Post AZRsf756Rnu4P8LMOW by rees@breastmilk.club
(DIR) More posts by rees@breastmilk.club
(DIR) Post #AZRJXTIeSVmibMIks4 by NEETzsche@iddqd.social
2023-09-05T00:02:24.905729Z
4 likes, 1 repeats
https://gitlab.com/soapbox-pub/soapbox/-/merge_requests/2657Click mergeRT:: https://gleasonator.com/objects/bafe7e15-2fe9-46bc-81c0-df51147c18eb
(DIR) Post #AZRMAVdNugMl2lk2Wu by alex@gleasonator.com
2023-09-05T00:31:47.014064Z
2 likes, 1 repeats
@NEETzsche Why would I do that? First of all, it doesn't really work. Look again at Clout Chaser's reply in the second screenshot. It didn't strip the @ mentions off them.Second, don't negotiate with terrorists. This is on them, not us.
(DIR) Post #AZRRjCxrom1Z2ygezg by NEETzsche@iddqd.social
2023-09-05T01:34:10.968451Z
2 likes, 0 repeats
Hey that’s a great criticism. Anyway, I hold a different view. If we can make the system more bulletproof to shenanigans, might as well.
(DIR) Post #AZRmIuo2o2RCEoOdgO by malakai@the.usualsuspects.lol
2023-09-05T05:24:45.948115Z
0 likes, 0 repeats
I think it’s already fixed on fse’s end. I can see their posts on soapbox now
(DIR) Post #AZRmLuYCDGHKJWPbns by NEETzsche@iddqd.social
2023-09-05T05:25:16.883599Z
0 likes, 0 repeats
It’s like an exploit or something, and Pete turned it off.
(DIR) Post #AZRmmRziUYirZEwJaC by rees@breastmilk.club
2023-09-05T05:30:06.608697Z
1 likes, 0 repeats
@NEETzsche @alex @malakai it's not an exploit it's just sending junk data
(DIR) Post #AZRmyxHZzOVE54G1WS by mint@ryona.agency
2023-09-05T05:31:50.384241Z
1 likes, 1 repeats
@rees @alex @NEETzsche @malakai A data that is shown correctly on every frontend except two.
(DIR) Post #AZRmz69kzqapbPfP4y by NEETzsche@iddqd.social
2023-09-05T05:32:20.511784Z
0 likes, 0 repeats
Well if he turned it off I no longer care. I just wanted my shit to work, and I made it work.
(DIR) Post #AZRnECmQeTgKUOxVJ2 by rees@breastmilk.club
2023-09-05T05:35:07.535929Z
1 likes, 1 repeats
@NEETzsche @alex @malakai your stuff never stopped working he just sent you bad data. it's like having a sensor reading for temperature and then he sends out -300 degrees celcius. a solution to the problem is to reject any posts that have an empty body and no attachments because it's ultimately just more spam
(DIR) Post #AZRnI2qvVIh8rGtSMK by rees@breastmilk.club
2023-09-05T05:35:49.303251Z
1 likes, 0 repeats
@roboneko @alex @NEETzsche @malakai idk but I've taken down breastmilk.cafe multiple times already trying to open threads
(DIR) Post #AZRnubwFVIdugAly6q by alex@gleasonator.com
2023-09-05T05:42:36.102499Z
7 likes, 1 repeats
@mint @rees @NEETzsche @malakai The only two FEs that support quote posting with backwards compatibility. After the inline mentions incident we made an effort to try to make everybody happy with quote posts. But you fucktards will never be happy. Pete is creating a problem out of a solution to another problem, that he would have otherwise bitched about if it had not been implemented. Do you see the impossible situation? We can't have it all. So the real message is: "slow down cowboy. I want to see more failure." Lol, fuck no. Anyways, back to the grind.
(DIR) Post #AZRoA1i7xvNwxDWBpA by NEETzsche@iddqd.social
2023-09-05T05:45:34.020138Z
1 likes, 0 repeats
Fair enough I suppose.
(DIR) Post #AZRoImXFkyKOUjbflI by rees@breastmilk.club
2023-09-05T05:47:09.467067Z
7 likes, 5 repeats
@mint @alex @NEETzsche @malakai pete could send out posts with an mrf that injects "PEE PEE POO PEEE", add a peepeepoopee™ decryption algorithm a couple of frontends that detects if it's signed with peepeepoopee and removes all instances of peepeepoopee from each post and then force everyone to implement the peepoopee filter algorithm to every frontend that exists just to be compliant or you can just reject the posts for spam because that's what it actually is. it adds noise to the network and isn't actually a feature. quote posts are an actual feature that people like.
(DIR) Post #AZRoOOyEHcgL9Au87k by alex@gleasonator.com
2023-09-05T05:48:03.799221Z
3 likes, 1 repeats
@rees @mint @NEETzsche @malakai This guy gets it.
(DIR) Post #AZRoPg18OAwiJ3s47U by NEETzsche@iddqd.social
2023-09-05T05:48:22.624477Z
2 likes, 0 repeats
I lol’d. Alright, I’m convinced.
(DIR) Post #AZRoYOeqIhZF4abOz2 by djsumdog@djsumdog.com
2023-09-05T05:49:27.194565Z
1 likes, 0 repeats
We should make all web sites display correctly on IE6.
(DIR) Post #AZRoadrOkVCanmXtLs by mint@ryona.agency
2023-09-05T05:49:50.964940Z
4 likes, 2 repeats
@alex @rees @NEETzsche @malakai Both my personal forks of bloat and pleroma-fe support quoteposts and yet weren't vulnerable to the problem since I accounted for that exact scenario.
(DIR) Post #AZRogtI2ILSUOSz86K by NEETzsche@iddqd.social
2023-09-05T05:51:28.954672Z
4 likes, 0 repeats
Well, my personal fork of Soapbox still accounts for this exact scenario but the PR got rejected, Pete lifted the stupid exploit, and now none of it matters. Any further malding about this amounts to Asperger’s.
(DIR) Post #AZRp6SCVdNohuJab2W by rees@breastmilk.club
2023-09-05T05:56:08.140192Z
2 likes, 2 repeats
@mint @NEETzsche @alex @malakai >force everyone to implement the peepoopee filter algorithmI meant the peepeepoopee filter not the peepoopee filter, totally different spec
(DIR) Post #AZRp8MtUKsJG1mbaPg by alex@gleasonator.com
2023-09-05T05:56:18.851315Z
2 likes, 0 repeats
@mint @rees @NEETzsche @malakai You literally can't. If he wraps .inline-recipients instead of .inline-quote, all replies would be affected. It's only "fixable" for quote posts because FSE does not support quote posts. By the very nature of the way this works, it's fundamentally impossible to just "patch" this on the frontend. It's all or nothing, you either allow hidden elements or you don't.
(DIR) Post #AZRpKpMEKo0dmTzROS by Pyrrho@freespeechextremist.com
2023-09-05T05:58:44.597759Z
4 likes, 2 repeats
@alex @mint @rees @NEETzsche @malakai If you didn't do anything wrong, why are you trying to hide these elements? Mind if we let our dog take a quick sniff?
(DIR) Post #AZRpNrgy6yIvtF8eoq by NEETzsche@iddqd.social
2023-09-05T05:59:15.146851Z
2 likes, 0 repeats
You could make it detect if a particular filter would hide basically the whole thing and just not allow that unless it has attachments, but really, fuck it, who the fuck cares at this point. Even then he could just make it say “PEE PEE POO POO” and hide the rest of the message and then call it a Soapbox bug.
(DIR) Post #AZRpYfsqM5uCS5qbLc by mint@ryona.agency
2023-09-05T06:00:40.969088Z
0 likes, 0 repeats
@alex @rees @NEETzsche @malakai Then don't allow them, or check the contents of said span before hiding.
