an appeal to the fediverse regarding anti-abuse 

Dear fediverse:

Fascism joining the fediverse is extremely bad, and we have to do something about it. But please, please, please: give me two weeks before you roll out any new solutions. Some of the solutions being proposed look like they will make the situation better but will make it much worse.

I am dropping nearly everything to write a demo and spec explaining how to do things right. Please give me two weeks. I've been preparing for this.

an appeal to the fediverse regarding anti-abuse 

As a hint as to why the current solutions aren't going to work, I'll point you to what happened when Mastodon rolled out direct messages with OStatus, but they *weren't really* private messages. An admirable attempt but it needed a different approach.

I believe this could be like that, but 10x worse. I've been studying what will happen under different approaches and trying hard to figure out how to map a solution onto what we have.

Show thread

an appeal to the fediverse regarding anti-abuse 

@cwebber what are their solutions that you find bad?

an appeal to the fediverse regarding anti-abuse 

@wilkie @cwebber more signatures, more metadata leakage, continuation of the authentication as authorization regime
Follow

re: an appeal to the fediverse regarding anti-abuse 

@kaniini @wilkie @cwebber sorry but I fail to see how signing fetch requests is more metadata leakage

re: an appeal to the fediverse regarding anti-abuse 

@Thib @kaniini @wilkie@mastodon.social @cwebber The lot of you would not be scrabling to fix this mess had you listened to the people who said this was inevitable two years ago.

re: an appeal to the fediverse regarding anti-abuse 

@Laurelai @Thib @kaniini *I've* been saying that this was coming two years ago :P

ActivityPub left holes in the spec because there were things we weren't ready to answer yet. People filled them in, understandably, in the ways they knew how. If you've followed me, you've seen me hand-wringing about it since, but i also think it's understandable.

But knowing how to do the right thing, and not break the ways things rolled out, required research.

re: an appeal to the fediverse regarding anti-abuse 

@cwebber @Thib @kaniini Out of curiosity how many women who have been targets of these people did you speak to? Do you know the kinds of tactics these assholes use?

re: an appeal to the fediverse regarding anti-abuse 

@Laurelai @Thib @kaniini I do know the tactics, and I have been talking to women and other groups about it, since before ActivityPub became an official standard, yes.

re: an appeal to the fediverse regarding anti-abuse 

@cwebber @Thib @kaniini Ok good. So you know you need to find a way to make blocks actually meaningful then. Also a way to make suspensions also meaningful. Because right now all they do is hide whats going on and the bad actors can still see you and incite their crowds against you. So the end result is you dont know whats going on until its too late to defend yourself.

re: an appeal to the fediverse regarding anti-abuse 

@cwebber @Thib @kaniini Because honestly if i suspend an instance my posts should be invisible to them no matter what and if you cant fix that then you need to burn activitypub to the ground and start over until you can.

re: an appeal to the fediverse regarding anti-abuse 

@Laurelai @Thib @kaniini Anyway, that's all I'm saying on the matter. You can believe me or not that I've done the research; that's up to you.

I'm putting myself on a tight timeline so I think at this point it's better for me to show by actually delivering the writeup and code. You can judge for yourself, then.

re: an appeal to the fediverse regarding anti-abuse 

@cwebber @Laurelai @Thib

i know the tactics bullies use having been the recipient of them over the past basically forever of my life.

but i don't even consider bullies the threat vector. we need to have a serious conversation about commercial and nation-state surveillance, all of which are much more serious threats to activists.

re: an appeal to the fediverse regarding anti-abuse 

@kaniini @cwebber @Thib The nazis are here right now. You can ignore them while they organize terror here if you want to, but i sure wont.

re: an appeal to the fediverse regarding anti-abuse 

@Laurelai @cwebber @Thib

who says i am ignoring them?

re: an appeal to the fediverse regarding anti-abuse 

@cwebber @kaniini @Thib @Laurelai Perhaps ActivityPub shouldn't have been rushed out the door by W3C to appease gargon

re: an appeal to the fediverse regarding anti-abuse 

@tuttle @cwebber @Laurelai @Thib

i don't think that is a fully accurate representation of what happened.

the deadline for the W3C Social WG to finish up its work was looming and AP would have died entirely if Mastodon didn't adopt it.

it then got rushed out the door because the extension deadline was looming.

re: an appeal to the fediverse regarding anti-abuse 

@kaniini @cwebber @tuttle @Thib that’s honestly worse

re: an appeal to the fediverse regarding anti-abuse 

@Laurelai @cwebber @tuttle @Thib

I didn't say it was good, did I? but we are working to fix the fallout. it will be incremental, but we will get there

re: an appeal to the fediverse regarding anti-abuse 

@tuttle @cwebber @Thib @kaniini
The cool thing about Mastadon is, you get to choose who you follow, and pick the servers you want to communicate with! If you don't like someone, there's a big ol block button or mute button you can smash, and all kinds of ways to filter the feeds too.

Just follow only the users you trust, and if they sometimes post naughty stuff, just filter the NSFW keywords or content warnings or whatever. There you go, your own private little world within another little world.

And if more trolls are watching public posts that really just means, just be mindful about what you post publicly! Or better yet don't post risky stuff at all!

Fediverse is like a Camel Crush: it's all about freedom and control.
image.png
Sign in to participate in the conversation
Mastodon (instance perso)

This is a small personal instance running on a couple small ARM servers at home.