• Welcome to the Chevereto user community!

    Here users from all over the world gather around to learn the latest about Chevereto and contribute with ideas to improve the software.

    Please keep in mind:

    • 😌 This community is user driven. Be polite with other users.
    • 👉 Is required to purchase a Chevereto license to participate in this community (doesn't apply to Pre-sales).
    • 💸 Purchase a Pro Subscription to get access to active software support and faster ticket response times.

How to easily take down any image hosting

gobzer

Chevereto Member
Hi guys,

I want to share some bad things. I owned an image hosting for years.
The've been bad content, but I delete abusive things in 24 hours. And do a moderation on regular basis.
This week some guys uploaded hundreds of CP (child porn) images on my site. I've deleted all of them. They used TOR, so there is no chance of banning them by IP.
But today I saw that my site is down. And some messages from my hoster – online.net, with abuse and immediate lock of server.
I can't even delete the content. 10 years of history has gone.

The thing is that this could happen to any small image hosting. Or even big one. Some ass posts the shit and you're out.
Pre-moderation does not work. Users don't want to wait.
Computer vision is not that accurate. And you have to pay for it. I don't think it can distinguish between regular porn and child porn.
Phone verification? Image can be uploaded even with a verified phone.

I mean everything that we do on UGC is prone to constant abuse.
Any ideas? Solutions?
 
Image hosting websites can be taken down due to high resource usage (ddos when embedding your pics) or via forbidden content being uploaded. Basic stuff that you should always check:

0. Always backup. You can't be sure that the data will remain there just because you pay for it. You or the DC can get attacked, there could be a new vulnerability out there, who knows. You should always keep a backup.
1. Use external storage distributed in several servers. Don't rely in just one machine.
2. Detect which websites embed these images and deny hotlink (the images won't be visible so they will have to use another service).
3. Lower flood limits (so at least they won't flood with too many pics)
4. Being you the owner of the website doesn't make you owner of the content and the hosting company can only delete the alleged content, nothing else. If they deleted everything is just because they are lazy and you should tell everybody to stay away from that company.
 
There is an update.

It took days, but I they're unlocked my server after a negotiation.

0. Agree on backups. But keep in mind that if police raid occur, they'll take all your devices. And this will look like you stored all these unsafe images for yourself. Don't forget to encrypt everything. It should be evident that this is a backup and not intended for personal use. Use words "backup" and your domain name within your path. These paths always appear on court documents.
1. Distributed servers multiply costs and troubles.
 
1. Distributed servers multiply costs and troubles.
Then don't go big. You are providing a public service. The bigger the service, more problems and expenses.
 
Last edited:
Exactly one of the reasons which i have my fear too.

But it would be preventable.

1. Make Backups every Day
2. Host your Servers on Offshore Countries.

Exactly what i do at the moment.
 
Hey Rodolfo, If you say that for others, why don't use detect the websites that use this platform and do the same? Let's say for camgirl.gallery ?

People are getting snapshot and posted there and pictures stay forever. Even underage people enter cam sites and that can be underage porn is some way right? Do not tell me that you are one of them? :O
 
@TomJerry2005

Of course that I don't like people using my software for ilegal activities. I encourage you to report any Chevereto based website to your local authorities and the Center for Missing Exploited Children. I will be more than happy to collaborate with any law enforcement agency if that can help to stop any felony.
 
That sounds terrible, i can feel you, i would turn off the guest uploads, limit it to the members only, than put some limits on the daily quota upload for the users (flood settings), hire some friends or people as moderators, for server locations i would chose Island (flokinet.is) and Romania for storage.
At least there u will not get instantly kicked away from the hoster..
Forget Germany or Switzerland as "offshore" Countrys, especially Germany with their law Article 13 which is on the way in the future, even France as offshore location is bad Idea, i know that hey have great prices, but "offshore" service mostly costs a little bit more than usual hosting..
And why u dont try to block somehow tor browser users from your server, there must be something in this way.. or not?
https://www.reaper-x.com/2012/05/15/how-to-block-tor-on-apache-and-nginx/
 
Last edited:
Back
Top