(DIR) Post #AZRppk4S2ZpsMTPoKO by NEETzsche@iddqd.social
2023-09-05T06:04:15.418754Z
1 likes, 0 repeats
I mean why is he marking the entire post as hidden in the first place? Maybe don’t do that.
(DIR) Post #AZRpve5VCM9BXiiomO by rees@breastmilk.club
2023-09-05T06:05:23.485696Z
4 likes, 1 repeats
@mint @alex @NEETzsche @malakai you can actually overcorrect trying to accommodate for bad data and create more bad data. in AI it's called over-fitting. the solution is actually just to defederate because they are intentionally sending you bad data and they will likely continue to keep doing it
(DIR) Post #AZRq37np7LhrjG1Fdw by mint@ryona.agency
2023-09-05T06:06:12.642380Z
3 likes, 0 repeats
@NEETzsche @rees @alex @malakai Because it's fun to make soydevs seethe.
(DIR) Post #AZRqPeEhDAgGgrKQLI by alex@gleasonator.com
2023-09-05T06:10:13.819413Z
3 likes, 1 repeats
@NEETzsche @rees @mint @malakai Yep, I thought of that too. Still imperfect because there could be valid use-cases to hide the whole content.Per-instance custom HTML scrubbers would be the ideal way to solve it on your end, because you could say "x server loses its classname privileges". Targeting specific servers makes more sense than solving it as a general problem.The main reason not to do any of this is because it would be allowing Pete to waste our time fixing something that benefits him more than us.
(DIR) Post #AZRqXCsao2fiA7atVI by alex@gleasonator.com
2023-09-05T06:11:58.886088Z
1 likes, 0 repeats
@mint @rees @NEETzsche @malakai You're missing that hidden elements are considered a *feature* and not a bug.
(DIR) Post #AZRqbSXSWmdBt1jkDQ by NEETzsche@iddqd.social
2023-09-05T06:12:54.797463Z
2 likes, 0 repeats
I should make the client automatically send a request to the admin BE to defederate the entire instance when it detects this kind of bullshit. That would make script kiddies like Pete seethe. Brb writing the PR now.
(DIR) Post #AZRqrD4VnizaYAhvEm by Pyrrho@freespeechextremist.com
2023-09-05T06:15:48.025735Z
1 likes, 1 repeats
@alex @mint @rees @NEETzsche @malakai Sir, we inspected your hidden elements and *Pulls out Jackfruit* you can't import this foreign fruit. There isn't even any protein in it, you doofus!
(DIR) Post #AZRqyNXxFoMR43thlw by mint@ryona.agency
2023-09-05T06:16:31.727701Z
1 likes, 0 repeats
@alex @rees @NEETzsche @malakai An antifeature, if I will. The only hidden elements to my knowledge are quote fallbacks (solvable by checking the existence of an actual quote) and the inline mentions (which are already handled the right way by pleroma-fe and my bloat which simply show only the hidden mentions above the post, but that isn't twitteresque enough for your liking).
(DIR) Post #AZRr8ACfid0OZpbmN6 by alex@gleasonator.com
2023-09-05T06:18:41.493474Z
2 likes, 0 repeats
@NEETzsche @mint @rees @malakai Write one that lets you specify a list of domains, and then scrub the html of all class names from the given domains.Detecting it automatically is too hard or impossible. You just need the ability to quarantine Peter.
(DIR) Post #AZRrBDtmR6mwuGENIu by rees@breastmilk.club
2023-09-05T06:19:24.393601Z
2 likes, 0 repeats
@mint @alex @NEETzsche @malakai why don't you complain the wsg for implementing hidden elements in html and then start a political movement to remove it from the spec and create websites without it
(DIR) Post #AZRrJlgIiWvHzw05sO by alex@gleasonator.com
2023-09-05T06:20:48.151811Z
2 likes, 0 repeats
@mint @rees @NEETzsche @malakai We clearly have different priorities. So we will go our own ways on it. But I'm sure we can still collaborate in other ways.
(DIR) Post #AZRrPpi4eTkoEJioqG by NEETzsche@iddqd.social
2023-09-05T06:22:01.013548Z
3 likes, 0 repeats
>solvable by checking the existence of an actual quoteMy PR runs the isQuote() function, but that function just checks if the quote_url field has a value. Well, what if Pete makes that field say “POO POO PEE PEE”? Take that Nichy, your code is still broken. It’s script kiddy shit. I’ve done an about face on this twice now, and I’m currently thinking it’s a self-own again.
(DIR) Post #AZRrStiKDmqjW7Ihc0 by mint@ryona.agency
2023-09-05T06:22:10.752933Z
2 likes, 0 repeats
@alex @rees @NEETzsche @malakai True that.
(DIR) Post #AZRras0qQlBoYblT3w by mint@ryona.agency
2023-09-05T06:23:33.600344Z
0 likes, 0 repeats
@rees @alex @NEETzsche @malakai Hidden elements serve a purpose, but if end-user input isn't getting sanitized to prevent them from abusing it, I'm inclined to believe it's a site's problem.
(DIR) Post #AZRrhy9ZztcJd7EelU by rees@breastmilk.club
2023-09-05T06:25:19.564634Z
1 likes, 0 repeats
@mint @alex @NEETzsche @malakai you can just defederate. if pete wants to he can get around your sanitization method
(DIR) Post #AZRrjfsYuczJX25YxM by NEETzsche@iddqd.social
2023-09-05T06:25:36.598055Z
4 likes, 0 repeats
Why do we need to sanitize FSE’s malformed HTML to make sure that it doesn’t say “POO POO PEE” or hide the entire message or whatever other stupid shit Pete comes up with? It’s not 1995 anymore so he can’t make my CD-ROM drive open and close anymore because I don’t have one, so this is the shit he’s resorting to.
(DIR) Post #AZRruR3GNerqjNE1js by rees@breastmilk.club
2023-09-05T06:27:34.748237Z
2 likes, 0 repeats
@NEETzsche @alex @mint @malakai this is actually why you don't ever want to use blacklists for XSS sanitization because people will just find a way around it. the XSS cat and mouse chase has been going on for decades. the right way to do it is just whitelist and be done with it. same thing goes for fedi, just defed and be done with the problem.
(DIR) Post #AZRsEdoMeMSc60tJya by NEETzsche@iddqd.social
2023-09-05T06:31:12.716775Z
5 likes, 0 repeats
Pete should have done this for April Fool’s or something and actually made it funny.
(DIR) Post #AZRsJMghk5QeR6YqDQ by mint@ryona.agency
2023-09-05T06:31:44.871880Z
1 likes, 0 repeats
@NEETzsche @rees @alex @malakai Who abuses it doesn't matter, any user can wrap their post in that class like I did right now with this phrase. As a matter of fact, I have discovered it months ago and trolled a few people as well. Didn't take it to these heights, of course.
(DIR) Post #AZRsUJ87JKDCaSbJ4a by NEETzsche@iddqd.social
2023-09-05T06:34:01.064838Z
3 likes, 0 repeats
And what are the consequences of them doing this, aside from me not seeing their dumb remarks? I put in a PR to fix it and I bitched about it for about half a day but this isn’t exactly a hill to die on and I’m not sure why you’re making it into one.
(DIR) Post #AZRsUVjmR7T9gkJYRc by alex@gleasonator.com
2023-09-05T06:33:57.793451Z
5 likes, 0 repeats
@NEETzsche @mint @rees @malakai If you want to be evil, just append <span class="inline-quote">pete is a poo poo pee head</span> to every post.
