uwu.social is fediblocked
I really regret making fun of the reports a year ago... it's very unfortunate that we're being classified as a Nazi instance when we absolutely are not
IDK if you can appeal fediblock either, they've blocked uwu.social already so I don't think I can other than emailing the admin. I might try that tomorrow :/
https://a.rathersafe.space/users/fediblock/statuses/108532196603147904
Hetzner is getting ddosed again, but this time they blocked all large UDP packets so wireguard doesn't work even on ports outside their advertised affected range.
We're mitigating this by using a UDP-over-TCP tunnel for wireguard. Wireguard is used for connecting securely to our media storage server, so this will impact media storage on uwu.social until we revert it
A lot more reports and moderation actions have been required over the last few days. Usually I don't have to deal with much other than the occasional report etc. but it's definitely gone up recently
Thankfully Mastodon's moderation tools for reports were recently overhauled making it an easy process. Trends are a less-easy process and I hope the developers make it more streamlined soon
Also, it looks like #Mastodon removed the ability for admins to mark any arbitrary post as sensitive without reporting it first?
@nazi_accusations I like how the elekk.xyz one did their research on the uwu.social about page to figure out which rule they could report you for :D
4 is done now, everything is served off of local filesystem now. We will be optimizing delivery so files are served from the file server rather than over NFS with nginx over the next few days
uwu.social, captcha
We added a captcha to uwu.social signups using Friendly Captcha, which doesn't violate privacy + the JS code is open source. The captcha is just a simple proof of work and doesn't store cookies or have secretive algorithms like recaptcha
If people don't want to solve a captcha to sign up (maybe because they have noscript or something) we'll give people invite links over email if they ask. Users can't create invites for other people in case there are still bots
Bot signups were getting annoying and Mastodon doesn't have any captcha support
Registrations are disabled on the main site, with a link to a separate page that requires you to solve a captcha. Once you solve it and submit, you'll get redirected to a newly generated single-use invite link. Mastodon API doesn't have invite link capability so we have to scrape csrf tokens and shit which sucks though
The code's not pretty, but we don't care as long as it works
https://owo.codes/whats-this/mastodon-signupbot
https://register.uwu.social
We're gonna attempt migrating uwu.social mastodon media again from minio to local storage over NFS again today. Our battle plan is as follows:
1. origin.files.uwu.social nginx block will be changed to serve from local first, then try minio if 404
2. delete all remote media older than 7 days again to reduce the amount of stuff we have to copy
3. switch mastodon to use local storage rather than S3 storage (requires small downtime)
4. migrate data from minio to the local directory in the background over the next few weeks
We've already done 1 and started 2, once that finishes we'll start 3 and eventually start 4 in the background
I think the only downside this method has is that deleted media from the 7 day period before we turn on local storage won't be able to be deleted until the files are finished moving over
We've tested switching to local storage by changing the .env on a testing server and it seemed to work without issue
uwu.social media migration (from Minio to plain FS on a new server) was called off. Aurieh and I are both very tired so we decided it would be best to stop for now and try again some other time when we're not tired and have a better battle plan.
Copy performance from Minio (or directly from Minio's data dir) is extremely slow because stat calls take ages for some reason. We'll look into the performance issues with the FS for next time and explore ways of listing files without using stat (i.e. via Mastodon's DB).
We're sorry for severely underestimating the amount of time it should've taken. I hope we didn't cause too much inconvenience from being offline.
uwu.social administrator
cool guy