The State of Texas, The Daily Wire and The Federalist Sue the State Department Over Censorship Regime
The fediverse won't succeed if we have so many people here that are opposed to these values that underpin the fediverse and frustrating efforts towards this goal. Not everyone has to care, but it is bad news if the people behind the code and running instances don't share in these values.
sometimes i feel this dreading thought that so many people around me are connected via tiktok, and that im self-isolating from so many people. but then i remember that the type of people i wanna be friends with arent the ones that actively use tiktok
Do fedi servers have the ability to blackhole an IP? Instead of just block?
Literally just 302 to a special server who's entire reason for being is to hold the port open and sometimes give wait responses until the requester times out.
It's a great way of tying up someone's server.
You can also 302 to fake data too. If you think the researcher is being a complete pig. Poison their data with pure garbage.
there is currently a bot inside MIT IP space, address
18[.]4[.]38[.]176, scanning fedi at large. i have confirmed this with 5+ unrelated instance admins, large and small instances, across mastodon/misskey/pleroma/akkoma.
the bot is poorly behaved. i have observed it making repeated requests, multiple times per second, for the exact same paths (the paths being, generally: user profiles, specific posts, and sometimes following links in posts). returning 403s does not stop this activity. one of my domains received hundreds of additional requests despite replying with 403 to all of them. i have also seen it make requests for paths containing html tags - seems like a badly written parser. the purpose of these requests and what data is being gathered is unclear.
PTR on the ip returns
sts-drand03.mit.edu. a quick web search for "mit drand" brings back https://mitsloan.mit.edu/faculty/directory/david-g-rand and his personal website: https://davidrand-cooperation.com/ (note: other IPs in the /24 also have names in the PTR which match up with names of MIT faculty, but only the .176 IP appears to be involved in this activity).
seems he's doing research into "misinformation" and "fake news" on social media. he also appears to be on fedi! so @Drand@techhub.social, given this activity is sourced from an IP with your name on it, could you share the purpose of this traffic? what data is being collected and how is it being used? do you plan to respect robots.txt or identify yourself in your useragent? is there a process for instance admins to opt out of this activity other than blocking the source IP?