nostr:npub1n0sturny6w9zn2wwexju3m6asu7zh7jnv2jt2kx6tlmfhs7thq0qnflahe could we have a setting to reject all replies to a post that come up less than 5 seconds after a post? Humans can’t reply that fast
Discussion
That sounds smart 🙏
YES this is very good IDEA - Throttle n RATE LIMIT in speed - WOT will CLOSE all relays to new comers - This is NOT OUT NOSTR MOTO at all
Bots would adjust in no time. No use…
no - it will need grow npub n hibernate them to bypass - more extra hassle to write that
always cat n mouse game
you are seeing bots?
Hmm posts are hidden under “Show more” so kind of no? But I could care less about a post that is an immediate reply to my posts that a human could simply not make: 1. They did not read my post, and 2. no way a human could respond that fast. It takes about 300ms for each character in average on a keyboard so the timing just doesn’t add up.
more concerned on relay side only - rate limit , throtle, Wot (fullblock)- it has no impact on client
probably better if I find more ways to get normal people out of “Show more” because other solutions are too easy to circumvent
challenge in on RELAY to reject those
client side hiding is no issue
Most annoying spam happens in the first few seconds of a post and is from a fresh npub. Spammers are not incentivized into replying to old posts, just new ones otherwise they get little visibility.
How about:
replier npub is first seen (or in a long time) to your post PLUS content length vs created time exceeds what is humanly possible.
from the spammers perspective I would just make the content length like a normal reply and the created time also random between 20-120 seconds, its just cat and mouse and the spammer can adjust faster
I think it’s a combination of measures that make it more effective, not just one, like security that works in layers you must be able to beat all layers to make it thru, it is a cat and mouse game but most spam is not sophisticated. We can deal with the sophisticated ones later and still have a first few layers of defense. WoT has done pretty good so far, but leaves legit new users out in the cold.
It doesn’t make sense to tackle at the relay level because most relays don’t know what’s happening on other relays, only clients know.
slowing spammers down IS a good thing, whether with PoW or making them wait it’s all a win
I’d also combine all brand new (first time seen) npubs as the same npub if they reply too fast to a post, they would hit the same rate limit and thus step on each other: useless to use many different npubs to spam
they'll just adjust the timestamp to circumvent this..
will it not stress CPU?
We could just not use created time but arrival time/first seen.
good thinking
npub creation or first post timestamp can used as FILTER KEY
no legit manual npub or test npub can still be allowed
any npub age of few secs or hours can be blocked / dynamic cache block-listed for spamming
if they bypass using mass old npubs? then throttle can take care from there
💯This too!
First time this npub is ever seen replying immediately to a post? Bye bye bye script kiddie spam
First time in a long time this npub is ever seen replying immediately to a post? To the dumpster it goes. This prevents pre-creating profiles that then can be used en masse
correct approach for NOSTREAM
others should mirror their code once u do
- time gap between reply
- age of npub
- frequency of reply or new on the SAME relay
(no human can do this within secs - even telegram discord have this control )
then final hammer WoT or POW is always there now MOST relay software
NIP-42 , PoW, WoT are like bazooka to stop all new npubs legit + rouge
The problem is that addressing it at the relay level won’t work because the spammer is sending brand new npubs and different messages to a bunch of relays. Nostream already blocks a single IP from sending too many messages in a short time but let’s be real most relays aren’t Nostream and poor rate limiting.
legit manual user need access to reply - Wot blocks them
mix n match need to apply
I reply that fast on my own posts lmao 👉 thread creation
But you are the same poster, this spam is coming from other npubs that seem to be brand new
