LDAPjs decomissioned by maintainer over hateful email

Having posts like this occasionally on the front page of HN is a good and necessary regular reminder to the community: the people who write and maintain OSS projects are humans. Treat them with respect, and challenge bad actors when you encounter them.

People can be pretty weird. I once received death threats over a technical blog post I’d written nearly a decade earlier, because the reader was upset that I hadn’t updated it. (The date was clearly labelled at the top of the post)

Maintainer can do what they like, I respect that.<p>I do worry that trolls who really don&#x27;t care if they quit maintaining this software have outsized influence on things and the outcome of a decision like this. And the decision MIGHT only impact everyone but the troll, and maybe even encourage such bad behavior.<p>Recall an actress who noted how much abuse she received over the internet for how she looked. She announced she wasn&#x27;t going to do something (it was something related to her clothing) as a response. It was presented as almost a punishment, but I couldn&#x27;t help but wonder who was driving the bus &#x2F; decisions in that situation.<p>Still, I respect the maintainers choice and I have no magic solutions for this.

It&#x27;s the internet, strange that the author didn&#x27;t face abuse like this before. He doesn&#x27;t seem too young to have experienced such abuse online growing up.<p>I wish I could say that everyone should be exposed to some aimless and unfair adversity while growing up, it helped me grow some thicker skin.<p>But I&#x27;ve met people who really can&#x27;t handle it, and exposing them to even a bit of it would be unethical, it wouldn&#x27;t help them in any way. Some people are really sensitive, on the edge of mental stability, with crumbling self respect, or whatever other issues. Abuse like this does affect them significantly. Such people are the perfect victims for these immature trolls, and I really don&#x27;t see a way to help them.<p>I remember hanging out on forums as a teen, and there was this script kiddie who would hound users on some local forums and IRC servers, both plainly insulting and&#x2F;or threathning them, and trying to &#x27;hack&#x27; them. He was annoying, but I was so used to these edgy insults and such that I never took them seriously (just a bit of roughhousing among teens)... Yet he was really successful in pissing people off and made a significant number of them leave. He was banned many times, but would just re-join with new account(s) (the joys of dynamic IPs every time you dial in). Took him years to quit.<p>If you&#x27;re offended by things like this to be affected significantly (we&#x27;re all affected a bit), don&#x27;t be fooled, you&#x27;re worse off than people who aren&#x27;t. It&#x27;s not your fault by any means. But finding a way to care less about things like this, if possible, will improve your wellbeing. You can ignore and &#x2F; or react (which might make it worse), but there&#x27;s not much you can do against assholes without ushering in censorship, surveillance, or making everythign worse otherwise. You can&#x27;t fix other people, but you can at least try fixing yourself.

I feel the same way about this being on the front page of HN as I do about school shootings being a guaranteed front-page event in national news:<p>It&#x27;s tragic that things like this happen, but posting and discussing the troll&#x27;s (fake) name, their tirade, and the terrible impact that they had on a maintainer is <i>not</i> going to make things easier for maintainers. On the contrary, it&#x27;s just going to give copycat trolls inspiration and something to aspire to, a sort of &quot;victory&quot; end game.<p>The author of that email doesn&#x27;t care about LDAP, they don&#x27;t care about JavaScript libraries, they&#x27;re <i>just</i> a troll. Rule #1 of the internet is &quot;don&#x27;t feed the trolls&quot;.

Based on the name and email address this email address was probably setup just to troll people.

Man... the world sure makes me depressed some days.<p>Today I&#x27;ve hit the limit of stupid on the internet, time to go home and go for a walk and not think about how absolutely awful some people can be.<p>Not that I&#x27;ve ever had a need for this project, but, Diego, you&#x27;re a terrible human being.

I relied on this project heavily at a past organization when the original maintainer was just leaving it to wither. They worked at Joyent if I remember and assuredly their work on that was decommissioned. I remember when James took it over, it was rejoiced to finally have some PRs landing again! I haven’t thought about ldapjs in a long time, and it’s sad to see this stuff happen. Hope you’re well otherwise James!

