create when they sign up.
-
Hey all - I'm unsure how many other #fediadmin accounts I reach out here, but if you didn't know, here's a #feditips for admins - you can now exclude certain text substrings from account names that users create when they sign up.
SO those of you running open-door registrations and not keeping up with the spammers intruding, one way you could help all of us is disallowing words like "masto*" "mastadon", "support" and "help" and "verif*" in account names.
-
Hey all - I'm unsure how many other #fediadmin accounts I reach out here, but if you didn't know, here's a #feditips for admins - you can now exclude certain text substrings from account names that users create when they sign up.
SO those of you running open-door registrations and not keeping up with the spammers intruding, one way you could help all of us is disallowing words like "masto*" "mastadon", "support" and "help" and "verif*" in account names.
I haven't tested the complexity of these capabilities myself (I don't need them, no doors are left open here) but you might even be able to hunt down whether or not you can use regex or similar to capture problematic names based on formatting.
The current wave is morphing but still maintaining detectable patterns, such as a specific token combined with "digit string longer than 3 characters", or strategic misspellings and extraneous double/triple letters.
-
Hey all - I'm unsure how many other #fediadmin accounts I reach out here, but if you didn't know, here's a #feditips for admins - you can now exclude certain text substrings from account names that users create when they sign up.
SO those of you running open-door registrations and not keeping up with the spammers intruding, one way you could help all of us is disallowing words like "masto*" "mastadon", "support" and "help" and "verif*" in account names.
@proprietor oh, can't find anything about this, did they finally that? or is it not about mastodon?
-
I haven't tested the complexity of these capabilities myself (I don't need them, no doors are left open here) but you might even be able to hunt down whether or not you can use regex or similar to capture problematic names based on formatting.
The current wave is morphing but still maintaining detectable patterns, such as a specific token combined with "digit string longer than 3 characters", or strategic misspellings and extraneous double/triple letters.
I've also noticed that I'm still getting reports on accounts that are hosted on instances that say they have suspended the accounts, but there is no "Already suspended" flag on many of them this go-round.
Which is making me wonder if they're all actually getting caught, or someone's been harboring dozens of them in sleeper mode so when "veriiiiify321" gets caught, "veriiiify321" spins up.
-
@proprietor oh, can't find anything about this, did they finally that? or is it not about mastodon?
@thibaultmol I only have admin privs on Mastodon instances, so that's where I did see it ... Have to check one of my other accounts, this alt is actually limited to moderation and Announcements, not full admin. Gimme a few.
-
Hey all - I'm unsure how many other #fediadmin accounts I reach out here, but if you didn't know, here's a #feditips for admins - you can now exclude certain text substrings from account names that users create when they sign up.
SO those of you running open-door registrations and not keeping up with the spammers intruding, one way you could help all of us is disallowing words like "masto*" "mastadon", "support" and "help" and "verif*" in account names.
@proprietor and while people are setting this up, maybe also setup the usual. T-slur, N-word, etc
-
@thibaultmol I only have admin privs on Mastodon instances, so that's where I did see it ... Have to check one of my other accounts, this alt is actually limited to moderation and Announcements, not full admin. Gimme a few.
here it be - it's in the Admin-privileged left-side tree, under Moderation -> username rules
-
@proprietor and while people are setting this up, maybe also setup the usual. T-slur, N-word, etc
@thibaultmol Lots of preconfigured ones you can activate with one click!
-
I've also noticed that I'm still getting reports on accounts that are hosted on instances that say they have suspended the accounts, but there is no "Already suspended" flag on many of them this go-round.
Which is making me wonder if they're all actually getting caught, or someone's been harboring dozens of them in sleeper mode so when "veriiiiify321" gets caught, "veriiiify321" spins up.
@proprietor Completely open signup instances are becoming a serious problem
-
R relay@relay.an.exchange shared this topic
