continuwuation/continuwuity
9
17
Fork 10
Code Issues 78 Pull requests 9 Projects Releases 16 Packages 1 Activity Actions

feat: Policy-list controlled moderation #750

New issue
Open
opened 2025-04-14 21:15:18 +00:00 by Jade · 6 comments
Jade commented 2025-04-14 21:15:18 +00:00
Owner
Copy link

We currently have configurable server-wide moderation options that allow completely hiding a server and refusing all federation with it.

It would be useful to allow controlling these options from a Matrix room policy list at runtime.

We currently have configurable server-wide moderation options that allow completely hiding a server and refusing all federation with it. It would be useful to allow controlling these options from a Matrix room policy list at runtime.
nex added a new dependency 2025-04-14 21:22:24 +00:00
#751 feat: appservice callbacks
nex added the
Enhancement
Matrix/Administration
 labels 2025-04-14 23:40:31 +00:00
nex changed title from Policy-list controlled moderation to feat: Policy-list controlled moderation 2025-04-15 00:36:41 +00:00
Jade commented 2025-04-16 14:31:20 +00:00
Author
Owner
Copy link

Some key points of the discussion for those who can't access it:

  • I bring up that existing user-level and room-level moderation tools in Matrix are insufficient to handle issues like spam and abusive media, as any level of exposure to some media is unnaceptable
  • Server-side filtering of messages and invites is brought up
  • The problem of the spec providing no way to re-add filtered messages to the timeline (particularly problematic in syncv3) is brought up (effectively if something is un-ignored server side, clients require a full resync to be able to see previously hidden events. Not a problem for some stuff, more problematic for other stuff)
  • Some concerns about servers soft-failing events causing desync. Not a problem for denying outbound federation and media, though.
  • Talking about per-user server-side policy lists (IMO no-priority for us right now)
  • There's a bunch of discussion about server plugins for moderation, https://github.com/maunium/synapse-http-antispam is brought up
Some key points of the discussion for those who can't access it: - I bring up that existing user-level and room-level moderation tools in Matrix are insufficient to handle issues like spam and abusive media, as any level of exposure to some media is unnaceptable - Server-side filtering of messages and invites is brought up - The problem of the spec providing no way to re-add filtered messages to the timeline (particularly problematic in syncv3) is brought up (effectively if something is un-ignored server side, clients require a full resync to be able to see previously hidden events. Not a problem for some stuff, more problematic for other stuff) - Some concerns about servers soft-failing events causing desync. Not a problem for denying outbound federation and media, though. - Talking about per-user server-side policy lists (IMO no-priority for us right now) - There's a bunch of discussion about server plugins for moderation, https://github.com/maunium/synapse-http-antispam is brought up
nex commented 2025-04-16 14:33:11 +00:00
Owner
Copy link

See also: #748, #751

See also: #748, #751
nex commented 2025-04-16 19:00:16 +00:00
Owner
Copy link

Relevant: https://github.com/matrix-org/matrix-spec-proposals/pull/4284

Relevant: https://github.com/matrix-org/matrix-spec-proposals/pull/4284
nex commented 2025-04-21 15:55:28 +00:00
Owner
Copy link

Discussion held in the dev room:

  • If the server already has a member in the policy rooms, it already receives relevant events - it'd make more sense to tap rooms rather than have a dedicated subscriber
  • might be helpful to start with room bans and takedowns as they'll be the easiest to implement
Discussion held in the dev room: * If the server already has a member in the policy rooms, it already receives relevant events - it'd make more sense to tap rooms rather than have a dedicated subscriber * might be helpful to start with room bans and takedowns as they'll be the easiest to implement
nex commented 2025-04-22 01:43:55 +00:00
Owner
Copy link

Would also be neat to be able to refuse to authorise joins for users or homeservers who are denied by policy lists, similar to what Tulir's fi.mau.spam_checker join rule does, except globally.

