Oddbean new post about login | logout @Fabian could we have a setting to reject all replies to a post that come up less than 5 seconds after a post? Humans can’t reply that fast
Then the bot will have a delay timer.
you are seeing bots?
Hmm posts are hidden under “Show more” so kind of no? But I could care less about a post that is an immediate reply to my posts that a human could simply not make: 1. They did not read my post, and 2. no way a human could respond that fast. It takes about 300ms for each character in average on a keyboard so the timing just doesn’t add up.
probably better if I find more ways to get normal people out of “Show more” because other solutions are too easy to circumvent
Most annoying spam happens in the first few seconds of a post and is from a fresh npub. Spammers are not incentivized into replying to old posts, just new ones otherwise they get little visibility. How about: replier npub is first seen (or in a long time) to your post PLUS content length vs created time exceeds what is humanly possible.
from the spammers perspective I would just make the content length like a normal reply and the created time also random between 20-120 seconds, its just cat and mouse and the spammer can adjust faster
I think it’s a combination of measures that make it more effective, not just one, like security that works in layers you must be able to beat all layers to make it thru, it is a cat and mouse game but most spam is not sophisticated. We can deal with the sophisticated ones later and still have a first few layers of defense. WoT has done pretty good so far, but leaves legit new users out in the cold. It doesn’t make sense to tackle at the relay level because most relays don’t know what’s happening on other relays, only clients know.
they'll just adjust the timestamp to circumvent this..
We could just not use created time but arrival time/first seen.
good thinking npub creation or first post timestamp can used as FILTER KEY no legit manual npub or test npub can still be allowed any npub age of few secs or hours can be blocked / dynamic cache block-listed for spamming if they bypass using mass old npubs? then throttle can take care from there
💯This too! First time this npub is ever seen replying immediately to a post? Bye bye bye script kiddie spam First time in a long time this npub is ever seen replying immediately to a post? To the dumpster it goes. This prevents pre-creating profiles that then can be used en masse
correct approach for NOSTREAM others should mirror their code once u do - time gap between reply - age of npub - frequency of reply or new on the SAME relay (no human can do this within secs - even telegram discord have this control ) then final hammer WoT or POW is always there now MOST relay software
The problem is that addressing it at the relay level won’t work because the spammer is sending brand new npubs and different messages to a bunch of relays. Nostream already blocks a single IP from sending too many messages in a short time but let’s be real most relays aren’t Nostream and poor rate limiting.
I reply that fast on my own posts lmao 👉 thread creation