- Short-term, we had no suggestion for a quick implementation aside from disallowing disposable emails and tor access.
- Less support for disposable one-time email addresses, as a good use case is still to be reported. (Only one request via anon DM without explanation why).
- Desire for proper per-repo and user rate limits for issue and comment submission,/also implementation of reputation score (users who submitted productive content in the past are less affected by limits). Unfortunately this is a long-term project contributors still has to show up for.
Status report and wrap-up up of poll discussion and decision since yesterday:
- Spam attacks continue, fine-grained blocks are circumvented quickly using another anonymous email provider for registration. All attacks come via tor switching IPs every few requests.
- Many expressed sympathy to keep access via tor network open as there are valid use cases (repressive countries etc).
Via @eff : The German Constitutional Court Will Revisit the Question of Mass Surveillance
POLL, please comment if you have an opinon:
Codeberg.org is being spammed by users using one-time/disposable email services and TOR connections. These spam projects with thousands of bogus issue comments, cause pain for project owners, and spam their notification email inbox. Also, Codeberg's SMTP reputation is harmed.
We consider disabling access via TOR and one-time email providers to maintain smooth operation for all users.
What do you think? Is there a better approach?
Please have your say.
Gentle reminder for all Codeberg e.V. members: this weekend it is time for our annual member assembly as announced in our last monthly letters. We will present and discuss our annual report, brainstorm ideas, and simply have a great time.
Those of you who cannot make it, no worries. As online-first organization all membership rights can be exercised online.
Looking forward to meet you all in person!
If you are looking for a Git server based in Europe, there is @codeberg.
We are hosting our blog content there, providing full transparency of all changes: https://codeberg.org/infosechandbook/blog-content
There is also a mirror of our InfoSec blog on codeberg.org: https://pages.codeberg.org/infosechandbook/index.html
You can support the German Codeberg e.V. by donating our applying for a membership. One of our contributors is an active Codeberg member.
Via @email@example.com :
Twitter is funding a small independent team of up to five open source architects, engineers, and designers to develop an open and decentralized standard for social media. The goal is for Twitter to ultimately be a client of this standard. 🧵
Full thread at: https://twitter.com/jack/status/1204766078468911106
Repo, Wiki, Issues, PRs everything is there!
So, participants, go and grab an account there if not happened already!
a great number of people made suggestions (thank you everyone who took time out of their days to write some stranger to help them!)
I decided to go with @codeberg - it is a hosted Gitea instance backed by a german "Verein" which is a construct I think is well suited for what I'm looking for. They are financed by donations and (apparently voluntary) memberships.
Find me at https://codeberg.org/ccoenen
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!