Skip to main content

Hallo alle Fedi-Admins die Probleme mit Spam haben!

Die Mute-Liste 2.2.2


Ich habe die Spam-Liste aktualisiert und ~104 zusätzliche Instanzen gefunden, die weiterhin spammen! Ich habe, mit viel Hilfe von anderen Fedi Admins, die Instanzen in einer Liste zusammengestellt, die sie stumm schaltet und nicht von ihnen deföderiert!

Ich würde mich sehr über eine kleine Spende hier freuen, da Ich wirklich hart und lange an der Erstellung dieser Liste gearbeitet habe, was Ich angesichts meines aktuellen Zeitplans kaum rechtfertigen kann! Dankeschön!

Es gibt eine neue Art von Spam, die gleichen Instanzen sind betroffen wie vorher. Die Verantwortlichen in Japan sollen verhaftet worden sein.

Downloaded die Liste hier.

Anleitung und Erklärung zur Liste.

Ist diese Liste importiert ist ein Großteil des Spams vorbei. Das ganze ist für euch leicht, geht mit einem klick! Zudem wird keinerlei Instanz für immer geblockt, keinerlei Follower etc. zerstört oder deföderiert, sondern nur stummgeschaltet. Das ist sehr leicht umkehrbar.

Ihr könnet diese Liste einfach importieren, indem ihr auf https://yourinstance.tld/admin/export_domain_blocks/new geht und yourinstance.tld durch die Domain derer Instanz ersetzt, von der ihr der Administrator seid!

Alternativ könnt ihr auch auf Einstellungen => Moderation => Föderation => Importieren drücken, um diese Liste zu importieren.

Beachtet, dass zwar alle Instanzen mit einem Klick importiert werden können, dass aber diese Instanzen einzeln entfernt werden müssen, wenn der Spam vorbei ist.

Beachtet auch, dass es nur Sinn ergibt, diese Liste zu importieren und die Spam-Instanzen stumm zu schalten, wenn ihr euren Spam lokal und nachhaltig blockiert habt, wie hier beschrieben.

Auf ein Spam-Freies Fediverse :apartyblobcat:​ !

#MastoAdmins #FediBlock #Spam #Spamwelle #Fedimins #FediAdmin #FediAdmins FediAdminDE

Erik Uden 🦣🍑:coffefied:

2024-02-16 08:50:43


To all Fedi Admins Currently Being hit with a Spam Wave:


This kind of spam is now over! Unmute all the instances no longer on my list!

I've just released v4.0.0 of The UNmute List! I'd be very happy about a small donation because I have very little time and I cannot really justify working on this list with my current schedule :mycomputer:

There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.

Without further ado...

Limit these instances:

[Full List of Affected Instances Here]

Just get the list to download and import here.

Simply import this list and you'll mute the 47 worst spam instances currently known to me! I've worked on it for multiple weeks, sometimes ~9 hours at a time verifying all lists sent to me manually.

Limit first, defederate only in worst situations!

Consider re-federating with and un-silencing any of the mentioned instances once the spam is mitigated. The admins of some of these may have just been asleep when this all started.

Ban Spam Accounts via their E-Mail Domain


Block the following E-Mail Domain and whatever temp Mail provider it resolves to: chitthi.in

Just to be safe, block these ones too (same provider)

  • mailto.plus
  • fexpost.com
  • fexbox.org
  • mailbox.in.ua
  • any.pink

All our spam accounts came from these E-mails.

Since you probably have some of these accounts sleeping:

https://[your-instance.tld]/admin/accounts?email=%25%40chitthi.in there just select all and press “Ban”.

