XMPP Service Operators - 2022-08-31

> moparisthebest wrote: > Think of what you could do with a wildcard a record pointed at your IP you demon

SaaS = spam as a service?

Hi, does anyone know of a working Telegram XMPP transport? Those I've tried don't accept the login code. Sorry if it's off topic.

you tried matterbridge?

moparisthebest, JabberSPAM would just move to listing whole domains instead of single names :p

or, you know, move to whitelisting invite-only servers a be done, forever

jikes

Well an allow by default model never works imo. Thats how you end up with spam and harassement.

Its better the block by default and then allow selectively

doesn't jabberspam already list whole domains?

It does. Not including subdomains

I confess I don't get the threat model of "s2s spam" and how that would even work. But this might be the wrong channel for that. I would've thought some random s2s (so a unknown sever) would be blocked like we do now.

We don't blindly block _unknown_ servers do we? But yes if we managed to end up with a clear separation of ham and spam domains that would make it more feasible to block entire domains of course, once identified.

> Not including subdomains so, single domain names, not domains in the sense "everything under foo.tld"

> Its better the block by default and then allow selectively If the one and only goal is spam prevention, yes.

More like consent. But yeah probably in my server its gonna be like that

And how do you evaluate which incoming s2s is due to legit contacts trying to reach you and which due to spam?

If its 1:1 you know the contact. Either through IRL or a group. If its groups you check the site of the host, their social networks. Or contact them.

Everyone else can contact you through another medium for you to let them in.

That's where I'd stop trying to reach you. Sounds almost as annoying as the infamous captcha spam from block_strangers. 😂

09:24:52 msavoritias> If its 1:1 you know the contact. Either through IRL or a group. that's not true, e.g. support@search.jabber.network.

Thats the point ;) People that you want to contact and they want to contact you, wiln be allowed. Everybody else will not bother

Spammers included

Or abuse

> jonas’: > 09:24:52 msavoritias> If its 1:1 you know the contact. Either through IRL or a group. > that's not true, e.g. support@search.jabber.network. If there is a need for that in my server i will allow it :)

> Me: > Thats the point ;) > People that you want to contact and they want to contact you, wiln be allowed. > Everybody else will not bother > Spammers included > Or abuse Or will be filtered out of course.

Well. In the world where xmpp is as big as email. I can see similar measures needed.. But there has to be much more spam for me to take the ultimate measure of s default block

I think thats the very last, not on of the first

I dont see it just for spam. Its just one aspect of it. But yeah if you want it just for spam we dont have that much right now to be only on allowlist mode.