600
Lemmy.world seems to have banned the largest piracy community on Lemmy. (lemmy.dbzer0.com)
submitted 6 months ago* (last edited 6 months ago) by [email protected] to c/[email protected]
303 comments fedilink hide all child comments

This has happened once before and they reversed it. But they said this last time too:

The discussions that have happened in various threads on Lemmy make it very clear that removing the communites before we announced our intent to remove them is not the level of transparency the community expects, and that as stewards of this community we need to be extremely transparent before we do this again in the future as well as make sure that we get feedback around what the planned changes are, because lemmy.world is yours as much as it is ours.

https://lemmy.world/post/3234363

you are viewing a single comment's thread
view the rest of the comments
[-] [email protected] 39 points 6 months ago

Lemmy makes local copies of everything when federation occurs. It's 100% on their server. The only exceptions are images posted as part of the comments, those are loaded directly. Then again, that adds the ability to add tracking pixels, so that's not exactly great for a piracy community either.

Image loading example

I turned off all the logging for this proof of concept but this could've been a transparent PNG pixel that tracks every bit of information your browser will give it.

[-] [email protected] 17 points 6 months ago

Oof, yeah that's bad...

[-] [email protected] 13 points 6 months ago

Neat. Has anyone brought this up to the devs here or on github before?

[-] [email protected] 11 points 6 months ago

I'm not sure, but anything doing Markdown parsing and allowing images to be embedded is vulnerable to this. I kind of doubt that the devs don't know about this.

The alternative would be to download every image on the server and cache it until users start requesting the image files, rewriting the Markdown to link to the new image location. I can think of a few reasons why that's not implemented.

Proxying all comments was implemented in the backend at some point, I'm not sure why this feature was removed again. I can't find much in the repo history, you could ask the devs why the feature got removed if you're curious.

[-] [email protected] 2 points 6 months ago* (last edited 6 months ago)

you could safeguard against this on the client side by not loading images from untrusted sources. irc clients did this

[-] [email protected] 13 points 6 months ago

Ayo what the fuck how'd you do that

[-] [email protected] 31 points 6 months ago

Your client asks my server for the image, my server does a basic IP location lookup based on a free internet database I downloaded last year and turns it into an image on the fly.

[-] [email protected] 3 points 6 months ago

Got the state correct ๐Ÿ‘

[-] [email protected] 2 points 6 months ago* (last edited 6 months ago)

i really wish there were a way to disable images with some of these fancy lemmy clients for android. I'm not interested in any of them

[-] [email protected] 3 points 6 months ago

If you use Sync, there's this setting you can toggle to disable embedded images. I'm not sure if this protects against network requests, but I think it should? If you disable the, images are represented as links instead.

[-] [email protected] 2 points 6 months ago

nice. yea it replaces your image with a link.

this post was submitted on 19 Mar 2024
600 points (96.3% liked)

Fediverse

27842 readers
83 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]