Tell them you are the reason why Alphanet is no longer online.

Just a little info:

INN2 come with gpg1, to be sure to remove gpg1 and install gpg2, with
library libgcrypt version 1.10.1, in other case some new signature
you're unable to certify (on my system ubuntu 22.04, the old library
don't support a lot of new signature).

Sincerely

Got you.

Where did you find this?

["Followup-To:" header set to comp.lang.c.]
Maybe the "whitelist" is simply "those users who don't use
google-groups"? :)

So if you're already going to make these Google Groups users register a
new account with some external organization, why not just have them
register with another Usenet server and post from that?

Seems like a simpler way to get the half-dozen worthwhile GG posters
separated from the spam vs. implementing a whole new layer of
whitelisting that needs cooperation from many different news server
admins and is still ripe for abuse, mismanagement, and abandonment.

john

On Thu, 5 Oct 2023 16:52:03 -0000 (UTC)
That would probably be more trouble than it's worth. At least in non-tech
groups, many (most?) GG users don't even know they are using usenet. I've
had threats to one of my sites (web usenet interface) that if I don't stop
scraping google groups for content, they would contact Google (lol)

First you would need to explain what is Usenet, before even trying to get
them to care about their posts showing up anywhere else.

That may not seem like a big deal, but you would be messing up non-tech groups
for non GG users, as they would no longer see most of their recipes, or discussion
of boats or whatever, making their favourite groups much less useful for them.

On Thu, 5 Oct 2023 16:52:03 -0000 (UTC)
Yes, and no. Yes, whitelisting could be one option. But we already have
a defacto whitelist by the peers we choose to synchronize with. When you
add a peer to your config you have just whitelisted that peer. Managing
users in a whitelist fashion would be cumbersome and error-prone and a
vector for administrative abuse.

Whitelisting via the path header to exclude messages with unlisted peers
in the path would be viable. But you would need to sync with a dozen or
more peers to get all the good messages from a pool of much more than a
dozen peers. I think some sysops don't want to maintain a dozen or more
peers.
Unless complex cryptographic signature verifications are put in place
in the proposed central registry, forging would be a route around
this kind of whitelisting.
I reject the idea of a central registration service. That would be
severely abused to track and censor people. It might not happen right
away, but eventually it would morph into the norm.

If a peer is not making good faith effort to thwart abuse then every
user on that peer should be blocked. You should never try to be mother
hen over the users of someone else's service. If they are not smart
enough to detect the danger they are eliminated from the chicken
species. If mother hen is a failure, her chicks get eliminated from the
chicken gene pool, which is a brutal necessity of nature. Surely it is
not fair. So what?
You are suggesting a central network registry, which will eventually
get taken over by bureaucrats or buffoons to everyone's detriment. It
won't "might" happen. It will happen. And then you also have a single
point of attack for government agencies to silence dissent.

Which country should the registry be based in? See the problem?

If a independent registration platform were used, in which peers could
choose which registry to use, that would be almost viable, as it would
give sysops the choice of association. But still the organs of state
could micromanage it for easy censorship.

Anything that is not sufficiently decentralized will be attacked by the
organs of the state or the organs of crime. Google is facilitating both
attacks. By treating Google as a sacred cow, sysops are effectively NOT
operating a decentralized protocol. Relationships change. Character
changes. You adapt to those changes. NNTP facilitates that ability to
roll with the punches.
You can block Google. All non-commercial peer operators should have
no problem with this. Google is the biggest source of spam and abuse,
and has done nothing for many years to fix the problem. You gain
nothing by allowing Google to continue abusing the network. You gain
everything by a concerted front to tell Google to take a flying leap
off a ledge. By spamming you all for years, Google has been telling you
the same thing. Are you going to take that any longer?

Look at it this way: Google does NOT care about you or your server or
your users experience. Why would you want to play mother hen and show
care and concern for Google's users? That's like a father ignoring his
own kids and letting them run riot with a cannibal gang, and taking the
neighbor's kids to the amusement park. Sure, the neighbor kids think
that's fair.

As for whitelising, it can only work non-abusively with a small network
of peers that are able to quickly agree to adapt to attacks on the
whitelist registry. Otherwise a whitelist registry it is just a
foundation for a new set of problems.