moderation.md 3.88 KB
Newer Older
Eugen Rochko's avatar
Eugen Rochko committed
1 2
---
title: Moderation
3
description: Overview of moderation tools on Mastodon
Eugen Rochko's avatar
Eugen Rochko committed
4 5 6 7 8 9
menu:
  docs:
    parent: usage
    weight: 4
---
## Individual moderation
10 11 12

Moderation in Mastodon is always applied locally, i.e. as seen from the particular server. An admin or moderator on one server cannot affect a user on another server, they can only affect the local copy on their own server.

Eugen Rochko's avatar
Eugen Rochko committed
13
### Disable login
Eugen Rochko's avatar
Eugen Rochko committed
14

15
A Mastodon account can be disabled. This prevents the user from doing anything with the account, but all of the content is still there untouched. This limitation is reversible, the account can be re-enabled at any time. This limitation is only available for local users on your server.
Eugen Rochko's avatar
Eugen Rochko committed
16

Eugen Rochko's avatar
Eugen Rochko committed
17
### Silence
Eugen Rochko's avatar
Eugen Rochko committed
18 19 20 21 22 23 24

A Mastodon silence is synonymous with sandbox. A silenced account does not appear to users who are not already following it. All of the content is still there, and it can still be found via search, mentioned, and followed, but the content is invisible.

At this moment, silence does not affect federation. A locally silenced account is *not* silenced automatically on other servers.

This limitation is reversible, the account can be unsilenced at any time.

Eugen Rochko's avatar
Eugen Rochko committed
25
### Suspend
Eugen Rochko's avatar
Eugen Rochko committed
26 27 28

A Mastodon suspension is synonymous with deletion. The account no longer appears in search, the profile page is gone, all of the posts, uploads, followers, and all other data is removed. This limitation is **irreversible**. While the account can be unsuspended, allowing the user to take control of it again, the old data is gone for good.

Eugen Rochko's avatar
Eugen Rochko committed
29
## Server-wide moderation
30 31 32

Because individually moderating a large volume of users from a misbehaving server can be exhausting, it is possible to pre-emptively moderate against all users from that particular server using a so-called **domain block**, which comes with several different levels of severity.

Eugen Rochko's avatar
Eugen Rochko committed
33
### Reject media
Eugen Rochko's avatar
Eugen Rochko committed
34 35 36

With this option active, no files from the server will be processed locally. That includes avatars, headers, emojis and media attachments.

Eugen Rochko's avatar
Eugen Rochko committed
37
### Silence
Eugen Rochko's avatar
Eugen Rochko committed
38 39 40

Applies a silence to all past and future accounts from the server.

Eugen Rochko's avatar
Eugen Rochko committed
41
### Suspend
Eugen Rochko's avatar
Eugen Rochko committed
42 43 44

Applies a suspension to all past and future accounts from the server. No content from the server will be stored locally except for usernames.

Eugen Rochko's avatar
Eugen Rochko committed
45
## Spam-fighting measures
Eugen Rochko's avatar
Eugen Rochko committed
46 47 48 49 50 51

There are a few baseline measures for preventing spam in Mastodon:

- Signing up requires confirming an e-mail address
- Signing up is rate-limited by IP

52
However, dedicated spammers will get through that. The other measure you can employ is **e-mail domain blacklisting**. During sign up, Mastodon resolves the given e-mail address for an A or MX record, i.e. the IP address of the e-mail server, and checks that IP address against a dynamically stored blacklist.
Eugen Rochko's avatar
Eugen Rochko committed
53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72

### Blocking by e-mail server

Spammers will often use different e-mail domains so it looks like they are using a lot of different e-mail servers that would all be difficult to blacklist separately. However, sometimes all of those domains resolve to a single e-mail server IP. If you see a lot of spammers signing up at the same time, you can check for this, either using an online DNS lookup tool, or the Linux `dig` utility, e.g. `dig 1.2.3.4` will return all DNS records for that IP. If you notice the IP is the same for all domains, you can add it to the e-mail domain blacklist.

### Blocking by IP

It is not possible to block visitors by IP address in Mastodon itself, and it is not a fool-proof strategy. IPs are sometimes shared by a lot of different people, and sometimes change hands. But it is possible to block visitors by IP address in Linux using a firewall. Here is an example using `iptables` and `ipset`:

```bash
# Install ipset
sudo apt install ipset
# Create blacklist named "spambots"
sudo ipset create spambots nethash
# Add 1.2.3.4 to the blacklist
sudo ipset add spambots 1.2.3.4
# Add firewall rule based on the blacklist
sudo iptables -I INPUT 1 -m set --match-set spambots src -j DROP
```

73
Be careful not to lock yourself out of your machine.