Comment on The Fediverse has a DDoS problem
catloaf@lemm.ee 6 months agoThe first server should be the one it was posted to. Then federate the embed just like the post itself.
If a server is malicious, it doesn’t matter if that malice is transmitted in the post or in the embed, it should be defederated just the same.
skullgiver@popplesburger.hilciferous.nl 6 months ago
Zak@lemmy.world 6 months ago
In this case, generating fake excerpts is not something a user on a server controlled by someone else can do; they have to operate a malicious server themselves. Defederation is a good solution to malicious servers.
Certainly someone very determined could spin up a bunch of malicious servers and put out a bunch of posts containing fake excerpts, but they’d need followers to get any reach on the microblog side of the fediverse. They could spam Lemmy communities, but users would notice and downvote/report the posts.
So I think “just defederate” probably is an adequate solution here, at least as things currently sit. Were the fediverse to grow by an order of magnitude, I think it would need a reputation system to add a bit of friction to a brand new server or user getting a lot of reach quickly.