There was a conversation the other day on this, but I forget the exact details.
Open sign up is nothing is required to let you sign up.
Closed is obviously invite only/manually must be accepted.
But there’s the middle ground that wasn’t technically open sign up, where the only requirements are filling out a captcha, and usually email verification.
On feddit.de, when I registered (during the great reddit migration), I had to write a short introduction about myself too. I believe it was read by a moderator and manually accepted, but I’m not sure.
That’s how I did it. Ask a question that would be easy for anyone wanting to join, and manually accept. For my instance I never want it so big that I have to automate it anyway.
We require an email address and a response to a question on our signups. The response doesn’t need to be more than about 5 words, it’s just to stop bots putting random characters or single words in there.
So far, it has seemed to ride that balance between low bar of entry and too hard to spam with bot applicants.
That said, if I wanted to spam the Fediverse, I’d just spin up my own instance of Lemmy or Mastodon.
That said, if I wanted to spam the Fediverse, I’d just spin up my own instance of Lemmy or Mastodon.
Its actually smarter for spammers to infiltrate populated servers. Admins aren’t going to have a problem defederating from a pure spam instance. They’ll think twice about defederating from an instance with lots of legit users.
From what I can tell, all the spam is originating from Mastodon servers running ancient versions with only one original user that stopped posting a few years ago. There are a lot of Mastodon servers just hanging out there, effectively being free replacements for temporary servers set up for spamming.
I’ve started defederating from spamming servers because banning accounts doesn’t help. So far it seems to work, but no doubt there will be another wave of spam at some point.
I think open signups allow people to create an account without verification like email. I’m not sure about captchas, those might also count as a kind of verification.
open signups mean you just register via email and password (on mastodon you still have to verify your mail) and you’re good to go. On a lot of platforms you have an “approval” mode were admins have to approve each account that wants to register
What exactly is an “open” signup? Is it as opposed to invite only?
There was a conversation the other day on this, but I forget the exact details.
Open sign up is nothing is required to let you sign up.
Closed is obviously invite only/manually must be accepted.
But there’s the middle ground that wasn’t technically open sign up, where the only requirements are filling out a captcha, and usually email verification.
Ah, I see. Thank you, Sir Fuckwit McBumCrumble. 👍
On feddit.de, when I registered (during the great reddit migration), I had to write a short introduction about myself too. I believe it was read by a moderator and manually accepted, but I’m not sure.
That’s how I did it. Ask a question that would be easy for anyone wanting to join, and manually accept. For my instance I never want it so big that I have to automate it anyway.
We require an email address and a response to a question on our signups. The response doesn’t need to be more than about 5 words, it’s just to stop bots putting random characters or single words in there.
So far, it has seemed to ride that balance between low bar of entry and too hard to spam with bot applicants.
That said, if I wanted to spam the Fediverse, I’d just spin up my own instance of Lemmy or Mastodon.
Its actually smarter for spammers to infiltrate populated servers. Admins aren’t going to have a problem defederating from a pure spam instance. They’ll think twice about defederating from an instance with lots of legit users.
From what I can tell, all the spam is originating from Mastodon servers running ancient versions with only one original user that stopped posting a few years ago. There are a lot of Mastodon servers just hanging out there, effectively being free replacements for temporary servers set up for spamming.
I’ve started defederating from spamming servers because banning accounts doesn’t help. So far it seems to work, but no doubt there will be another wave of spam at some point.
So it’s somewhere between Open-Closed:
I think open signups allow people to create an account without verification like email. I’m not sure about captchas, those might also count as a kind of verification.
open signups mean you just register via email and password (on mastodon you still have to verify your mail) and you’re good to go. On a lot of platforms you have an “approval” mode were admins have to approve each account that wants to register