(DIR) Post #AZRsf756Rnu4P8LMOW by rees@breastmilk.club
2023-09-05T06:36:01.148694Z
0 likes, 0 repeats
@mint @alex @NEETzsche @malakai is it an exploit if I use follower-only scope so only some people can see my posts
(DIR) Post #AZRshOEtcqW6CL0fjc by rees@breastmilk.club
2023-09-05T06:36:25.794552Z
0 likes, 0 repeats
@alex @NEETzsche @mint @malakai feature not a bug
(DIR) Post #AZRspqKL50DpcxaPy4 by CumskinFoidPuncher69420@beefyboys.win
2023-09-05T06:37:29.905782Z
4 likes, 2 repeats
pete is a poo poo poo head
(DIR) Post #AZRsqo94g0rX9OmGjw by mint@ryona.agency
2023-09-05T06:37:38.007944Z
1 likes, 0 repeats
@NEETzsche @rees @alex @malakai Considering how many people complained about it, "not seeing their dumb remarks" seems to be a dealbreaker for some. You actually did the most reasonable thing during the whole skirmish, even if it was rejected.
(DIR) Post #AZRszTsLPP9MtJ5VM8 by mint@ryona.agency
2023-09-05T06:39:11.961239Z
1 likes, 0 repeats
@rees @alex @NEETzsche @malakai Yes, actually. Followers-only is broken and detrimental to the discourse.
(DIR) Post #AZRtCOR4weHRmhUXZ2 by rees@breastmilk.club
2023-09-05T06:42:01.992703Z
0 likes, 0 repeats
@mint @alex @NEETzsche @malakai what about DM scope
(DIR) Post #AZRtDnqxvdgIuBGwUa by NEETzsche@iddqd.social
2023-09-05T06:42:12.111432Z
1 likes, 1 repeats
That’s fair I suppose but I haven’t given a shit what FSE niggers have to say in over a year lol
(DIR) Post #AZRtLcalgJu4IOQM52 by mint@ryona.agency
2023-09-05T06:43:27.005177Z
0 likes, 0 repeats
@rees @alex @NEETzsche @malakai No, because it has a finite and explicitly defined list of receivers that are the people you explicitly tag in it.
(DIR) Post #AZRtQpUZ9BrZkh0Sky by rees@breastmilk.club
2023-09-05T06:44:38.376499Z
1 likes, 1 repeats
@mint @alex @NEETzsche @malakai so does followers only, it's in the activity stream spec
(DIR) Post #AZRteZPNk5xZvL8Lxo by NEETzsche@iddqd.social
2023-09-05T06:47:04.338162Z
5 likes, 1 repeats
Clearly the solution is to jump ships to Nostr where your username looks like a SHA
(DIR) Post #AZRtpCxBZLZ9T119e4 by mint@ryona.agency
2023-09-05T06:48:32.715320Z
0 likes, 0 repeats
@rees @alex @NEETzsche @malakai The followers list is dynamic. If you happen to be on an origin instance or the one that already federated prior followers-only posts, and you subscribe to an user with them, you are eligible to read them, yet if it's the opposite, you suddenly aren't. Don't get me started on how majority of frontends copy scopes, encouraging repliers to break threads further.
(DIR) Post #AZRtwUhtxbuWYVLKZk by rees@breastmilk.club
2023-09-05T06:50:21.043216Z
2 likes, 1 repeats
@mint @alex @NEETzsche @malakai take it up with the activitypub spec? it's by design
(DIR) Post #AZRtzzTY1KMmqpIQpU by alex@gleasonator.com
2023-09-05T06:50:48.217459Z
1 likes, 0 repeats
@mint @NEETzsche @rees @malakai It's like a noscript tag.Also, Nostr fixes this because admins can't rewrite users' posts at all.
(DIR) Post #AZRu7FrBVuejgRof9E by NEETzsche@iddqd.social
2023-09-05T06:52:10.528595Z
3 likes, 0 repeats
>make a joke about how the solution is muh nostr >gleason fulfills the prophesy instantly :anintellectual:
(DIR) Post #AZRuEAr0VqQ0C824vo by alex@gleasonator.com
2023-09-05T06:53:24.597237Z
0 likes, 0 repeats
@NEETzsche @mint @rees @malakai Users on Nostr have handles that look like fedi. It just can't be bridged that way.
(DIR) Post #AZRuGWFTwF9V81bAi8 by rees@breastmilk.club
2023-09-05T06:53:59.010931Z
1 likes, 0 repeats
@NEETzsche @alex @mint @malakai even if nostr is fundamentally flawed it still fixes a lot of this crap
(DIR) Post #AZRuM1C4JU2QYBclEW by mint@ryona.agency
2023-09-05T06:54:26.673558Z
0 likes, 0 repeats
@rees @alex @NEETzsche @malakai I know, and I have all the rights to openly dislike this part of the spec and to ridicule those who abuse it.
(DIR) Post #AZRuMHKoIkXObvpy52 by NEETzsche@iddqd.social
2023-09-05T06:54:58.328211Z
3 likes, 0 repeats
I think the SHA usernames are going to be an even bigger hurdle for normies to using it than fedi.“What’s your Nostr breh?”“Uh, wel, uh, let me send you the QR code…”
(DIR) Post #AZRuP7LbtDkmVNZ5lI by leyonhjelm@breastmilk.club
2023-09-05T06:55:32.149521Z
0 likes, 0 repeats
@NEETzsche Nostr is the solution to Mastodon because the usernames are so fuckin long@rees @alex @mint @malakai
(DIR) Post #AZRuQsqYm4HC6vsqdU by malakai@the.usualsuspects.lol
2023-09-05T06:55:51.409007Z
3 likes, 0 repeats
> nostr is fundamentally flawedBlockchain fixes that
(DIR) Post #AZRuUGC4QYfPOAYTgG by rees@breastmilk.club
2023-09-05T06:56:28.022689Z
1 likes, 0 repeats
@malakai @alex @NEETzsche @mint can't tell if ironic or not and I'm scared to ask
(DIR) Post #AZRuWNzYPB5S9ZiLUu by alex@gleasonator.com
2023-09-05T06:56:34.009277Z
0 likes, 0 repeats
@NEETzsche @rees @mint @malakai Like I said, they have regular email style names on Nostr, eg @jack@cash.app
(DIR) Post #AZRuZgC1BsGpTJ7BFQ by NEETzsche@iddqd.social
2023-09-05T06:57:25.030641Z
0 likes, 0 repeats
So what stops me from spoofing @alex and making posts about all the steaks I’m eating?
(DIR) Post #AZRucZAnkIeiZMvEhc by rees@breastmilk.club
2023-09-05T06:57:57.902483Z
0 likes, 0 repeats
@NEETzsche @alex @mint @malakai on the ap side or nostr side
(DIR) Post #AZRufmkphwihYkJJzc by alex@gleasonator.com
2023-09-05T06:58:21.820528Z
2 likes, 0 repeats
@NEETzsche @rees @mint @malakai https://cash.app/.well-known/nostr.json?name=jack
(DIR) Post #AZRulAPRBe3wN6rx0y by alex@gleasonator.com
2023-09-05T06:59:23.505407Z
1 likes, 0 repeats
@NEETzsche @rees @mint @malakai Literally upload a JSON file to any domain, and you can be a user on that domain. And you can change it any time without breaking anything.
(DIR) Post #AZRulLyaBJiAFIOfp2 by leyonhjelm@breastmilk.club
2023-09-05T06:59:33.455360Z
0 likes, 0 repeats
@NEETzsche Only your inadequate appetite for mischief, you slacker@rees @alex @mint @malakai
(DIR) Post #AZRulOrFT2cxBPzMJ6 by malakai@the.usualsuspects.lol
2023-09-05T06:59:33.194321Z
2 likes, 0 repeats
(DIR) Post #AZRupxeG3jOEF55Tqi by NEETzsche@iddqd.social
2023-09-05T07:00:18.707517Z
1 likes, 0 repeats
That’s… actually persuasive. You’re starting to sell me breh.
