Welcome to Reddit,

the front page of the internet.

Become a Redditor

and join one of thousands of communities.

×

all 49 comments

[–]OktayAcikalin 0 points1 point2 points 11 hours ago* (0 children)

If average Joe (e. g. my mom) cannot access our family album or files anymore because G decides so, this is not good. Having something like safe search implemented in any browser is giving them the power to block domains from being accessed and also harm their reputation. And no, she just wants to be a normy (age 87) starting her computer and go for it.

Safe search also blocks URLs from bookmarks. This is how I experienced it in the first place.

We don't want politicians to have that much power, why is it that Google can have that for free and nobody complains? Do we have some backdoors here, I guess..

And please go read the blog post. It explains some other things too.

[–]sonicreach 12 points13 points14 points 1 day ago (0 children)

I can't name any subdomain as its service. I had this issue with several sites of mine. Immediate flags.

For example "immich.domain.com" gets flagged. "imm.domain.com" does not.

"Portainer.domain.com" gets flagged. "port.domain.com" does not.

Essentially I have to shorten the name and suddenly it's been fine ever since.

[–]kenyard 5 points6 points7 points 1 day ago (0 children)

Someone else helped someone here recently.

It was that the subdomain was called photo or photos or something.

Google flags certain keywords which are often used for phishing.

Obviously 90% of people setting this up via reverse proxy are going to use that naming convention on photos

[–]donmcronald 0 points1 point2 points 13 minutes ago (0 children)

This is what happened to me sometime in the last couple of days when I shared an album with my sister. I use MXRoute for my email on devices and self hosted services and both Google and Microsoft constantly flag mail from my domains even though the setup is pristine and there's never been spam or bulk email sent from the domain.

I use photos.example.com. From what I've read, nothing is safe. I think the process probably went something like this for me:

  • Share an album causing an email to be sent to the recipient.
  • GMail scans the email and flags it as potential phishing because of the contents and because it's not from one of the only possible companies that could ever run a secure service (aka Google and Microsoft in their own minds).
  • The signals from GMail are used to flag the entire domain linked in the email and Google abuses their market position with Chrome to effectively wipe you off the internet.

Immich is one of the best services I self-host in terms of helping my parents and siblings maintain control of their data. It's criminal that Google can abuse their market position to block self-hosted services that compete with them.

[–]Nervous_Type_9175 -1 points0 points1 point 1 day ago (0 children)

Did you enable oauth? If yes, 1st disable it and submit the site to review. Once it is no more dangerous, then it means that your oauth implementation should be fixed.

Edit : Oh my!! An immich developer posting this?!

This oauth crap doesnt happen to my nextcloud oauth login, happens only to my immich oauth login. So you can take this as a bug to fix.