Find Remaining Spammers


I've seen instances that fixed the spam issue but began being hit later again. The spammers might use new E-Mails, so here is a way to find and block them anyway:

https://mamot.fr/@vincib/111946701929274350

IP Bans and TOR


These spammers seem to be using the TOR Network as all of their IPs are TOR Exit Node IPs, hence an idea (with some collateral damage if executed) would be to ban all TOR exit node IPs for sign ups. I am personally against this idea as you'd also prevent users who simply wish to stay anonymous online (political refugees, leakers of important documents, etc.) from using your platform. For now, simply banning every user using a particular Spammer IP will not help and will merely ban users that try to stay anonymous! Not necessarily the spammers.

How To Block All Temp E-Mails in the Future


If you want to prevent this from ever happening again, you should block E-Mails from Temporary Mail providers all together:

Because of this, hessen.social, for example, was not affected by the spam attack! They had already banned the email domain the spammers used ages ago.

In future updates on Mastodon, maybe Admins can simply click a button that says “Ban Temp E-Mail Providers” Automagically from the E-Mail Menu? There could be E-Mail categories that can be banned, such as temporary mails.

Why did this happen?


The real reason hundreds of us spent hours of our days during the spam on mitigating it is the following:

Cyberbullying Gone Global: Fediverse Spam and Operation Beleaguer

This is the full exposé @cappy has been working on regarding the February 15th Spam Attacks!

Thank you @BrodieOnLinux for mentioning this post in a video!

Good luck, everyone!
Thanks for participating in the Fediverse Experiment!

#FediBlock #FediAdmin



GitHub - disposable-email-domains/disposable-email-domains: a list of disposable and temporary email address domains

a list of disposable and temporary email address domains - disposable-email-domains/disposable-email-domains
GitHub

#spam #FediBlock #fediadmin #fediadmins #mastoadmins #spamwelle #fedimins
This entry was edited (2 months ago)
in reply to Erik Uden 🦣🍑:coffefied:

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:

Hello all Fedi Admins who have problems with spam!

The Mute List 2.2.2


I have been updating the spam list and found ~104 additional instances that continued spamming! I, with lots of help of other Fedi Admins, have compiled the instances into a list which mutes them, and does not defederate from them!

I'd highly appreciate a small donation here as I've worked really hard and long on creating this, which given my current schedule I can hardly justify! Thanks!

There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.

Download the list here.

Instructions and Explanation of the List.

Once this list is imported, most of the spam is gone. The whole thing is easy for you, with just one click! In addition, no instance is blocked forever, no followers etc. are destroyed or unfollowed, only muted.

You can simply import this list by going to https://yourinstance.tld/admin/export_domain_blocks/new and replacing yourinstance.tld with the domain of the instance you are the administrator of!

Alternatively, you can also click on Settings => Moderation => Federation => Import to import this list.

Note that although all instances can be imported with one click, these instances must be removed individually when the spam is over.

Also note that it only makes sense to import this list and mute the spam instances if you have blocked your spam locally and permanently, as described here.

Here's to a spam-free Fediverse :apartyblobcat: !

#MastoAdmins #FediBlock #Spam #Spamwave #Fedimins #FediAdmin #FediAdmins FediAdminEN

Erik Uden 🦣🍑:coffefied:

2024-02-16 08:50:43


To all Fedi Admins Currently Being hit with a Spam Wave:


This kind of spam is now over! Unmute all the instances no longer on my list!

I've just released v4.0.0 of The UNmute List! I'd be very happy about a small donation because I have very little time and I cannot really justify working on this list with my current schedule :mycomputer:

There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.

Without further ado...

Limit these instances:

[Full List of Affected Instances Here]

Just get the list to download and import here.

Simply import this list and you'll mute the 47 worst spam instances currently known to me! I've worked on it for multiple weeks, sometimes ~9 hours at a time verifying all lists sent to me manually.

Limit first, defederate only in worst situations!

Consider re-federating with and un-silencing any of the mentioned instances once the spam is mitigated. The admins of some of these may have just been asleep when this all started.

Ban Spam Accounts via their E-Mail Domain


Block the following E-Mail Domain and whatever temp Mail provider it resolves to: chitthi.in

Just to be safe, block these ones too (same provider)

  • mailto.plus
  • fexpost.com
  • fexbox.org
  • mailbox.in.ua
  • any.pink

All our spam accounts came from these E-mails.

