ergo icon indicating copy to clipboard operation
ergo copied to clipboard

Published 20 hours ago verified publisher icon ergochat

Allow UBAN ADDing realnames/gecos

Open Mikaela opened this issue 3 years ago • 9 comments

matrix-appservice-irc generally doesn't allow users to change realnames/gecos so thus the only way for operator to ban abusive users/homeservers is to ban by realname/gecos.

  • https://mastodon.matrix.org/@matrix/106494375873102092 - Matrix is currently having abuse issues.

Mikaela avatar Jun 29 '21 15:06 Mikaela

This seems like a "moderate on the other side of the bridge" problem? As in, if an operator or a bot has the ability to issue these bans on the Ergo side, they would be able to do it more effectively on the Matrix side?

slingamn avatar Jun 29 '21 15:06 slingamn

Unlike RELAYMSG, the bridge spawns ghost users on IRC side kind of pretending to be a bouncer and the bridge may not be always be ran by the same people as Ergo. This is the case in our network that is migrating to Ergo and also Libera.Chat.

Mikaela avatar Jun 29 '21 15:06 Mikaela

I'm thinking it would be interesting to develop a vendor extension that would allow "puppeting" bridges (like matrix-appservice-irc and go-discord-irc) to send an identifier for the user during registration, which Ergo could then hash into a unique cloak (using the account cloaking algorithm).

The bridge would send something like: BRIDGEID matrix [email protected] or BRIDGEID discord <id_number>.

slingamn avatar Jul 05 '21 06:07 slingamn

So go-discord-irc uses WEBIRC. BRIDGEID seems to be a similar concept? It (go-discord-irc) creates an ipv6 address out of the <id_number> that doesn't/cannot clash with public ones and sends it with the rest of the usual WEBIRC parameters.

prdes avatar Jul 05 '21 06:07 prdes

From discussion, we think go-discord-irc's algorithm:

https://github.com/qaisjp/go-discord-irc/blob/922e41f095d62a1e2dc10cf5fff38f3c4162bd2a/bridge/utils.go#L25

doesn't work with Ergo because it produces ipv6 addresses that are all in the same /64, so in the default Ergo configuration they receive an identical cloak.

slingamn avatar Jul 05 '21 06:07 slingamn

I'm thinking it would be interesting to develop a vendor extension that would allow "puppeting" bridges (like matrix-appservice-irc and go-discord-irc) to send an identifier for the user during registration, which Ergo could then hash into a unique cloak (using the account cloaking algorithm).

The bridge would send something like: BRIDGEID matrix [email protected] or BRIDGEID discord <id_number>.

@Half-Shot thoughts?

Mikaela avatar Jul 07 '21 09:07 Mikaela

Biboumi (a xmpp to irc gateway) does implement webirc and thus allows xmpp server level bans without banning the gateway itself. At least on the more federated xmpp network that is usually sufficient to block abuse.

poVoq avatar Jul 17 '21 12:07 poVoq

I think BRIDGEID could possibly also be useful for public shells for those who aren't just going to move to local and mobile clients

Mikaela avatar Aug 19 '21 20:08 Mikaela

I hit this again recently and was also asking on #ergo how to get rid of a undesired Matrix bot. First I ended up UBANning all Matrix and XMPP users on the network and then just on specific channel when that was pointed out to me.

Mikaela avatar Jan 31 '22 12:01 Mikaela