this post was submitted on 30 Jun 2023
173 points (99.4% liked)

/kbin meta

110 readers
1 users here now

Magazine dedicated to discussions about the kbin itself. Provide feedback, ask questions, suggest improvements, and engage in conversations related to the platform organization, policies, features, and community dynamics. ---- * Roadmap 2023 * m/kbinDevlog * m/kbinDesign

founded 1 year ago
173
PSA: every interaction you make with various posts on kbin is viewable to everyone. (kbin.social)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
93 comments fedilink hide all child comments
 

If you click on the "more" button under a comment or link there will be an activity tab. In this tab you can see everyone who has boosted, favourited or reduced the post. I'm not sure if this a
Is a good feature but it's interesting to see when someone decides to reduce all of your content for no reason.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 1 year ago* (last edited 1 year ago) (1 children)

Yeah. Because each instance would have a record of that but there’s nothing to stop a bad actor from doing that on one instance and federating that out.

Of course a bad actor can set up their own instance and just create thousands of fake bot accounts and do the same.

Edit: The more I think about it @VerifiablyMrWonka the only way to do it would be to have some kind of activitypub transaction that is flagged as an instances reputation.

E.g. it’s the same as using the per instance account but it allows you to say “here’s how kbin.social” calculated the reputation/weight of this item.

And then each instance can opt to include that or not as they see fit. Maybe they federate with all instances but only show the weight/reputation “favorites”/“reduce” from those that they trust to maintain that info. Lemmy.world, sure, but the new instances such as haxor.1488.de.feder.at yeah… that’s probably a no so by default all of those don’t show/include in that instances feed.

[–] [email protected] 1 points 1 year ago (1 children)

Of course a bad actor can set up their own instance and just create thousands of fake bot accounts and do the same.

A competent admin would then just defederate from them. Easy. But now throw in that all kbin instances look like bot fests and what do you do? Maybe what lemmy.ml have done and just block kbin useragents at the firewall.

Having an aggregate account that just sends totals could work, but then vote brigading just became even easier. What's that aggregate bot? Did you just send a vote ratio of 300:1.9k for this comment? Lovely.

It's a very hard problem to solve and I'm not sure it's doable. The only thing keeping ActivityPub together is the fact that it's so transparent and bad actors are easily spotted and blocked. As soon as you muddy the waters the primary benefactor is the bad person.

[–] [email protected] 1 points 1 year ago

That’s true. Just something to consider since there are real life bad actors and things can and will be a security/safety risk for some groups