Since you probably have some of these accounts sleeping:

https://[your-instance.tld]/admin/accounts?email=%25%40chitthi.in there just select all and press “Ban”.

Find Remaining Spammers


I've seen instances that fixed the spam issue but began being hit later again. The spammers might use new E-Mails, so here is a way to find and block them anyway:

https://mamot.fr/@vincib/111946701929274350

IP Bans and TOR


These spammers seem to be using the TOR Network as all of their IPs are TOR Exit Node IPs, hence an idea (with some collateral damage if executed) would be to ban all TOR exit node IPs for sign ups. I am personally against this idea as you'd also prevent users who simply wish to stay anonymous online (political refugees, leakers of important documents, etc.) from using your platform. For now, simply banning every user using a particular Spammer IP will not help and will merely ban users that try to stay anonymous! Not necessarily the spammers.

How To Block All Temp E-Mails in the Future


If you want to prevent this from ever happening again, you should block E-Mails from Temporary Mail providers all together:

Because of this, hessen.social, for example, was not affected by the spam attack! They had already banned the email domain the spammers used ages ago.

In future updates on Mastodon, maybe Admins can simply click a button that says “Ban Temp E-Mail Providers” Automagically from the E-Mail Menu? There could be E-Mail categories that can be banned, such as temporary mails.

Why did this happen?


The real reason hundreds of us spent hours of our days during the spam on mitigating it is the following:

Cyberbullying Gone Global: Fediverse Spam and Operation Beleaguer

This is the full exposé @cappy has been working on regarding the February 15th Spam Attacks!

Thank you @BrodieOnLinux for mentioning this post in a video!

Good luck, everyone!
Thanks for participating in the Fediverse Experiment!

#FediBlock #FediAdmin



GitHub - disposable-email-domains/disposable-email-domains: a list of disposable and temporary email address domains

a list of disposable and temporary email address domains - disposable-email-domains/disposable-email-domains
GitHub

#spam #FediBlock #fediadmin #fediadmins #mastoadmins #fedimins #spamwave
This entry was edited (2 months ago)
in reply to Erik Uden 🦣🍑:coffefied:

Managing Barista and Janitor
Managing Barista and Janitor

Yoink!

Thanks so much, Erik, been waiting for this. Considered assembling my own except I've been too busy suspending accounts and closing reports! 😜

in reply to Erik Uden 🦣🍑:coffefied:

alex :anarcat::gndf::tism::celadhd::nbin::tbh:
alex :anarcat::gndf::tism::celadhd::nbin::tbh:
could you post a file with just the instance names please?
in reply to alex :anarcat::gndf::tism::celadhd::nbin::tbh:

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:
@graphite yes! That is the first link in the above post. Or do you mean, not with the Mastodon CSV stuff that helps importing? Wait, I will work on it...
@alex :anarcat::gndf::tism::celadhd::nbin::tbh:
in reply to Erik Uden 🦣🍑:coffefied:

alex :anarcat::gndf::tism::celadhd::nbin::tbh:
alex :anarcat::gndf::tism::celadhd::nbin::tbh:

I was talking about the instnaces without the mastodon stuff.

Regardless, thanks for making the list! (and mentioning me (the account you mentioned is my alt :p))

in reply to Erik Uden 🦣🍑:coffefied:

Lewis
Lewis
Do you have an idea why or who is doing this?
in reply to Lewis

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:

@LewisHarrington yes, read here: https://mastodon.de/@ErikUden/111940301222380638

Erik Uden 🦣🍑:coffefied:

2024-02-16 08:50:43


To all Fedi Admins Currently Being hit with a Spam Wave:


This kind of spam is now over! Unmute all the instances no longer on my list!

