Post AW2jJsYK8MXaPy6Fea by april@toot.dummy.cafe
 (DIR) More posts by april@toot.dummy.cafe
 (DIR) Post #AW2iK8TgpAIrr4UUyG by lain@lain.com
       2023-05-26T09:35:37.132823Z
       
       20 likes, 26 repeats
       
       Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:location ~ ^/(media|proxy) {        add_header Content-Security-Policy "sandbox;";Most people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.
       
 (DIR) Post #AW2jJsYK8MXaPy6Fea by april@toot.dummy.cafe
       2023-05-26T09:45:14Z
       
       0 likes, 0 repeats
       
       @lain context?
       
 (DIR) Post #AW2jJtBJnNjUMuLOQy by lain@lain.com
       2023-05-26T09:46:31.741041Z
       
       0 likes, 0 repeats
       
       @april poa.st had someone steal their admin oauth token, this will prevent it.
       
 (DIR) Post #AW2jOrsC5V2Nl4lz1c by crafti@akkoma.0x68756773.moe
       2023-05-26T09:45:27.698865Z
       
       0 likes, 0 repeats
       
       @lain explanation? background?
       
 (DIR) Post #AW2jOsUTn9f7fogYhU by lain@lain.com
       2023-05-26T09:46:43.209844Z
       
       0 likes, 0 repeats
       
       @crafti will follow
       
 (DIR) Post #AW31X3wOtyvGg4nWMq by curtis@social.teci.world
       2023-05-26T13:11:18.286871Z
       
       0 likes, 0 repeats
       
       @lain Don’t forget the ending }