Post B2XkEXpu3FGZnE4cbI by A5vV5XjiPtpzHGIAz2.graf@poa.st
(DIR) More posts by A5vV5XjiPtpzHGIAz2.graf@poa.st
(DIR) Post #B2XjnryD5N8KQ1Etuq by sun@shitposter.world
0 likes, 0 repeats
Should #Bleromo reload timelines after you make a post/reply or should it only do it when you explicitly press the refresh button?
(DIR) Post #B2XjnsVB6nVM4GfEIq by jeff@mk.magicka.org
0 likes, 0 repeats
@sun@shitposter.world after post if you are making a reply tbh
(DIR) Post #B2Xjnt2r5aRXkiQ7nM by sun@shitposter.world
0 likes, 0 repeats
@jeff but not when you just make a new post?
(DIR) Post #B2XjnvrGd7xMTe1PeK by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@sun @jeff whenever you reply it should add the reply but not explicitly refresh the thread as thats unneeded in 100% of cases on fedi (1-12 hours for a reply)
(DIR) Post #B2Xk6xNHDV6OgL47jE by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world i'd say schedule deferred refresh of the thread replied to, in the case that someone replied right away you get it.
(DIR) Post #B2Xk6ztxowRAWINFxI by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun The idea behind this FE (correct me if I'm wrong, moon) is to be liminal including limiting it's network activity. Front loading, like emojis and stuff sure, fine. Pleroma's API provides an endpoint to count new messages, new notifications etc that is already in use in Bleromo. Adding a reply to a thread shouldn't refresh that because you haven't seen any of those notifications, nor should it add to it because it's not something somebody said to you. Right?
(DIR) Post #B2XkEXpu3FGZnE4cbI by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun What I am saying is, there exist buttons to manually refresh this. Why does it have to be done automatically? This is dangerously into websocket territory and WS is cringe
(DIR) Post #B2XkVADF8VwbRsunyq by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world misskey uses ws for ui and it's really good tbh
(DIR) Post #B2XkVDyr7woR8QDN6u by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun websocket isn't supported in a lot of old browsers even if you shoehorn in TLS1+
(DIR) Post #B2XkVJAjpCHvEioQpE by sun@shitposter.world
1 likes, 0 repeats
@graf @jeff it does use buttons so you are the one who decides when it does network traffic. But kind of when you do an action like make a post it should update the tl enough to add the post. It could be intelligent about it and only refresh if it needs to fill in the gaps.so there is kind of a philosophy to the frontend but it's not totally pure either.
(DIR) Post #B2XkbKRzz6j0wGkz0y by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@sun @jeff Okay, I can get behind that. Reply, quick refresh. API calls are very small tax-wise
(DIR) Post #B2XkdiqwEEc5CTYzR2 by jeff@mk.magicka.org
1 likes, 0 repeats
@graf@poa.st @sun@shitposter.world if your browser doesn't do websockets it really can't be considered a web browser per se
(DIR) Post #B2Xkdmfk1o292uM6XQ by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun 85% of the people who would use Bleromo actively would call you a faggot
(DIR) Post #B2Xkzz1yl9PtkLLIEi by jeff@mk.magicka.org
1 likes, 0 repeats
@graf@poa.st @sun@shitposter.world doesn't even fucking midori support websockets?
(DIR) Post #B2Xl02BJ2vezW8jHgu by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun Don't know and I don't care. What I am saying to you is you need to understand the market for this front end. Moon is building a very specific front end for a very niche group. I'll use the absolute fuck out of it sure, I know a lot of other people who will too. Not sure how old you are but when Win95 came around you needed to install a package called WINSOCK just to be able to communicate with the network. You dialed up to get your messages. You didn't get them delivered to you. That's the internet I want and the internet I miss
(DIR) Post #B2XlGLpfkffT66OITI by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun https://wiki.poast.org/wiki/Trumpet_Winsock/I forgot the trumpet part lmfao
(DIR) Post #B2XlIwtSvjMicUP6Ei by sun@shitposter.world
1 likes, 0 repeats
@graf I'll make a PHILOSOPHY document for the project tomorrow because the project should have that to guide it.
(DIR) Post #B2XlKmBRijtHyygYS0 by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@sun makes sense. I have some ideas in the pipeline when I have a nap I will PR
(DIR) Post #B2XlaM4QZoFzcwpacq by sun@shitposter.world
0 likes, 0 repeats
@graf windows 3.11 was the first windows to include a tcp stack by default, windows 95 had it by default too but I get your point.