I've just released v4.0.0 of The UNmute List! I'd be very happy about a small donation because I have very little time and I cannot really justify working on this list with my current schedule :mycomputer:

There is a new type of spam, the same instances are affected as before. Those responsible in Japan are said to have been arrested.

Without further ado...

Limit these instances:

[Full List of Affected Instances Here]

Just get the list to download and import here.

Simply import this list and you'll mute the 47 worst spam instances currently known to me! I've worked on it for multiple weeks, sometimes ~9 hours at a time verifying all lists sent to me manually.

Limit first, defederate only in worst situations!

Consider re-federating with and un-silencing any of the mentioned instances once the spam is mitigated. The admins of some of these may have just been asleep when this all started.

Ban Spam Accounts via their E-Mail Domain


Block the following E-Mail Domain and whatever temp Mail provider it resolves to: chitthi.in

Just to be safe, block these ones too (same provider)

  • mailto.plus
  • fexpost.com
  • fexbox.org
  • mailbox.in.ua
  • any.pink

All our spam accounts came from these E-mails.

Since you probably have some of these accounts sleeping:

https://[your-instance.tld]/admin/accounts?email=%25%40chitthi.in there just select all and press “Ban”.

Find Remaining Spammers


I've seen instances that fixed the spam issue but began being hit later again. The spammers might use new E-Mails, so here is a way to find and block them anyway:

https://mamot.fr/@vincib/111946701929274350

IP Bans and TOR


These spammers seem to be using the TOR Network as all of their IPs are TOR Exit Node IPs, hence an idea (with some collateral damage if executed) would be to ban all TOR exit node IPs for sign ups. I am personally against this idea as you'd also prevent users who simply wish to stay anonymous online (political refugees, leakers of important documents, etc.) from using your platform. For now, simply banning every user using a particular Spammer IP will not help and will merely ban users that try to stay anonymous! Not necessarily the spammers.

How To Block All Temp E-Mails in the Future


If you want to prevent this from ever happening again, you should block E-Mails from Temporary Mail providers all together:

Because of this, hessen.social, for example, was not affected by the spam attack! They had already banned the email domain the spammers used ages ago.

In future updates on Mastodon, maybe Admins can simply click a button that says “Ban Temp E-Mail Providers” Automagically from the E-Mail Menu? There could be E-Mail categories that can be banned, such as temporary mails.

Why did this happen?


The real reason hundreds of us spent hours of our days during the spam on mitigating it is the following:

Cyberbullying Gone Global: Fediverse Spam and Operation Beleaguer

This is the full exposé @cappy has been working on regarding the February 15th Spam Attacks!

Thank you @BrodieOnLinux for mentioning this post in a video!

Good luck, everyone!
Thanks for participating in the Fediverse Experiment!

#FediBlock #FediAdmin



GitHub - disposable-email-domains/disposable-email-domains: a list of disposable and temporary email address domains

a list of disposable and temporary email address domains - disposable-email-domains/disposable-email-domains
GitHub

@Lewis
in reply to Erik Uden 🦣🍑:coffefied:

Werawelt
Werawelt
Danke für die Fleiß-Arbeit und ein Spam-freies Fediverse dadurch 🤩 👏
in reply to Erik Uden 🦣🍑:coffefied:

Adam John
Adam John
I have been wondering about RBL for mastodon... This is a good start. I may be submitting a PR if I have any additional ones, as I'm sure was the intent when it was put out on GitHub. 👍
in reply to Erik Uden 🦣🍑:coffefied:

the esoteric programmer
the esoteric programmer

Content warning: Long post

in reply to the esoteric programmer

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:

Content warning: Long post

@the esoteric programmer
in reply to Erik Uden 🦣🍑:coffefied:

the esoteric programmer
the esoteric programmer

Content warning: Long post

in reply to Erik Uden 🦣🍑:coffefied:

Yahia Lababidi
Yahia Lababidi
Erik, thanks, for your support. Not able to follow your instructions, sorry. Can you help me block spam from my account?
in reply to Erik Uden 🦣🍑:coffefied:

Joerg Jaspert :debian:
Joerg Jaspert :debian:

Danke. Nun ist nur die Frage, wie man halbwegs vernünftig mitbekommt, das die Instanzen sich bewegt haben, und von denen kein Spam mehr ausgehen wird....

