Status report and wrap-up up of poll discussion and decision since yesterday:
- Spam attacks continue, fine-grained blocks are circumvented quickly using another anonymous email provider for registration. All attacks come via tor switching IPs every few requests.
- Many expressed sympathy to keep access via tor network open as there are valid use cases (repressive countries etc).
- Short-term, we had no suggestion for a quick implementation aside from disallowing disposable emails and tor access.
@codeberg You could do what Mastodon does when times are tough and switch to a mode in which registrations are no longer automated and require a mod to approve. You could then (theoretically) grep and delete buttloads of garbage requests because most spammers put garbage in the request fields, and it's usually all the SAME garbage so they make it so much easier.
@af registration requires a captcha already, attacks are executed via api
This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!