(DIR) Post #B2XlaOVnV1L3CPeTZ2 by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@sun Windows 95 had support for it but it was absolutely NOT default. I went through setup of the winsock library twice. This was back when Cable internet was unmetered 100mbit symmetrical. LANcity modems were unlocked and they couldn't flash them over the network so everybody that had BRAND@home internet had unmetered 100mbit for like ~3 years in canada
(DIR) Post #B2XmVN4fW5svFN8CHY by jeff@mk.magicka.org
0 likes, 0 repeats
@sun@shitposter.world @graf@poa.st doesn't pleroma have a telnet ui? that would honestly be more period appropriate imo.
(DIR) Post #B2XmVQ1EZJv6NaXzqS by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun ssh but I think they disabled it. I can't recall. I used to run it for poast but that was back in 2021/2022
(DIR) Post #B2XmWNMBx2k0Pfo4Ce by sun@shitposter.world
0 likes, 0 repeats
@graf sounds good, please tho maybe make a want list so we can talk about it a bit first but I'm not gonna be a dick and not merge.
(DIR) Post #B2XmWNnUJYZjmKZrkW by sun@shitposter.world
0 likes, 0 repeats
@graf incidentally I want ruffle/flash support and nes rom support, but only if we can only load on demand if a user specifically clicks through to play
(DIR) Post #B2XmWOJ2QFoRMBL3vU by sun@shitposter.world
1 likes, 0 repeats
@graf I looked it up and apparently Vite allows you to do this pretty easily so I'll be trying to add it at some later point, but only after more important stuff is done.
(DIR) Post #B2Xmaxbb7doPzhCNe4 by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@sun add a WANTS.md file in the source and ill PR anything I can think of
(DIR) Post #B2XmcbwMdx1vNdhPAu by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world ssh i know of but otp had a really bad rce in their ssh lib which was maximum oof
(DIR) Post #B2Xmceofwzf8If7o6i by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun ssh had an RCE itself too
(DIR) Post #B2Xmus7rCmq0n5mZFY by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world openssh or otp's ssh implementation?
(DIR) Post #B2Xmuuh1f09qkkFgLQ by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun OpenSSH https://blog.qualys.com/vulnerabilities-threat-researc...First one in what? a decade almost?
(DIR) Post #B2XmzxLZDjyKQpcSqu by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world CVE-2025-32433 was in erlang otp's ssh implementation.
(DIR) Post #B2XmzztJlE9qK5QRjk by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun this is CVE-2024-6387
(DIR) Post #B2XnAUV2oWYQ9K4kme by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world pleroma doesn't use openssh it used erlang otp's ssh server as i understood.
(DIR) Post #B2XnAXZ3Q4XnecyUwy by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun No I am just musing about having SSH open in any regard on an active pleroma server
(DIR) Post #B2XnUbZQEe09s0iMEa by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world just expose a telnet endpoint tbh
(DIR) Post #B2XnUez3XnHySNjN6e by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun I simply wont. Just ssh schizo.chat
(DIR) Post #B2XnpIswtuxQ06iZIO by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world i'm not giving you my ssh pubkey just to watch people say slurs online.i wonder if i could get fido auth working over telnet...
(DIR) Post #B2XnpLKJp82TZZXSEa by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun ? its anonymous login there is no pubkey handshake
(DIR) Post #B2Xo6f6HYixlp3EPSq by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world if there's no server side public key then what's the point of using ssh? is it even ssh at that point?
(DIR) Post #B2Xo6hcyAAIXf0XXgu by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun the only handshake is between your desktop telling the server your username (jeff i assume, could be faggot I'm not sure) so you can be assigned a chat color here's the source you paranoid nigga https://github.com/shazow/ssh-chat
(DIR) Post #B2XoQMG5K3IjB2CylE by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world ssh clients may still try to send public keys i forget what the spec says for this case
(DIR) Post #B2XoQMfFoTQyR5z4zY by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world in order to have authenticated encryption both sides need to exchange public keys, so no matter what the public key is sent it's just that every public key is accepted
(DIR) Post #B2XoQPYH4sdLOJk31s by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun Ah you're going to be one of those people "umm acksually" You do not transmit your typical key to the server and to try to paint it as insecure because of that is gay
(DIR) Post #B2Xocq20S9w8zVZfH6 by jeff@mk.magicka.org
0 likes, 0 repeats
@graf@poa.st @sun@shitposter.world i do cryptonalysis on this because you're a massive faglord who doesn't know what he's doing tbh
(DIR) Post #B2XocsVrE90GgfYX56 by A5vV5XjiPtpzHGIAz2.graf@poa.st
0 likes, 0 repeats
@jeff @sun ah, so you are talking me to get a rise. bye
(DIR) Post #B2XtDayDoQCYoMaR0K by sun@shitposter.world
0 likes, 0 repeats
@graf ok added.