498

lemmy.fmhy.ml is gone [update from the team] (very.bignutty.xyz)

submitted 1 year ago by [email protected] to c/[email protected]

177 comments fedilink hide all child comments

An update:

fmhy.ml is gone, due to the ongoing fiasco with mali government taking all their .ml domains back
As such, lemmy.fmhy.ml is also gone, we are currently exploring ways to refederate (or somehow restart federation entirely) without breaking anything substantial
We have backups, so don't worry about data loss (you can view them on other instances anyway)

Currently, we have fmhy.net and are exploring options to somehow migrate, thank you for your patience.

you are viewing a single comment's thread
view the rest of the comments

[-] [email protected] 55 points 1 year ago

rip lemmy.ml

[-] [email protected] 72 points 1 year ago

Good thing join-lemmy is safely tucked away in a .org domain.

This is extremely bad timing for Lemmy (if it ends up happening), but also a good example of how federation makes the entire social media landscape more robust. Had this happened to a centralized service it would be devastating.

[-] [email protected] 29 points 1 year ago* (last edited 1 year ago)

Not really. Most centralized services are accessible via multiple domains, e.g. for different countries. This would just disable one of them, but users could still use another to log into their accounts. For the Fediverse it "disables" an entire instance, cuts it off from federation and locks out users.

Lets not put a positive spin on a situation that exposes a weakness of the current system. The federation protocol needs to be able to handle these things gracefully, like propagating domain changes and migrating accounts between instances!

[-] [email protected] 6 points 1 year ago

I'm now wondering what happens if the Mali government (or someone else) begins using those domains with their own lemmy instance, potentially with malicious content.

Would the instances they've federated with begin ingesting and serving that content automatically? Or would that be blocked due to key mismatch?

[-] [email protected] 6 points 1 year ago

I think they need the private key for the https certificate to do that

[-] [email protected] 6 points 1 year ago

Afaik it is all connected to the domain name, so they could definitely start to impersonate any .ml instance. Other instances could detect that the signing key for federation messages changed, but that's about it. Their admins would probably have to block/defederate them manually.

load more comments (2 replies)

load more comments (14 replies)

this post was submitted on 21 Jul 2023

498 points (98.8% liked)

Fediverse

26909 readers

161 users here now

A community to talk about the Fediverse and all it's related services using ActivityPub (Mastodon, Lemmy, KBin, etc).

If you wanted to get help with moderating your own community then head over to [email protected]!

Rules

Posts must be on topic.
Be respectful of others.
Cite the sources used for graphs and other statistics.
Follow the general Lemmy.world rules.

Learn more at these websites: Join The Fediverse Wiki, Fediverse.info, Wikipedia Page, The Federation Info (Stats), FediDB (Stats), Sub Rehab (Reddit Migration), Search Lemmy

founded 1 year ago

MODERATORS

[email protected]