Our server went down last night, after we received some messages from our provider that someone had uploaded illegal pornographic photos.

They stated that they had contacted us before ( they didn’t ) which would give us opportunity to remove them before the site going down.

The user and community where these pictures were located, we’d banned about a month ago, and it wouldn’t be possible to view them from lemmy itself, but we have yet to code purging dangling pictrs images automatically with user and community deletion, obviously now a priority for us.

We were able to trace things down and delete them, and bring the site up this morning.

Again sry for the site being down. If you find any pornographic materials on lemmy ( against our site rules ), let us know so we can remove them ASAP and keep lemmy running.

  • lavidaloca
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    3 năm trước

    Just wanted to point out that Cloudflare has a CSAM feature that you can voluntarily turn on. It will search and automatically flag any child abuse content it finds and let you know in a timely way, so you can take care of it early. Also, it blocks anyone from accessing it of course.

    Figured since everything here is publicly readable anyways, the data privacy part won’t be as much of a concern.

    • pinknoise
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      3 năm trước

      Please don’t mitm lemmy with cloudflare if possible! They wouldn’t only be able to see public stuff but also anyone’s browsing behaviour and passwords. Also they could inject malicious javascript and (non-javascript) csrf exploits.

      • lavidaloca
        link
        fedilink
        arrow-up
        1
        ·
        3 năm trước

        All fair points! I figured in the larger scheme of things that any data Cloudflare receives will not be of much use to them considering how large they are and how much they handle. And the tradeoff would be exposing some data to Cloudflare, but also a much better fighting chance at tracking down and removing such material. If there is a way to make that work I think it is at least worth looking into because of the benefits.

        • pinknoise
          link
          fedilink
          arrow-up
          1
          ·
          3 năm trước

          any data Cloudflare receives will not be of much use to them

          It likely won’t, but they operate under a jurisdiction that doesn’t accept the souvereignty of other states and actively engages in espionage and acts of terrorism online.

          the tradeoff would be exposing some data to Cloudflare

          This would expose all lemmy data to cloudflare and allow them to alter it! Also they can link lemmy users to other sites and they hinder users that need to use anonymity networks.

          Lemmy desperately needs a better moderation concept to fight illegal (and spammy) content, but using a service that endangers users can’t be a solution to any problem.