Aaron Parecki

#vouch

• jacky. https://twitter.com/jackyalcine

  @indiewebcamp San Francisco had a really good first day. Got a chance to talk about design, #Vouch https://indieweb.org/Vouch and more processes around helping people connect to one another with safety in mind.

  Portland, Oregon • 44°F

  Sun, Dec 8, 2019 3:22am +00:00 (liked on Sat, Dec 7, 2019 7:40pm -08:00) #Vouch
• 

  Some select quotes from this fantastic post by someone who used to work on the Gmail anti-spam systems.

  Portland, Oregon, USA

  1 like

  Tue, Aug 16, 2016 8:10pm -07:00 #spam #vouch #indieweb
• https://aaronparecki.com/2016/08/16/15/spam
  

  > Another approach would be to allow cross-signing - an entity with good reputation can temporarily countersign mail to give it a reputational boost and trigger cross-propagation of reputations. That entity could employ whatever techniques they liked to verify the senders legitimacy.

  Portland, Oregon, USA

  Tue, Aug 16, 2016 8:03pm -07:00 #spam #vouch
• Francis Hwang https://twitter.com/fhwang   •   Aug 1

  Has anyone suggested a decentralized protocol that would solve the spam problem we saw with pingbacks? (Is this possible?)
  

  @fhwang Vouch is an extension to Webmention (successor to Pingback) meant to address the spam issue: http://indieweb.org/vouch

  Portland, Oregon, USA

  Mon, Aug 1, 2016 8:53am -07:00 #vouch #webmention
• 

  An interesting experiment of generating Vouch URLs based on Hashcash proof-of-work. I'm posting this note so that http://hash-for-vouch.herokuapp.com can be used as a Vouch URL when sending webmentions to my site.

  Portland, Oregon, USA

  Sun, Nov 30, 2014 2:30pm -08:00 #webmention #vouch #hashcash
• https://waterpigs.co.uk/notes/4YfB3y/
  

  @BarnabyWalters I was actually thinking about doing exactly that, treating twitter.com/aaronpk as aaronpk.twitter.com and running the approval algorithm as normal. That said, it's not the highest priority because the main goal of vouch is to stop automated spam and that happens relatively less frequently on silos like twitter

  Nürnberg, Bayern, DEU

  2 replies 3 mentions

  Fri, Oct 17, 2014 2:58pm +02:00 #vouch
• http://aaronparecki.com/notes/2014/10/12/1/vouch
  

  Trying to finish up the last of the vouch verification over drinks tonight. So close, so many edge cases!

  E Cambridge, Massachusetts, USA

  Sun, Oct 12, 2014 10:28pm -04:00 #indiewebcamp #vouch
• 

  Going to start IndieWebCamp Day 2 by working on http://indiewebcamp.com/vouch
  
  • Step 1: create an approval algorithm
  • Step 2: when accepting webmentions, check against the approval algorithm
  ** if the source passes your initial approval algorithm, accept the webmention as normal
  ** if the source does not pass, return HTTP 449 to indicate the sender should re-try sending with a vouch parameter
  • Step 3: when a webmention comes in with a vouch, check webmention as normal, then verify the vouch:
  ** check if I approve the vouching domain (it passed my approval algorithm)
  ** fetch the vouch URL, verify that it actually does link to the source's domain without rel=nofollow
  ** if vouch verification fails, return HTTP 400

  Cambridge, Massachusetts, USA

  1 reply

  Sun, Oct 12, 2014 9:54am -04:00 #indiewebcamp #vouch