(DIR) Post #AZRuumG9pUlwMv6xIO by mint@ryona.agency
2023-09-05T07:00:46.262145Z
0 likes, 0 repeats
@alex @rees @NEETzsche @malakai How does it behave if there are two separate name identities via nostr.json? Could you tie a fedi account from mostr bridge to that?
(DIR) Post #AZRuyJSopk1gDbiew4 by 11112011@freespeechextremist.com
2023-09-05T07:01:54.175612Z
0 likes, 0 repeats
@NEETzsche @mint @rees @alex @malakai could it be bc fse niggers see thru ur bs?
(DIR) Post #AZRuzzMMYEemRhUyJM by rees@breastmilk.club
2023-09-05T07:02:11.889599Z
0 likes, 0 repeats
@alex @NEETzsche @mint @malakai need to make bigfatvegancocks.com point to your npub
(DIR) Post #AZRv4RgRBai1Rt0tv6 by NEETzsche@iddqd.social
2023-09-05T07:02:57.359792Z
1 likes, 0 repeats
Oof. That’s the other side of it. You can like reverse spoof. Like when the WEF said that Indian guy was a member when he isn’t.
(DIR) Post #AZRvZdDwKT3wDYYS0W by Hoss@shitpost.cloud
2023-09-05T07:08:37.827877Z
4 likes, 2 repeats
What is it with people shitting their fucking diapers about quote posts all the time? If you're angry other people are using them and you don't like it that is very much a "you problem".
(DIR) Post #AZRva9crrK14i8SoIy by alex@gleasonator.com
2023-09-05T07:08:33.235853Z
1 likes, 0 repeats
@mint @rees @NEETzsche @malakai You define your @ in your profile, then clients verify it from the well-known endpoint. Multiple nostr.json's are just multiple options for names you can become.The main problem with bridging this is exactly the flexibility it provides. Fedi software can't handle it. It needs to be a stable name, therefore it uses the pubkey.
(DIR) Post #AZRvaUg7aQ640J9CnA by NEETzsche@iddqd.social
2023-09-05T07:08:45.680671Z
0 likes, 0 repeats
You can’t see through a clear window bro
(DIR) Post #AZRvi9OqaFW2KHicJU by 11112011@freespeechextremist.com
2023-09-05T07:10:11.312607Z
0 likes, 0 repeats
@NEETzsche @rees @alex @mint @malakai sure lad
(DIR) Post #AZRvsiHjjg19PuQgfQ by moomin@poa.st
2023-09-05T07:12:05.330639Z
3 likes, 0 repeats
(DIR) Post #AZRw1IC86ndb6Ztimu by NEETzsche@iddqd.social
2023-09-05T07:13:35.427867Z
0 likes, 0 repeats
I tried Nostr a few months ago and the Android client I got – Amethyst, I think? – was dogshit. Like it was 1990s clunky proof of concept shit.
(DIR) Post #AZRwFKLmtGIlqT6icy by rees@breastmilk.club
2023-09-05T07:16:10.331196Z
6 likes, 6 repeats
@Hoss @alex @NEETzsche @mint @malakai people will bitch about everything. I bet you there's some autist out there complaining about how we removed lead from children's toys because he would melt them down to make paint and can't understand why we removed that "feature"
(DIR) Post #AZRwbz4g9yRWWGuOWW by Hoss@shitpost.cloud
2023-09-05T07:20:15.014179Z
0 likes, 0 repeats
Would it be possible for Mostr to check for this file on an instance and assign that name to the mirrored profile?
(DIR) Post #AZRwkqulrpJlooVFRI by Hoss@shitpost.cloud
2023-09-05T07:21:52.417716Z
4 likes, 0 repeats
>Bring back spacebar heating
(DIR) Post #AZRx0XMML8vnnqt0O8 by alex@gleasonator.com
2023-09-05T07:24:32.539843Z
1 likes, 0 repeats
@NEETzsche @rees @mint @malakai It took fedi over a decade to get good. Nostr is in its infancy, but catching up quickly.
(DIR) Post #AZRx8jJ3o28ZAjFXm4 by rees@breastmilk.club
2023-09-05T07:26:11.344782Z
0 likes, 0 repeats
@lonelyowl @alex @NEETzsche @mint @malakai
(DIR) Post #AZRxBSge3OQ4UoaGUy by alex@gleasonator.com
2023-09-05T07:26:31.559677Z
1 likes, 0 repeats
@Hoss @rees @NEETzsche @mint @malakai In theory yes. In practice this counts as "changing the username", something no fedi software supports because it breaks federation with Mastodon.
(DIR) Post #AZRxM8WFNRS18GoJCS by rees@breastmilk.club
2023-09-05T07:28:36.623179Z
2 likes, 0 repeats
@Hoss @alex @NEETzsche @mint @malakai people got mad that ebay changed their bg from yellowish white to white so they had to slowly change it over the course of a couple years so no one would notice
(DIR) Post #AZRxNeTg2dFSXWKaFE by Hoss@shitpost.cloud
2023-09-05T07:28:52.666270Z
2 likes, 0 repeats
Mastodon sure feels like an engine block tied to our feet while we're trying to tread water.
(DIR) Post #AZRxXIFrWJWEVqSzjc by alex@gleasonator.com
2023-09-05T07:30:27.972538Z
0 likes, 1 repeats
@lonelyowl @rees @NEETzsche @mint @malakai Pretty much. But ultimately I think identities are better as keys. It opens many new doors like encrypted chat.
(DIR) Post #AZRxhe2xLyf0zjMkka by NEETzsche@iddqd.social
2023-09-05T07:32:26.991850Z
1 likes, 0 repeats
The .well-known thing tying the keys to name@domain.tld was a turning point for me. It’s very persuasive. That was the big reason to stay on fedi for me, tbh. Now it’s just a matter of getting the clients to be non-retarded.
(DIR) Post #AZRy6mxXLzejsNowFM by Hoss@shitpost.cloud
2023-09-05T07:37:01.866990Z
0 likes, 0 repeats
Can it be done on just the Nostr side, though? Where the name of my mirrored profile on Nostr is given "Hoss@shitpost.cloud" because Mostr found the file containing the hash of the mirror profile on my site.
(DIR) Post #AZRyJfZk7MNIjxpiaW by alex@gleasonator.com
2023-09-05T07:39:13.891224Z
1 likes, 0 repeats
@Hoss @rees @NEETzsche @mint @malakai Oh, is that what you were asking? Then yes. There would need to be a way for you to negotiate it with the bridge. I've thought about building a UI, but my main path forward is with Ditto.
(DIR) Post #AZS0WA0F0zXkUbJMi8 by mint@ryona.agency
2023-09-05T08:03:28.807308Z
2 likes, 0 repeats
@alex @rees @NEETzsche @malakai Did a thingy.location /.well-known/nostr.json$ { resolver 8.8.8.8; proxy_ssl_server_name on; proxy_ssl_name "mostr.pub"; proxy_set_header Host "mostr.pub"; proxy_pass https://mostr.pub${request_uri}_at_ryona.agency; proxy_buffering on; sub_filter "_at_ryona.agency" ""; sub_filter_types application/json;}https://ryona.agency/.well-known/nostr.json?name=mint returns "mint" when using curl, but "mint_at_ryona.agency" when opening it in browser. Very bizarre.
(DIR) Post #AZS29AXP3mqBOozGme by mint@ryona.agency
2023-09-05T08:21:26.018720Z
0 likes, 0 repeats
@alex @NEETzsche @malakai @rees Added proxy_pass_request_headers off, and it's working as intended now. Guess some gzip encoding or something prevents sub_filter from working. Someone please test how now my account shows from nostr's side.
