this post was submitted on 23 Jun 2023
96 points (91.4% liked)

Lemmy

12546 readers
22 users here now

Everything about Lemmy; bugs, gripes, praises, and advocacy.

For discussion about the lemmy.ml instance, go to !meta@lemmy.ml.

founded 4 years ago
MODERATORS
 

Please. Captcha by default. Email domain filters. Auto-block federation from servers that don't respect. By default. Urgent.

meme not so funny

And yes, to refute some comments, this publication is being upvoted by bots. A single computer was needed, not "thousands of dollars" spent.

you are viewing a single comment's thread
view the rest of the comments
[–] dessalines@lemmy.ml 9 points 1 year ago (3 children)

This is all 100% correct. People have already written captcha-bypassing bots for lemmy, we know from experience.

The only way to stop bots, is the way that has worked for forums for years: registration applications. At lemmy.ml we historically have blocked any server that doesn't have them turned on, because of the likelihood of bot infiltration from them.

Registration applications have 100% stopped bots here.

[–] eyy@lemm.ee 3 points 1 year ago* (last edited 1 year ago) (1 children)

You're right that captchas can be bypassed, but I disagree that they're useless.

Do you lock your house? Are you aware that most locks can be picked and windows can be smashed?

captchas can be defeated, but that doesn't mean they're useless - they increase the level of friction required to automate malicious activity. Maybe not a lot, but along with other measures, it may make it tricky enough to circumvent that it discourages a good percentage of bot spammers. It's the "Swiss cheese" model of security.

Registration applications stop bots, but it also stops legitimate users. I almost didn't get onto the fediverse because of registration applications. I filled out applications at lemmy.ml and beehaw.org, and then forgot about it. Two days later, I got reminded of the fediverse, and luckily I found this instance that didn't require some sort of application to join.

[–] xtremeownage@lemmyonline.com 2 points 1 year ago

Don't read the first sentence, and then glaze over the rest.

I am not saying captchas are completely useless, they do block the lowest hanging fruit currently. That- being most of the script kiddies.

[–] alert@lemmy.world 0 points 1 year ago (1 children)
[–] dessalines@lemmy.ml 1 points 1 year ago (1 children)

Despite all the hype about these things being able to solve all the worlds problems, they can't answer a series of contextual questions.

[–] imaqtpie@sh.itjust.works 1 points 1 year ago

Boom. Roasted.