Sorry for the short post, I’m not able to make it nice with full context at the moment, but I want to quickly get this announcement out to prevent confusion:

Unfortunately, people are uploading child sexual abuse images on some instances (apparently as a form of attack against Lemmy). I am taking some steps to prevent such content from making it onto lemm.ee servers. As one preventative measure, I am disabling all image uploads on lemm.ee until further notice - this is to ensure that lemm.ee can not be used as gateway to spread CSAM into the network.

It will not possible to upload any new avatars or banners while this limit is in effect.

I’m really sorry for the disruption, it’s a necessary trade-off for now until we figure out the way forward.

    • @DudePluto@lemm.ee
      6110 months ago

      Yeah, the admins deserve all our support on this. Not only to protect themselves as server owners, but to stop the spread. Hopefully a longterm solution will be found soon

      • @AeroLemming@lemm.eeEnglish
        1110 months ago

        I didn’t like Apple’s idea of scanning private images for such imagery, but I think it would be a fantastic technology to use for social media. If they open sourced it, it could help Lemmy a lot.

  • @TheAndrewBrown@lemm.eeEnglish
    11010 months ago

    I think this is a great move until we have something rock solid to prevent this. There are tons of image hosting sites you can use (most of which have the resources to already try to prevent this stuff) so it shouldn’t really cause much inconvenience.

  • Cris
    4210 months ago

    I know there are automated tools that exist for detection CSAM- given the challenges the fediverse has had with this issue it really feels like it’d be worthwhile for the folks developing platforms like lemmy and mastodon to start thinking about how to integrate those tools with their platforms to better support moderators and folks running instances.

    • Spaghetti_Hitchens
      2210 months ago

      I just shut down my instance because of this attack. Once there are better controls to prevent this, I will stand it back up.

      • Cris
        1010 months ago

        Yeah, there was a gardening instance run by a great guy who just did the same

      • @IDontHavePantsOn@lemm.ee
        710 months ago

        What do you think the purpose of these attacks are? The fediverse is so small in the grand scheme that I can only assume the worst.

      • Xusontha
        410 months ago

        Good thing my instance is only friends and friends of friends, otherwise I’d have to do the same

        What was your instance?

      • Cris
        510 months ago

        That’s fucking dope, thank you very much for the link to the issue!

      • @HelloHotel@lemm.ee
        110 months ago

        Good, its an API that can fit diffrent tools even if one is promoted. Upgrading means switching out a binary file. Posix modularization FTW.

  • Io Sapsai 🌱
    2810 months ago

    This is really sad and disgusting. It affects the whole platform but especially smaller instances that can’t keep up. Despite being a lemm.ee user, I was particularly upset about thegarden.land shutting down because of that spam. It had my favourite gardening community on here.

    I really hope this gets sorted out, and the spammers end up where they belong.

    • @pomodoro_longbreak@sh.itjust.works
      610 months ago

      I’d really love to start a small instance just to play host to a couple of niche interests I don’t see around yet, but yeah, hearing about this fucked to behavior is making me hold off.

      It has a real chilling affect on users, which is so unfortunate for a platform that is mostly made up of well meaning people

  • @Anonymousllama@lemmy.world
    2610 months ago

    Perfectly fine. People can upload images elsewhere and then just link to them. Most image upload sites will have all those protections in place already. A good stopgap until Lemmy gets those mod tools

  • iesou
    2510 months ago

    This is why we can’t have nice things.

    • @infinipurple@lemm.ee
      510 months ago

      Honestly, some people are just the worst. Why on earth anyone would waste their time doing something so vile is absolutely beyond me…

      • @HelloHotel@lemm.ee
        210 months ago

        If one enjoys the twisted pain inflicted on children, then inflicting pain that makes most adults want to use eye-bleach by showing off their plunders is to them well executed revenge on the people they dont like.

  • @randint@lemm.ee
    2410 months ago

    It’s honestly sad that some well-intentioned laws can be used to attack online platforms.

  • @Holodeck_Moriarty@lemm.ee
    2210 months ago

    This might be a good thread to ask:

    Does anyone know if any of the Lemmy apps support direct imgur uploads for Lemmy?

    I remember RIF used to do that for reddit back in the day before reddit supported direct image hosting.

      • @HelloHotel@lemm.ee
        110 months ago

        Its a bug in sombodies markdown parsing.

        Your URL was somehow HTML escaped.

        Correct

        …?width=640&height=480

        Incorrect

        …?width=640&height=480

        • @Sotuanduso@lemm.eeEnglish
          110 months ago

          I uh… don’t know what you mean there. I was just pointing out that the image I posted is hosted externally, so it doesn’t mean I found a bypass to the disabled uploads. It displays fine on the website.

          • @HelloHotel@lemm.ee
            110 months ago

            Some software somwhere has a bug in it and it broke your link, im sorry if i failed to communicate that

    • @lagomorphlecture@lemm.ee
      1710 months ago

      I’m going to go out on a limb and say they and all the other instances that were hit with this attack probably did. Which authorities, I don’t know. If this instance is hosted in Estonia then probably Estonian authorities, but it’s probably being hosted on the cloud so is it REALLY hosted in Estonia? There are a ton of American and EU users so hopefully the FBI and whatever the EU equivalent is. But honestly cybercrimes can get confusing because of the nature of people and hosting being spread out all over the world and it can be hard to even figure out who to report to.

      • @infinipurple@lemm.ee
        110 months ago

        Europol in Europe. But you can report it to your national cybercrime division and they can refer it to the appropriate authority if necessary.

    • @coffee@lemm.ee
      410 months ago

      I don’t think they made it onto this server, with the 100kb upload limit in place, that was already a rather low risk. It’s a preventive measure. So far lemmy.world was the one deliberately targeted.

    • @redballooon@lemm.ee
      2010 months ago

      There’s no need to invoke conspiracy. This is entirely possible for a single person to do, and motivations for single people may be very pity even if the consequences are widely visible.

      One misguided teenager on a power trip who enjoys how much disruption he can cause is enough for such an effect.

  • comfortablyglum
    1810 months ago

    Thank you for the efforts you are making. This is a serious situation; more than just dealing with bad actors, you are viewing traumatic images.

    Please, for your sanity and well being, prioritize your self care. Things like this linger in the psyche much longer than you would expect.

  • @GenBlob@lemm.ee
    1510 months ago

    That’s fucking disgusting. Take any measures you can to prevent that shit from being on the site.

  • Xusontha
    1510 months ago

    People like this are despicable

    Mastodon/Lemmy should work together on some tool for this, it would probably make it easier, and they both have problems with it now