(DIR) Post #AZS4yJBCtAJUsZ7NIG by 11112011@freespeechextremist.com
2023-09-05T08:53:57.228400Z
0 likes, 0 repeats
@alex @NEETzsche @rees @mint @malakai catching up quickly on the down sideScreenshot 2023-09-05 at 09-52-06 Nostr Stats.png
(DIR) Post #AZSSH9VPNZLDK5WObQ by 11112011@freespeechextremist.com
2023-09-05T13:15:04.497606Z
0 likes, 0 repeats
@NEETzsche @rees @alex @mint @malakai did ur jeovah leader got arrest yet?
(DIR) Post #AZStOofLRTXVlj32vI by zero@strelizia.net
2023-09-05T18:18:49.577363Z
10 likes, 4 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai
(DIR) Post #AZStjemnN1BPCyTEuW by zero@strelizia.net
2023-09-05T18:22:39.934360Z
0 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai i've never seen an FSE post worth reading
(DIR) Post #AZSu6KvFOBMeGLEqHo by malakai@the.usualsuspects.lol
2023-09-05T18:26:50.636782Z
0 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @zero why are you nuking it? Didn't they finally fix their shit?
(DIR) Post #AZSvC2XIlGaWvkJzn6 by malakai@the.usualsuspects.lol
2023-09-05T18:39:04.816077Z
1 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @zero fair enough.I haven't always had good interactions with fse folks either, but they're rare enough for me to not bother with a defed 🤷🏻♂️
(DIR) Post #AZSvRPvM5V5JoJuA5o by zero@strelizia.net
2023-09-05T18:41:45.060288Z
3 likes, 1 repeats
@malakai @rees @alex @NEETzsche @mischievoustomato @mint do you really think he won't do something similar again after all the shit he pulledthe best option is for his last few users leave cause he keeps degrading their experience every time he pulls something like this, or rewrites user posts, etc
(DIR) Post #AZSwUYmTiMt46PobVg by rees@breastmilk.club
2023-09-05T18:53:38.345672Z
1 likes, 0 repeats
@malakai @alex @NEETzsche @mischievoustomato @mint @zero >they're rare enough for me to not bother with a defed the only one I even notice posting is mia
(DIR) Post #AZSwwOJQELChk7Ulqi by zero@strelizia.net
2023-09-05T18:58:37.114795Z
0 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai yeah i saw one guy from there saying in a thread that he likes how "hands off" pete is when that couldnt be farther from the truth lmao
(DIR) Post #AZSx7S12ni72PmAmRc by rees@breastmilk.club
2023-09-05T19:00:40.315415Z
0 likes, 0 repeats
@mischievoustomato @alex @NEETzsche @mint @zero @malakai what happened
(DIR) Post #AZSx8InOZBgc6nC81o by zero@strelizia.net
2023-09-05T19:00:45.782157Z
1 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai yeah that's what was so weird about this situation, actually owning the few people that still like you, what a lad
(DIR) Post #AZSxAjdhjWejwSp1O4 by zero@strelizia.net
2023-09-05T19:01:12.437767Z
1 likes, 0 repeats
@rees @alex @NEETzsche @mischievoustomato @mint @malakai nobody from post could read FSE and they kept bitching at graf when it wasn't even his fault
(DIR) Post #AZSxCuDpMHAhLIklIO by malakai@the.usualsuspects.lol
2023-09-05T19:01:38.794728Z
0 likes, 0 repeats
@zero @rees @alex @NEETzsche @mischievoustomato @mint > do you really think he won’t do something similar again after all the shit he pulledProbably will. This one was squarely in the “very minor inconvenience” category for me because I rarely talk to them. If something actually bad comes from there in the future, I’ll definitely think about it.> the best option is for his last few users leave cause he keeps degrading their experience every time he pulls something like this, or rewrites user posts, etcFrom what I’ve gathered, many users there actually liked this stunt because such a thing is “based” or something
(DIR) Post #AZSxJNKQ3RiBLrvBk8 by zero@strelizia.net
2023-09-05T19:02:43.415077Z
1 likes, 0 repeats
@malakai @rees @alex @NEETzsche @mischievoustomato @mint >From what I’ve gathered, many users there actually liked this stunt because such a thing is “based” or somethingkinda stockholm syndrome-y innit
(DIR) Post #AZSxhVThPE21Zrliu8 by zero@strelizia.net
2023-09-05T19:07:05.312005Z
0 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai yeah it's usually people with a cringe/reddit humor, much like pete
(DIR) Post #AZSxxWsrwjBkZUBLV2 by zero@strelizia.net
2023-09-05T19:10:02.400615Z
1 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai and this isn't even a real bug, there's no actual exploit other than making yourself look bad and annoying your own users
(DIR) Post #AZSy5E1Xx2YSOWuVkW by NEETzsche@iddqd.social
2023-09-05T19:11:25.867311Z
1 likes, 0 repeats
I’d liken it to script kiddies making your CD-ROM open and close. It’s annoying to some, amusing to others, and while I’m not really upset with Alex for not merging my monkey patch, I do think I’m going to leave it up on my personal fork of Soapbox in case Pete runs the exact same code again. Might as well keep it imo
(DIR) Post #AZSyDNgntocQgj65fU by zero@strelizia.net
2023-09-05T19:12:49.206338Z
0 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai it's not about security, he just wrapped all posts in a CSS tag used for something else, making the FE remove the content off the post, there's no security issue
(DIR) Post #AZSyLXjSRbOk9UEM3U by NEETzsche@iddqd.social
2023-09-05T19:14:23.310219Z
1 likes, 0 repeats
I care about being inconvenienced, enough to monkey patch script kiddy ploys from time to time. But I’m not losing sleep over the rest of Soapbox users being “susceptible” to this lol
(DIR) Post #AZSyMV6tg6CiJGePHU by mint@ryona.agency
2023-09-05T19:14:04.137294Z
1 likes, 0 repeats
@malakai @rees @alex @NEETzsche @mischievoustomato @zero No one of relevancy left. Zerg, mia, sysrq, insomniak, all still there and share the same sentiment.
(DIR) Post #AZSyVCvYePzaWTUyZs by zero@strelizia.net
2023-09-05T19:16:07.685692Z
2 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai I'm the one saying it, it's a "bug" that hurts his own users more than everyone else if "exploited", which is pretty funny
(DIR) Post #AZSzEJmO1PaInzie6S by rees@breastmilk.club
2023-09-05T19:24:17.643297Z
2 likes, 0 repeats
@mischievoustomato @alex @NEETzsche @mint @zero @malakai there's no vulnerability and it's not an exploit
(DIR) Post #AZSzKPx5z6kfgfdXH6 by zero@strelizia.net
2023-09-05T19:25:19.695047Z
1 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @malakai pete doesnt like alex and wanted to make him look bad any way he could but it backfired massively
(DIR) Post #AZSzM2KykrH51ha1Nw by NEETzsche@iddqd.social
2023-09-05T19:25:40.748886Z
1 likes, 0 repeats
I told you man, it’s like in the 1990s when guys would get a chuckle by making your CD-ROM open and close. It’s the same prankster psychology. It’s not a serious matter at all but my little two-liner monkey patch solves it regardless, until he finds a new way to do it.