I empathize with the author (on more than one level, an LDAP agent in Javascript sounds like more trouble than it&#x27;s worth and his suggestion to use Go makes sense), and while this kind of email is inexcusable, it&#x27;s ultimately a risk of being on the internet.<p>To be clear, I don&#x27;t want to sound callous or say that this is, in the long term, the cost of doing business in open source (it absolutely should not be); but if you&#x27;re a person with a publicly-routable email (say, via git commiter or author metadata), on a long enough timeline, someone awful&#x27;s liable to find it and use it maliciously.<p>My opinion (admittedly, not having been on the receiving end of something this pointlessly awful) is that it&#x27;s better not to fold to these kinds of attacks. These people are basically schoolyard bullies, and usually attention-seekers. Validating their attempts only encourages more behaviour like this.<p>I hope the former maintainer is doing well, and I hope this message doesn&#x27;t come off as disrespectful or harmful. If it does, I&#x27;m very open to hearing about alternative approaches.

Rule 1: don&#x27;t read email from strangers. Rule 2: don&#x27;t read any comments under your article&#x2F;video&#x2F;whatever.<p>People are full of hate and tend to dehumanise other people over internet, while they would be (possibly) nice to them in person. Something is in the internet that people&#x27;s hate is magnified...

I would consider this “mild” compared to the xbox&#x2F;playstation&#x2F;pc gaming lobbies.<p>But I can respect doing it. Let someone else care about it, maybe they fork it. Maybe it just sits archived.

It is your own choice if you wish to continue the maintenance or not (and, even if you wish to maintain the project, you can decide to not accept email messages). If it is FOSS, then other people can maintain their own version if they want to do, anyways (this is why FOSS is important; it is due to things like this).<p>However, whoever wrote the email message did not decomission the project; it is whoever maintain the project that did so, due to receiving such email message. I think that might be unnecessary to decomission the project just due to one message like that, but it is their choice to maintain or not maintain it, or to decomission it. (Anyways, if you receive too many messages like that then you might be too stressed to work on the project properly.)<p>Although, still they should not have written such a email message, because it is no good. It does contain an actual comment about the program (although I am not familiar with the program to know whether or not the complaint is legitimate), but that is a very bad way of writing it.<p>(Other comments also mention that stuff like this may be used to attack the project to make a version with malware if the original maintainer won&#x27;t then someone else will and will add malware. It is a legitimate concern, which should be considered seriously, but one that can be handled whether or not this maintainer decides to maintain this project or not.)

That&#x27;s a pretty nasty email; I initially thought this was some kind of bizarre targeted spam, until they started talking about the coding stuff and it made me realize &quot;nope, a human wrote this&quot;.<p>I don&#x27;t think I&#x27;ve ever received anything this horrible ever; when I was attempting to make videos on early (~2008) YouTube as a teenager, I definitely got a lot of death threats though, so much so that someone made a whole-ass video threatening to kick my ass because they thought I said something bad about people in wheelchairs (I did not, I genuinely have no idea how they even came to that conclusion).<p>The internet is simultaneously the best and worst invention that humans have ever made. It allows people to be their true selves, for all that entails.

I hope this doesn&#x27;t become a more widely used repo attack vector: Abuse repo maintainers until one or more fold. Fork the repo and become the New Maintainer That Saves The Day. At a later time, insert attack code.

sad to see but sounds like it was just a reminder to archive the project anyways. trolls make up a fair portion of the interweb and with llm&#x27;s on the rise that&#x27;ll probably just get worse. put on that armor!

Wew, that email was a real treat. It reminded me of the good old days on slashdot. I wish I could get troll messages this good.

This smells similiar to the XZ thing -- demoralize &#x2F; beret the maintainer and get them to step down

Honestly seems like you could also easily just laugh it off. People on the internet are weird and gross. But I guess it sounds like he was already kind of over the project anyway.

I&#x27;d say name and shame such asinine correspondence, but somehow I doubt &quot;Diego Jewstein&quot; is the irate individual&#x27;s real name.

As the maintainer he gets to call the shots, so this response is perfectly fair. It&#x27;s easy for me to say &quot;I wouldn&#x27;t have reacted like this&quot;, especially since I&#x27;m kind of numb to this type of shit-slinging, but I haven&#x27;t had such visceral anger directed towards my hard work, so I really don&#x27;t know.

Gotta have a thick skin to deal with the general public, developer community or not

Lol. The guy expected a good API in a JavaScript library that handles LDAP. Both of these have a terrible handling to begin with.

Diego!

If you&#x27;re selling proprietary software and are worried about an OSS competitor, forget FUD, legal battles and patent challenges. Just send a few of these emails to the primary maintainer, and the OSS competitor will be no more.<p>&#x2F;s

It sounds like he took on the project as a lark, and then dropped it for an equally spontaneous reason. This is okay.

That mail looks like it was written by some LLM....I wouldn&#x27;t take it seriously.