Would also be neat to be able to refuse to authorise joins for users or homeservers who are denied by policy lists, similar to what Tulir's `fi.mau.spam_checker` join rule does, except globally.
Jade commented 2025-04-22 01:52:18 +00:00
Author
Owner
Copy link

We already refuse make_join for forbidden servers, controlled by the same check as the rest of the federation controls

We already refuse make_join for forbidden servers, controlled by the same check as the rest of the federation controls
🎉 1
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
illegal-car-mods
jade/relations
jade/sec-policy-fixes
jade/msc2815
jade/syncv5-typing
jade/security-policy
nex/fix-eager-empty-sync
nex/fix-join-sync-state
jade/purge-sync-tokens
jade/logging-features
jade/ci-fix-tom
morguldir/see-eye
jade/auto-support-creation
jade/rust-toolchain-no-targets
jade/fix-knock-restricted
jade/tuwunel-2025-05
jade/css-small-screen
jade/ci-checks
jade/more-renames
nex/wip-751
jade/typos
jade/html-default-page
dahsa_uwu/axum-0.8
tcpipuk/cinny
jade/messages-more-strict-validation
jade/read-receipts
jade/announcements-checker
jade/tuwunel-ci
tuwunel-rebase
jade/enable-buildx-cache
jade/docker-ci
test
renovate/nixos-nix-2.x
renovate/smallvec-1.x-lockfile
renovate/lock-file-maintenance
renovate/axum-client-ip-1.x
renovate/rand-0.x
renovate/ctor-0.x
renovate/cargo_toml-0.x
renovate/axum-client-ip-0.x
renovate/opentelemetry-rust-monorepo
renovate/axum-monorepo
renovate/itertools-0.x
strawberry/nix-ci-stuff
strawberry/valgrind
strawberry/morgs-snake-sync-jason-main
newer-media-endpoints
folly-coroutines-async-io
federation-retry-timer-port
bad-attempt-at-extracting-homeserver-signing-key
room-deletion-attempt-do-not-use
v0.5.0-rc.5
v0.5.0-rc4
v0.5.0-rc3
v0.5.0-rc2
v0.5.0-rc
v0.4.7-rc
v0.4.6
v0.4.6-rc
v0.4.5-rc
v0.4.5
v0.4.4
v0.4.3
v0.4.2
v0.4.1
v0.3.4
v0.3.3
v0.3.2
v0.3.1
v0.3.0
Labels
Clear labels   
Bug

Something isn't working as intended

  
Cherry-picking

Commits picked from other conduit projects

  
Database

This requires or includes changes to the database

  
Dependencies

Something dependency related

  
Documentation

Improvements or additions to documentation

  
Enhancement

New feature or request

  
Good first issue

Good for newcomers

  
Help wanted

Additional eyes and keyboards are required for this one

  
Inherited

Issues that have been inhereted from the project pre-fork

  
Matrix/Administration

Features pertaining to homeserver administration

  
Matrix/Appservices

Features pertaining to the appservice API

  
Matrix/Auth

Features pertaining to authentication

  
Matrix/Client

Features pertaining to client-to-server interactions

  
Matrix/Core

   
Matrix/Federation

Features pertaining to server-to-server interactions

  
Matrix/MSC

Features pertaining to unstable matrix features

  
Matrix/Media

Features pertaining to media interactions

  
Meta

Related to housekeeping, maintenance, or other repo-meta.

  
Meta/Packaging

Packaging

  
Priority
Blocking
This issue is blocking the next release

  
Priority
High
This issue is very important

  
Priority
Low
This issue is of a rather low priority

  
Security

This item is related to general security

  
Status
Confirmed

  
Status
Duplicate
This issue or pull request already exists

  
Status
Invalid
This issue doesn't seem right

  
Status
Needs Investigation
This issue needs further investigation

  
Wont fix

This will not be worked on

  
old/ci/cd

Ci/CD

Archived

  
old/rust

Pull requests that update Rust code

Archived

No labels
Bug
Cherry-picking
Database
Dependencies
Documentation
Enhancement
Good first issue
Help wanted
Inherited
Matrix/Administration
Matrix/Appservices
Matrix/Auth
Matrix/Client
Matrix/Core
Matrix/Federation
Matrix/MSC
Matrix/Media
Meta
Meta/Packaging
Priority
Blocking
Priority
High
Priority
Low
Security
Status
Confirmed
Status
Duplicate
Status
Invalid
Status
Needs Investigation
Wont fix
old/ci/cd
old/rust
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Blocks
#751 feat: appservice callbacks
continuwuation/continuwuity
Reference: continuwuation/continuwuity#750
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?