(DIR) Post #AZSzP5FWNuD2vVTpcO by sysrq@freespeechextremist.com
2023-09-05T19:26:16.340569Z
2 likes, 0 repeats
@mint @malakai @NEETzsche @alex @mischievoustomato @rees @zero :mokouyes: sysrq mentioned
(DIR) Post #AZSzRMQNUzfom0dzcG by sysrq@freespeechextremist.com
2023-09-05T19:26:41.137130Z
1 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @zero @malakai because gleason is retarded
(DIR) Post #AZSzTx0kRRpqp8tIWG by rees@breastmilk.club
2023-09-05T19:27:08.843356Z
1 likes, 0 repeats
@mischievoustomato @alex @NEETzsche @mint @zero @malakai to spam and annoy people
(DIR) Post #AZSzUf0EshZXGIzVpo by zero@strelizia.net
2023-09-05T19:27:11.878236Z
1 likes, 0 repeats
@sysrq @rees @alex @NEETzsche @mischievoustomato @mint @malakai see i told you, nothing worth reading from pete dickriders
(DIR) Post #AZSzbdlJtNv3RQLDCC by sysrq@freespeechextremist.com
2023-09-05T19:28:32.585011Z
5 likes, 0 repeats
@zero @NEETzsche @alex @malakai @mint @mischievoustomato @rees Pete derangement syndrome
(DIR) Post #AZSzcJ0eXHXtMqpXHs by malakai@the.usualsuspects.lol
2023-09-05T19:28:39.461515Z
1 likes, 0 repeats
They just cannot help themselves
(DIR) Post #AZSzjKLxwE3zYv9COu by sysrq@freespeechextremist.com
2023-09-05T19:29:55.958756Z
2 likes, 0 repeats
@mischievoustomato @rees @alex @NEETzsche @mint @zero @malakaiohno.jpg
(DIR) Post #AZT02zZEvfzQt5jVpY by graf@poa.st
2023-09-05T19:33:27.609207Z
3 likes, 0 repeats
i am pals with him but what he did caused issues for me beyond poast -- people hosted by us sending in tickets asking if we were blocking instances on their behalf or something which caused headaches for me. ive already spoke to him about it. we are still friends, we still talk. i just hid them from the federated timeline because users were asking me why they couldnt read FSE poasts and it was super annoying
(DIR) Post #AZT05GZSgIwmCbvBFg by sysrq@freespeechextremist.com
2023-09-05T19:33:53.842769Z
4 likes, 0 repeats
@zero @mischievoustomato @NEETzsche @alex @malakai @mint @rees >but it backfired massivelybat jizz enjoyers will insist upon this
(DIR) Post #AZT096s8gPIpHSUSPI by rees@breastmilk.club
2023-09-05T19:34:35.215128Z
1 likes, 0 repeats
@mischievoustomato @alex @NEETzsche @graf @mint @zero @malakai marse moe more like marsey no!!!
(DIR) Post #AZT0hCS0RsV6QaWRAe by DerLeere@varishangout.net
2023-09-05T19:40:44.356251Z
1 likes, 0 repeats
@sysrq @rees @alex @NEETzsche @mischievoustomato @mint @zero @malakai is thread just people crying because P pulled a funny?if so sucks to suck i guess
(DIR) Post #AZT11vnjXwPAs5ZQwK by rees@breastmilk.club
2023-09-05T19:44:29.607790Z
2 likes, 0 repeats
@DerLeere @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai >it's so funny to take up devs and sys admins time for no reason at all and to accomplish nothingif he wanted to be funny he could just dig a hole and then post pictures of him filling it back up with dirt and then writing an essay on why it's beneficial to the fediverse
(DIR) Post #AZT1GpluFJy4Vzp1NI by sysrq@freespeechextremist.com
2023-09-05T19:47:11.579587Z
1 likes, 0 repeats
@rees @DerLeere @NEETzsche @alex @malakai @mint @mischievoustomato @zero "Trusting externally provided html is good, actually"
(DIR) Post #AZT1QfbMudzRrxaDdg by DerLeere@varishangout.net
2023-09-05T19:48:57.265368Z
0 likes, 0 repeats
@rees @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai could you try and harder to not sound mad
(DIR) Post #AZT1QlVuvpC8Cn4wyW by rees@breastmilk.club
2023-09-05T19:48:58.868400Z
1 likes, 0 repeats
@sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere there's no vulnerability, so it's called spam. spam isn't an exploit. spam is dealt with through block lists. you can and will be blocked by people for spam.
(DIR) Post #AZT1RGhgy626wHpI8G by zero@strelizia.net
2023-09-05T19:47:39.247621Z
4 likes, 2 repeats
@rees @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere you gotta question why this guy that supposedly wants to "make the fediverse better" is always doing the opposite (and also lying about coding software)
(DIR) Post #AZT1UXTX4IKFp9lLkG by rees@breastmilk.club
2023-09-05T19:49:39.753613Z
0 likes, 0 repeats
@DerLeere @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai no one is mad lol
(DIR) Post #AZT1bHcAR7bKez19Em by zero@strelizia.net
2023-09-05T19:50:29.731297Z
3 likes, 1 repeats
@DerLeere @rees @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai ok guy that suspiciously showed up in a thread to defend a schizo admin
(DIR) Post #AZT1sV7FUZSLSMlXJw by phnt@fluffytail.org
2023-09-05T19:53:59.339323Z
0 likes, 0 repeats
@rees @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere >>it's so funny to take up devs and sys admins time for no reason at all and to accomplish nothingYou could just make an MRF to rewrite all messages from FSE to append some text like: If you see only this message, than complain to p, because he's doing some stupid stuff, and be done with it. Probably even copy his own and slightly modify it. It's not like these things last forever.
(DIR) Post #AZT1trxc2fFmb5uXbN by DerLeere@varishangout.net
2023-09-05T19:54:12.971659Z
0 likes, 0 repeats
@zero @rees @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai 🤓
(DIR) Post #AZT1zfUJKNijeSyDuS by NEETzsche@iddqd.social
2023-09-05T19:55:15.507937Z
2 likes, 0 repeats
Just make an MRF to rewrite all messages from FSE to read “I am gay” that will btfo Pete.
(DIR) Post #AZT24BHZ3htbQ19zuq by phnt@fluffytail.org
2023-09-05T19:56:05.889646Z
0 likes, 0 repeats
@NEETzsche @rees @sysrq @alex @mischievoustomato @mint @zero @malakai @DerLeere Or that, make anything you want. If can't defeat them, join them.
(DIR) Post #AZT25t8hU7mxjDpPoe by NEETzsche@iddqd.social
2023-09-05T19:56:21.041637Z
0 likes, 0 repeats
I did defeat them tho lol
(DIR) Post #AZT2PgEpA2kVVX88DA by phnt@fluffytail.org
2023-09-05T19:59:59.175709Z
0 likes, 0 repeats
@NEETzsche @rees @sysrq @alex @mischievoustomato @mint @zero @malakai @DerLeere The fix is not in Soapbox main last time I checked and I think p already disabled that MRF.Also I meant that statement as a more broad thing, than just you.
(DIR) Post #AZT2YuOrsOei2KEEHQ by rees@breastmilk.club
2023-09-05T20:01:39.533751Z
0 likes, 0 repeats
@phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere why go through that effort when you can just defed
(DIR) Post #AZT2elNgK2OXnlSuKO by rees@breastmilk.club
2023-09-05T20:02:43.042778Z
1 likes, 0 repeats
@phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere there's nothing to be fixed, it's not on developers to fix bad actors sending junk data
(DIR) Post #AZT2gjBrRDQhaQsBqC by zero@strelizia.net
2023-09-05T20:02:03.167030Z
2 likes, 0 repeats
@phnt @rees @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere there's nothing to fix it's not a bug
(DIR) Post #AZT2jpn3M9GMvNkbT6 by sysrq@freespeechextremist.com
2023-09-05T20:03:38.360592Z
0 likes, 0 repeats
@phnt @rees @DerLeere @NEETzsche @alex @malakai @mint @mischievoustomato @zero this seems like a lot of effort to go through to get back at a "self own"
(DIR) Post #AZT2netHp24QHLUQaW by phnt@fluffytail.org
2023-09-05T20:04:18.962873Z
0 likes, 0 repeats
@rees @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere You can do anything, but with the MRF thing some people may actually write to p and complain making him maybe disable it faster.
