• PerfectParanoia
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    I guess the openness of the registration process and instance creation would invite this low effort type of attack. I also bumped in a post that reported community name squating, where accounts were creating empty communities with popular subreddit names in order to sell them later on I guess? I just don’t see the actual benefit of it, it seems more of an oppurtinistic play more than anything else.

    • 𝕊𝕚𝕤𝕪𝕡𝕙𝕖𝕒𝕟
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      1 year ago

      Community name squatting doesn’t make sense at all because different instances can have communities with the same name. So unless they manage to create one on all of the big instances, that’s completely useless.

      • PerfectParanoia
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        That’s what it seems like to me too. Plus there is nothing stopping admins of instances transferring ownership in these situations.

          • ruffsl
            link
            fedilink
            English
            arrow-up
            2
            ·
            1 year ago

            When @'ing or pinging someone by username, the auto complete will suggest matching users from across federated instances. So typo squatting could be a thing, or user impersonation. But it’d be rather transparent when it occurs, but some could still fall for such tactics, just like with email spam or phishing scams.

            • 𝕊𝕚𝕤𝕪𝕡𝕙𝕖𝕒𝕟
              link
              fedilink
              English
              arrow-up
              1
              ·
              1 year ago

              That’s a problem for sure. And if someone has a display name, someone else can create a user with the same avatar and display name on another instance, and pretend to be them.

              • ruffsl
                link
                fedilink
                English
                arrow-up
                1
                ·
                1 year ago

                Do you think we should sellshow little blue checkmarks for users from your same home instance? 😆

                • ruffsl
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  1 year ago

                  That said, it might be nice for users to be able to tag others (privately viewable only by the tag author) to lable users they’ve veted before, sort of like RES. Users could keep track who is authentic from a prior interaction, like friends, but also who is just a troll, etc. But perhaps that better left user or client side customizations.