Open matrixbot opened 10 months ago
For some additional context, the reason why this is a problem for Mjolnir is because as a room administrator, NOT necessarily a homeserver administrator (but it is also a problem for server admins), mjolnir can't see the soft failed events. A solution that would work would be allowing a client to access soft failed events from both/sync
and /messages
. It will be ok for these events to be given in a redacted form, provided it is very & immediately obvious to a client whether these events have an associated m.redaction
event or not. So that Mjolnir can then see and issue redactions that will be seen by other servers. This should ideally not be a Synapse administrator API, since public Matrix homeservers will have room admins who are not admins of the homeserver.
A very unideal work around for those following along is to have a room admin on the same homeserver as the spammer, who will be able to see all of the spammer's events normally and then be able to issue redactions for them. This only really works because the majority of spam comes from accounts registered with matrix.org, so they don't usually need an admin account with every participating server in the room.
This issue has been migrated from #9329.
I've come across this issue twice in two days:
I think the issue is:
A sample is below. Mjolnir's FirstMessageIsImageProtection banned and redacted the user after they sent three images, but their fourth image is soft-failed, making redaction impossible.
archlinux.org rejected the message:
aria-net.org accepted the message:
Version information
{"server_version":"1.26.0","python_version":"3.9.1"}