(DIR) Post #AZT2xYElPmU4XTFjfc by phnt@fluffytail.org
2023-09-05T20:06:06.820125Z
0 likes, 0 repeats
@sysrq @rees @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere I don't see 5 minutes as a lot of effort. In the end I don't care about it, because I run mainline Pleroma and I don't mind FSE users.
(DIR) Post #AZT2z8Z1q0vLUhUIrY by rees@breastmilk.club
2023-09-05T20:06:22.436141Z
1 likes, 1 repeats
@phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere or just defed him. you're a scientist collecting temperature readings, you get one sensor that says 1000000 degrees while 1000 other sensors are returning normal results of 70 degrees because it's just measuring outdoor temperature. you don't write an algorithm to correct that 100000 degrees you just discard the data because that's a dumb waste of time
(DIR) Post #AZT33BRx3BP1bR6hBA by sysrq@freespeechextremist.com
2023-09-05T20:07:08.149783Z
2 likes, 0 repeats
@rees @phnt @DerLeere @NEETzsche @alex @malakai @mint @mischievoustomato @zero >just defed himI thought this was a "self own"!
(DIR) Post #AZTC0dbH8hrGxVFIPI by dcc@annihilation.social
2023-09-05T21:47:22.679286Z
0 likes, 0 repeats
@sysrq @rees @phnt @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere Because its not a self own, a bug is a bug. Next time a pleroma vulnerability comes out just defed people who try to use it right? :cirno_heh:
(DIR) Post #AZTC7IVtwBxNaQuKrw by rees@breastmilk.club
2023-09-05T21:48:43.174688Z
0 likes, 0 repeats
@dcc @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere there's no vulnerability
(DIR) Post #AZTDRjUBSsRwzAPdHE by dcc@annihilation.social
2023-09-05T22:03:26.760679Z
1 likes, 0 repeats
@rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere
(DIR) Post #AZTEVm7PiaPgGOFloW by dcc@annihilation.social
2023-09-05T22:15:23.976465Z
0 likes, 0 repeats
@roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere ?
(DIR) Post #AZTFV1ILuIH2zrZcWG by zero@strelizia.net
2023-09-05T22:26:26.015050Z
2 likes, 0 repeats
@dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere you can make gifs spin all across the screen and shit
(DIR) Post #AZTFnk6S3BbHB9w0em by rees@breastmilk.club
2023-09-05T22:29:59.826075Z
1 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere that one is actually a vulnerability because you can cover the screen and make things completely unable whereas petes one is just spam
(DIR) Post #AZTFxjfGXGFOiNz3MO by dcc@annihilation.social
2023-09-05T22:31:44.984569Z
0 likes, 0 repeats
@zero @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere O that thing :sulurp:
(DIR) Post #AZTG1Js2NYN7sHfO5Y by zero@strelizia.net
2023-09-05T22:31:49.975220Z
1 likes, 0 repeats
@rees @dcc @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere >when you "exploit" something to only hurt your own users
(DIR) Post #AZTG9IKTzceTPYm50i by dcc@annihilation.social
2023-09-05T22:33:48.344723Z
0 likes, 0 repeats
@zero @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere >O noes you cant have fun and prove a point because i said so
(DIR) Post #AZTGI9ZLvrkiqexCuO by zero@strelizia.net
2023-09-05T22:34:36.618555Z
1 likes, 0 repeats
@dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere he wasn't proving any point he didn't even report the "bug" before "exploiting" it
(DIR) Post #AZTGNvMHgG14VnapF2 by rees@breastmilk.club
2023-09-05T22:36:32.619803Z
0 likes, 0 repeats
@zero @dcc @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @malakai @DerLeere tomato said his point was that pleroma was better coded than soapbox and this was proof of it even though the dm leaks came from a pleroma exploit and there's a ton of actual pleroma security vulnerabilities but none from soapbox
(DIR) Post #AZTGbGKR1cvTJY5Wfw by dcc@annihilation.social
2023-09-05T22:38:48.231673Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere >but none from soapboxIf one has one the other likely has it, anyways the point was to prove alex would not fix the issue.
(DIR) Post #AZTGdaOJP7ac7H0ei8 by rees@breastmilk.club
2023-09-05T22:39:22.242076Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere no the DM leaks came from pleroma-fe
(DIR) Post #AZTGmBLvrjNx4EzmV6 by dcc@annihilation.social
2023-09-05T22:40:49.407104Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere Uh no? it came from image proxy security lol and it affected all three
(DIR) Post #AZTGqYpkVRG93C1v6G by rees@breastmilk.club
2023-09-05T22:41:43.172362Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere if you say so
(DIR) Post #AZTGw0FG1Cu3VtYY9A by dcc@annihilation.social
2023-09-05T22:42:33.962252Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere https://pleroma.social/announcements/2023/08/05/pleroma-security-release-2.5.4/
(DIR) Post #AZTH3zrJL2SkdGAQgS by olmitch@shitposter.club
2023-09-05T22:44:08.880285Z
0 likes, 0 repeats
@rees @roboneko @alex @NEETzsche @malakai wait you're the admin of breastmilk.club?
(DIR) Post #AZTH7ZcmookkQV4xrk by rees@breastmilk.club
2023-09-05T22:44:47.652732Z
0 likes, 0 repeats
@olmitch @roboneko @alex @NEETzsche @malakai no
(DIR) Post #AZTHI77B9q47BrJxOi by rees@breastmilk.club
2023-09-05T22:46:41.894379Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere I stand corrected, but pleroma is junk code and pete doesn't have any idea what he's talking about. you could wrap text in a <img >to hide it</img> and it's not an exploit it's just malformed data
(DIR) Post #AZTHdP2BjEOUqd8bse by dcc@annihilation.social
2023-09-05T22:50:23.071461Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai @DerLeere > I stand correctedNo? also yes it is. It should be displayed correctly.><img >to hide it</img>No lol
(DIR) Post #AZTHgwGGeCmYliPRjM by nishi@hkgk.nishi.boats
2023-09-05T22:51:01.494941Z
1 likes, 0 repeats
@dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai wtf close tag of img 💀
(DIR) Post #AZTHjNCFTSHysygrvk by dcc@annihilation.social
2023-09-05T22:51:34.065435Z
0 likes, 0 repeats
@nishi @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai <><img >to hide it</img> :pepe_smart:
(DIR) Post #AZTHppNPc8tM1QzQrg by nishi@hkgk.nishi.boats
2023-09-05T22:52:39.046284Z
0 likes, 0 repeats
@dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai 💀 i mean i get it but i see it cursed
(DIR) Post #AZTHrYgadmoGptml72 by rees@breastmilk.club
2023-09-05T22:53:06.060595Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai custom emojis are images, you would just set the body to be the shortcode message :likethis: and then have it set to an image that looks like a piece of poop and now every message shows up as poop for any client that supporst custom emjis
(DIR) Post #AZTHsqvaIsL3hZPrai by menherahair@eientei.org
2023-09-05T22:53:15.365501Z
1 likes, 0 repeats
@nishi @dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai [img]http://shitpisscum.net/Rainbob.gif[/img] you had to be there
(DIR) Post #AZTHuCxxqo9aLHAwxk by rees@breastmilk.club
2023-09-05T22:53:34.970733Z
1 likes, 0 repeats
@dcc @NEETzsche @alex @malakai @mint @mischievoustomato @nishi @phnt @roboneko @sysrq @zero took me five seconds to think of an "exploit" and it's not fixable so good luck writing your patch
(DIR) Post #AZTHvy5A9xg4lANjoe by nishi@hkgk.nishi.boats
2023-09-05T22:53:49.630005Z
1 likes, 0 repeats
@menherahair @dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai is this bbcode.
