this post was submitted on 09 Aug 2023
3660 points (98.1% liked)

Lemmy.World Announcements

29099 readers
6 users here now

This Community is intended for posts about the Lemmy.world server by the admins.

Follow us for server news 🐘

Outages 🔥

https://status.lemmy.world/

For support with issues at Lemmy.world, go to the Lemmy.world Support community.

Support e-mail

Any support requests are best sent to info@lemmy.world e-mail.

Report contact

Donations 💗

If you would like to make a donation to support the cost of running this platform, please do so at the following donation URLs.

If you can, please use / switch to Ko-Fi, it has the lowest fees for us

Ko-Fi (Donate)

Bunq (Donate)

Open Collective backers and sponsors

Patreon

Join the team

founded 2 years ago
MODERATORS
3660
Lemmy World outages (lemmy.world)
submitted 1 year ago* (last edited 1 year ago) by lwadmin@lemmy.world to c/lemmyworld@lemmy.world
 

Hello there!

It has been a while since our last update, but it's about time to address the elephant in the room: downtimes. Lemmy.World has been having multiple downtimes a day for quite a while now. And we want to take the time to address some of the concerns and misconceptions that have been spread in chatrooms, memes and various comments in Lemmy communities.

So let's go over some of these misconceptions together.

"Lemmy.World is too big and that is bad for the fediverse".

While one thing is true, we are the biggest Lemmy instance, we are far from the biggest in the Fediverse. If you want actual numbers you can have a look here: https://fedidb.org/network

The entire Lemmy fediverse is still in its infancy and even though we don't like to compare ourselves to Reddit it gives you something comparable. The entire amount of Lemmy users on all instances combined is currently 444,876 which is still nothing compared to a medium sized subreddit. There are some points that can be made that it is better to spread the load of users and communities across other instances, but let us make it clear that this is not a technical problem.

And even in a decentralised system, there will always be bigger and smaller blocks within; such would be the nature of any platform looking to be shaped by its members. 

"Lemmy.World should close down registrations"

Lemmy.World is being linked in a number of Reddit subreddits and in Lemmy apps. Imagine if new users land here and they have no way to sign up. We have to assume that most new users have no information on how the Fediverse works and making them read a full page of what's what would scare a lot of those people off. They probably wouldn't even take the time to read why registrations would be closed, move on and not join the Fediverse at all. What we want to do, however, is inform the users before they sign up, without closing registrations. The option is already built into Lemmy but only available on Lemmy.ml - so a ticket was created with the development team to make these available to other instance Admins. Here is the post on Lemmy Github.

Which brings us to the third point:

"Lemmy.World can not handle the load, that's why the server is down all the time"

This is simply not true. There are no financial issues to upgrade the hardware, should that be required; but that is not the solution to this problem.

The problem is that for a couple of hours every day we are under a DDOS attack. It's a never-ending game of whack-a-mole where we close one attack vector and they'll start using another one. Without going too much into detail and expose too much, there are some very 'expensive' sql queries in Lemmy - actions or features that take up seconds instead of milliseconds to execute. And by by executing them by the thousand a minute you can overload the database server.

So who is attacking us? One thing that is clear is that those responsible of these attacks know the ins and outs of Lemmy. They know which database requests are the most taxing and they are always quick to find another as soon as we close one off. That's one of the only things we know for sure about our attackers. Being the biggest instance and having defederated with a couple of instances has made us a target.  

"Why do they need another sysop who works for free"

Everyone involved with LW works as a volunteer. The money that is donated goes to operational costs only - so hardware and infrastructure. And while we understand that working as a volunteer is not for everyone, nobody is forcing anyone to do anything. As a volunteer you decide how much of your free time you are willing to spend on this project, a service that is also being provided for free.

We will leave this thread pinned locally for a while and we will try to reply to genuine questions or concerns as soon as we can.

(page 2) 50 comments
sorted by: hot top controversial new old
[–] bennysp@lemmy.world 42 points 1 year ago

Thank you for the update. Good work.

[–] Rambler@lemm.ee 42 points 1 year ago (2 children)

A fantastic job is being done by you folks - obviously in the face of adversity. Given the amount of users on the instance is at a critical point, would it not be possible to 'move' accounts off it onto other less populated instances ?