Moderation und Administration ist im Fediverse irgendwie technisch leider nur suboptimal umsetzbar.

#MastoAdmins #Fediblock #Spam #Spamwelle #FediAdmin #FediAdmins #FediaAdminDE

#spam #FediBlock #fediadmin #fediadmins #mastoadmins #spamwelle #fediaadminde
in reply to Joerg Jaspert :debian:

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:

@Ganneff Das stimmt! Tatsächlich hat das Mastodon Dev Team dazu schon eine Lösung, leider darf Ich darüber nicht reden.

Der Weg wie Ich es mache: manuell. Ich gehe jede einzelne Instanz durch und checke ob der Spam noch da ist.

Ich habe sogar eine exakte Schritt für Schritt Anleitung geschrieben wie man das macht:
https://github.com/Mastodon-DE/blocklists/blob/main/spam/2024-02-15/how-to-proceed-as-mod-DE.md

Vielleicht eröffnen wir so diese Liste als kollaborativen Aufwand!

Naja, es gibt viele Optionen, doch mit dem was uns momentan möglich ist heißt es nur: viel Arbeit!

Toi toi toi! :apartyblobcat:

@Joerg Jaspert :debian:
Unknown parent

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:

@friedi öffentlich! Aber so gut wie jede kleine Instanz ist betroffen.

Der Spam markiert einfach ganz viele User und hängt ein Bild dran, das frisst unnötigen Speicherplatz und ist für viele sehr nervig!

@friedi
in reply to Erik Uden 🦣🍑:coffefied:

Miu Mew Meow
Miu Mew Meow
Wie funktioniert das überhaupt? Wenn ich jetzt eine Instanz baue dann sendet die direkt automatisch an alle anderen? Gibt es da nichts wie eine Vermittlungsstelle bei der man sich anmelden muss und die auch aussortieren könnte??
in reply to Miu Mew Meow

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:
@miu Es gibt keine zentrale Vermittlungsstelle, und nein, keine Instanz muss sich bei allen melden! Wenn du eine neue Instanz aufsetzt dann kannst du allen Menschen von anderen Instanzen folgen und alle Menschen von anderen Instanzen können dir folgen! Dadurch werden Instanzen überhaupt aufeinander aufmerksam. Intern merkt sich die Instanz was für andere Instanzen es gibt und sendet immer Pings hin und her um zu gucken ob sie noch leben.
@Miu Mew Meow
in reply to Erik Uden 🦣🍑:coffefied:

Miu Mew Meow
Miu Mew Meow
Das heißt dann auch es gibt nicht sowas wie allowlisten nur blocklisten? Also wenn ich meine eigene haben kann ich der nicht sagen du darfst NUR mit x, y, z sprechen.
in reply to Erik Uden 🦣🍑:coffefied:

Takako 🐀
Takako 🐀
the spam seems to have ceased, thanks to our awesome admin @KuJoe and all of you working hard. Thank you! 🙌 🫶
@KuJoe 💞
in reply to Takako 🐀

Takako 🐀
Takako 🐀

Hallo. I spoke too soon. Just got a new spam from the instance not on the master list.

s-h.social

I’m gonna filter this word, “荒らし” (means “vandalism” and phonetically read “arashi”) for now. It’s apparently a website name they spammed.

[edit to add] Another one!

mastodon.berlin

Btw, thank you for alphabetizing the list!

This entry was edited (2 months ago)
in reply to Takako 🐀

Erik Uden 🦣🍑:coffefied:
Erik Uden 🦣🍑:coffefied:
@otterX Thanks, just added yours to the list! How do you filter words as an admin for a whole instance? Or is that just possible individually?
@Takako 🐀