Anonymous comments

Why is no one using anonymous comments anymore? Either you have to register for yet another site or you're forced to login with your Google or Facebook account. Even worse is when you're forced to upload passport and credit card information just to post a comment, unbelievable. But it doesn't end there. In addition you'll also have to solve equations, beat Turing tests, click on images with cats and soon also pass a set of phrenology tests. Why? To avoid spam, hate-speech, and other "bad behaviors"? While these are valid concerns, I don't believe this is the solution.

Another problem is that these systems are not machine friendly, if anything they are machine hostile. It could be argued that this makes sense because most of the bots that post comments are used for spam. If that's the case, shouldn't we try to stop spamming instead of trying to stop the bots? To improve the Internet I really believe that we need to give machines more playroom to interact. The humorous subreddit TotallyNotRobots understands the importance of this.

Well then, what's the solution? I believe the solution is to make the comment section ruled-based. That is the administrator selects a set of rules that all comments have to follow. For example, no spam, no hate-speech, no trolling, etc. How ever restrictive or open the administrator deems appropriate. These rules are then enforced by algorithms, called moderators, that analyses the comments. This is of course no simple task, but spam-filters has been around for ages and even more advanced filters are being developed^[1].

I've developed a functional framework that follows these principles, the technical details and all the code can be found at github anonymous-comments. Feel free to test it below!

The moderators that are currently in use are:

Linguist - Checks if the comment is in English.
Spam - Makes sure the comments doesn't contain spam.
Security - Tries to filter out malicious comments like XSS and SQL attacks.

Please note that the security moderator is not responsible for the actual security. It is only used to hide malicious looking comments from others. To simplify the other algorithms only English is allowed at the moment.

By default each user is anonymous. If you choose to use enter a name you can further increase your integrity by adding a tripcode^[2]. The tripcode is generated by a cryptographic hashing function and will be added to your name in order to ensure the integrity of your comments. To add a tripcode simply add a hashtag (#) after the username followed by some secret word, e.g. username#secret.

This is a work in progress and will be continually updated. If you find any problems or wish to see additional features implemented, please leave a comment below.

Notes

"TROLLS BEWARE: TWITTER IS DEVELOPING A WAY TO FILTER HATE SPEECH FROM TIMELINE", http://www.eurweb.com/2016/08/trolls-beware-twitter-developing-way-filter-hate-speech-timeline/
"Imageboard - Tripcodes", https://en.wikipedia.org/wiki/Imageboard#Tripcodes

Write your comment!

Comments

Benjamin ## Admin !d2782292df32 No. 8 ▶ >>92 2017-02-10 18:40:13

Feel free to test the comment section!

Jonas !8dbdc404b428 No. 9 ▶ >>92 2017-03-31 06:11:59

Very nice post! Ã°Å¸Ëâ¬

Benjamin ## Admin !d2782292df32 No. 92 ▶ 2020-01-09 15:08:23

>>8
>>9
Now with replies!

Anon No. 134 ▶ >>137 2020-12-09 20:19:59

Hello Mr Beneri

Benjamin ## Admin !d2782292df32 No. 137 ▶ 2021-01-16 21:21:42

>>134
Hello Anon!

hello No. 4836 ▶ 2024-02-05 16:25:57

wow

<h1> test </h1> No. 5127 ▶ >>5133>>5263 2024-08-25 21:53:54

this site must be a honeypot right? <h2> test </h2>

Benjamin ## Admin !d2782292df32 No. 5133 ▶ 2024-09-04 20:41:08

>>5127
The entire site? I try to post good stuff now and then! :D
But indeed there might be some honeypots lurking around here ;)

SHSL_Programmer !8f3db1680c3e No. 5257 ▶ >>5262 2024-11-10 20:17:04

I appreciate the sentiments, Ben. I recently experienced the frustration of trying to start my online footprint over - I deleted all accounts and set off to try using the web with as few accounts as possible. Well, it isn't what it once was!

Not only are you met with captchas at every turn, most sites don't even trust you enough to create accounts from scratch anymore. Twitter (nowadays X) wouldn't let me create a new account no matter how much I tried. Serves me right, I guess.

Same goes with Google. I had to pay an SMS verification service 0.12€ of my hard earned money so that Google could verify I have a phone, so I could make an account. Living as a vagrant online isn't fun. Would love to see more implementations of user-friendly solutions that don't involve privacy breaches.

SHSL_Programmer !8f3db1680c3e No. 5258 ▶ >>5262 2024-11-10 20:17:07

With that said, whatever filters you use on this site might need tuning, the comments for the Web Shell Encryption page are filled with spam :P

Benjamin ## Admin !d2782292df32 No. 5262 ▶ 2024-11-16 22:28:07

>>5257
>>5258
Hi SHSL_Programmer! Glad you share the sentiment for a more open, free and user-friendly web! :D

But indeed, as you see, it comes with some costs. Based on the comment IDs alone I think about 99% of comments are "insincere". However, I work with security so I'm usually quite happy to see where the spam comes from and points to. And perhaps if different web scanners are used to analyze my website.

Currently, I don't have any filters activated actually. But I think I'll add some simple ones just to get the high-volume spam out of the way :)

Thanks for your comment!

Benjamin ## Admin !d2782292df32 No. 5263 ▶ 2024-11-16 22:33:21

>>5127
What do you mean? Something like this? https://beneri.se/uploads/this.jpeg :D

You know, whatever content I try to put here, most traffic to my website still goes to the honeypots :)

But at least the sweet hacker bees help to pollinate my malware analysis (https://beneri.se/malware/).