Keep up the great work folks - I sympathise for ya.

load more comments (2 replies)
[–] Jimmycakes@lemmy.world 40 points 1 year ago

Take your time bros I don't need this shit 24/7 the downtime is fine and expected

[–] WhoRoger@lemmy.world 40 points 1 year ago (3 children)

I was wondering why the CloudFlare protection doesn't work, this makes sense. Does CF have any point then? Lots of people don't like it.

It's weird someone would spend so much time to target LW. Ah well.

[–] TORFdot0@lemmy.world 37 points 1 year ago (2 children)

Cloudflare can only protect so much from the number of requests. The bad actors are spamming inefficiencies in the SQL backend not blasting the front end with web requests

load more comments (2 replies)
load more comments (2 replies)
[–] Smoogs@lemmy.world 38 points 1 year ago (3 children)

I’m imagining spez is sending his flying monkeys and they’ve been trying to shut it all down. Doesn’t matter that you’re smaller than Reddit, Egos like spez’s can’t take even a minor rumble. Just look at how he has to ‘win’ against all his own users. Should tell you all you need to know on his motives.

load more comments (3 replies)
[–] ThePowerOfGeek@lemmy.world 37 points 1 year ago

Thank you for everything you do. You guys are doing a fantastic job, and a lot of us sincerely appreciate all your efforts!

[–] Sumeron@lemmy.world 36 points 1 year ago

Thanks for the transparency and the update! Downtime to me is useful, it prevents me from using Lemmy too much.

[–] Desistance@lemmy.world 35 points 1 year ago

Glad you guys resisted the call to close signups. I think that's what they want in the end, to harm lemmy.world by killing it's growth.

[–] xfts@lemmy.world 33 points 1 year ago

You guys are trying your best, and that's what matters. Thank you LW Team.

[–] cyborganickname@lemmy.world 33 points 1 year ago

Thank you for your time & efforts in maintaining this platform. I (and many others I'm sure) have great respect for the work you do in trying to combat this menace. The community is completely behind you and appreciates the value of this resource.

[–] Surp@lemmy.world 33 points 1 year ago* (last edited 1 year ago) (10 children)

I wonder if reddit, the company, are the ones ddosing.

[–] Phegan@lemmy.world 42 points 1 year ago (2 children)

This is a conspiracy theory level hot take.

load more comments (2 replies)
load more comments (9 replies)
[–] Mercury1337@lemmy.world 33 points 1 year ago

Thank you for your hard work

[–] Anti_Weeb_Penguin@lemmy.world 32 points 1 year ago (8 children)

Come on ddosers, we can always solve our differences with dialogue

load more comments (8 replies)
[–] merthyr1831@lemmy.world 32 points 1 year ago

You're managing this well. Good work folks.

Very grateful for your focus and dedication. Bummer about the DDOS bullshit. Your efforts mean a lot to the communities.

[–] feedum_sneedson@lemmy.world 30 points 1 year ago (1 children)

I guess it's that guy who said he was going to break the site. Remember that guy? Something about not being allowed to open loads of communities or something.

load more comments (1 replies)
[–] 108beadz@lemmy.world 30 points 1 year ago

Another heartfelt thanks—both for the hard work, and for the transparency.

[–] httperror418@lemmy.world 27 points 1 year ago (3 children)

In a way, the ddos attacks are helping highlight the slow parts of the system causing a reason to optimise them? It's kind of a double edged sword

load more comments (3 replies)
[–] root@lemmy.world 24 points 1 year ago

Thank you guys for the write up and for helping to keep things running.

[–] HexesofVexes@lemmy.world 24 points 1 year ago (6 children)

In terms of the "expensive" SQL queries - is this an issue that the lemmy devs are working on? I.e. is this a problem that might solve itself in time?

load more comments (6 replies)
[–] cpo@lemmy.world 24 points 1 year ago

Well thanks for the update and your hard work. I am currently using lemm.ee as a backup account so that I can at least have my fix.

Hope the bastard(s) who are ddossing the server get some nice tropical diseases.

Lemmy.world also was my first step into the fediverse.

[–] tallwookie@lemmy.world 23 points 1 year ago

appreciate the transparency!

load more comments
view more: ‹ prev next ›