(DIR) Post #AZTI0OGekFg389rmls by dcc@annihilation.social
2023-09-05T22:54:35.094995Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai Thats not a exploit? thats how it should work :cunny:
(DIR) Post #AZTI3IvJ4V99QMGn7g by menherahair@eientei.org
2023-09-05T22:55:09.166189Z
1 likes, 0 repeats
@nishi @dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai yes it is bbcode of phpbb message board fame
(DIR) Post #AZTI4TcMnMN6skyCEi by nishi@hkgk.nishi.boats
2023-09-05T22:55:19.230039Z
0 likes, 0 repeats
@menherahair @NEETzsche @alex @dcc @malakai @mint @mischievoustomato @phnt @rees @roboneko @sysrq @zero :marseygunshotsuicide:
(DIR) Post #AZTI5L5bzMFyio3ng8 by nishi@hkgk.nishi.boats
2023-09-05T22:55:27.186300Z
0 likes, 0 repeats
@menherahair @dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai :marseygunshotsuicide:
(DIR) Post #AZTI8pXPEspi1Yj2zQ by rees@breastmilk.club
2023-09-05T22:56:11.865828Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai it'll only show up in frontends that support custom emojis and display fine in ones that don't, just like pete's thing
(DIR) Post #AZTIFlVUcknjY98ahs by dcc@annihilation.social
2023-09-05T22:57:21.793423Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai Every front end has emojis? if they don't support emojis to bad? There is no argument here lol
(DIR) Post #AZTIWzKQUOXHL6ApjU by rees@breastmilk.club
2023-09-05T23:00:35.337491Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai no one supports using text like pete did in the way that he was using it either, so too bad
(DIR) Post #AZTIalvkFFQSwbQwO8 by menherahair@eientei.org
2023-09-05T23:01:12.477201Z
2 likes, 0 repeats
@nishi @dcc @roboneko @rees @phnt @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @malakai it does what it was designed for well :CirnoToast: we had the sickest signatures and it's hard to fuck up unlike markdown
(DIR) Post #AZTIgiBl4MtV4pkvRI by dcc@annihilation.social
2023-09-05T23:02:12.330508Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai I mean pleroma does, and masodont :alex_lol: so to bad your shit front end wont patch support for it (and to fix real problems that could come from it)
(DIR) Post #AZTIrLTxpc1Vq8LGoC by dcc@annihilation.social
2023-09-05T23:04:07.364485Z
0 likes, 0 repeats
@rees @NEETzsche @alex @malakai @mint @mischievoustomato @nishi @phnt @roboneko @sysrq @zero And again there is already a fix but alex wont add it.
(DIR) Post #AZTJ3kDZgsq81zaXWi by rees@breastmilk.club
2023-09-05T23:06:30.530102Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai he shouldn't add it
(DIR) Post #AZTJ58kVyAHwP3f3oG by olmitch@shitposter.club
2023-09-05T23:06:45.923583Z
1 likes, 0 repeats
@rees @roboneko @alex @NEETzsche @malakai
(DIR) Post #AZTJA7rcgkZp6aMbI0 by dcc@annihilation.social
2023-09-05T23:07:35.399548Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai He should, this is bs reasoning. Fixing problems is what he should do.
(DIR) Post #AZTJCfg3wRD6YUAbCq by rees@breastmilk.club
2023-09-05T23:08:07.495170Z
0 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai
(DIR) Post #AZTJMysZP9tj0Jw6uu by dcc@annihilation.social
2023-09-05T23:09:51.455917Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai There is likey a fix :sf:
(DIR) Post #AZTJiXedJ4AgwGhMJc by rees@breastmilk.club
2023-09-05T23:13:52.919266Z
1 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai if there's a fix a new "problem" can just be invented. people have been creating new XSS attacks for decades now. the solution to XSS is just to use a whitelist approach and only allow a very specific subset of tags. it's a waste of time to do that kind of cat and mouse game when it's quicker and easier to just defederate pete's instance for doing it. for every "problem" that pete creates and demands a fix for is time that can be spent on actual security vulnerabilities or improving features or bug fixing.
(DIR) Post #AZTL8t5GM2oIsuHSim by dcc@annihilation.social
2023-09-05T23:29:42.935165Z
0 likes, 0 repeats
@rees @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai We should not fix exploits because other exploits exist? what?
(DIR) Post #AZTLHNrJojn4eGoGeW by rees@breastmilk.club
2023-09-05T23:31:22.974253Z
2 likes, 0 repeats
@dcc @roboneko @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai it's not an exploit there's nothing to be gained from it
(DIR) Post #AZTLK8QzcdKzg8o9rM by rees@breastmilk.club
2023-09-05T23:31:52.653408Z
0 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai >false equivalence. shortcodes are an intended featurefalse premise, intention is completely irrelevant
(DIR) Post #AZTMmpGS4gzgZm7db6 by rees@breastmilk.club
2023-09-05T23:48:13.351247Z
0 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai >VALIDATE YOUR FUCKING INPUTthere's no point in this case because it's just a css tag and literally no one is ever going to do this besides pete because it's not even funny as a gag, it doesn't accomplish anything, and worse yet it makes your users hate you for even doing it so they'll just leave your instance or you'll get defederated>is there some technical reason the fallback can't be verified to be attached to a valid quote?there's no point because you can use any arbitrary css selector for anything that hides code not just quote posts and apparently people will complain about it. mentions for example. and even if it is possible to validate now, it might not be possible to validate in the future when you want to add a new featureit's simply a waste of time. if 10% of the fediverse was doing this it'd be worth considering but why would you spend that effort on pete and his 5 user instance. he couldn't even do it for more than a day because poast had to unlist him
(DIR) Post #AZTMsOG1OmduYLZfKC by rees@breastmilk.club
2023-09-05T23:49:16.814224Z
0 likes, 0 repeats
@roboneko @NEETzsche @alex @dcc @malakai @mint @mischievoustomato @nishi @phnt @sysrq @zero >he couldn't even do it for more than a day because poast had to unlist himpoast fixed the problem quicker than having everyone update their software and you're never going to see an instance admin use this "exploit" again
(DIR) Post #AZTNzVoDov4VxHWz2W by rees@breastmilk.club
2023-09-06T00:01:46.035677Z
0 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai >"there aren't any weird surprises in your example"you could argue that defederating someone and deleting posts is a "weird surprise" because it breaks threads but you still need it because of CP. "intention" varies wildly between people's interpretation of things and is different from the end user and the developer's intention
(DIR) Post #AZTPp4diBHIshdlVh2 by rees@breastmilk.club
2023-09-06T00:22:17.137158Z
0 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai >this is cope. validate your fucking input. just validate your spam emails bro>if other things can be slipped through that cause surprising or annoying behavior from the perspective of the end user then I would also view that as a bugit's called spam and you just run blocklists and spam detection>then do a better job implementing your feature. SMH this is pure cope for a poorly thought out fallback mechanismyou do it
(DIR) Post #AZTQkdLhnuXOrJn1d2 by rees@breastmilk.club
2023-09-06T00:32:41.387802Z
0 likes, 0 repeats
@roboneko @dcc @phnt @sysrq @alex @nishi @NEETzsche @mischievoustomato @mint @zero @malakai >whereas this surprising behavior is imposed by a remote user or adminicic so if a remote user sends me 10 posts per second using different accounts is that a bug and I have to "validate his input" so he doesn't enact this surprising behavior on my software just for him to create a new spam message/accounts and spend days/weeks/years develop anti-spam software or can I just defederate the instances that host the person and do nothing about it
(DIR) Post #AZTpdlLOB86KTvSi12 by lonelyowl@the.usualsuspects.lol
2023-09-06T05:11:33.678102Z
0 likes, 0 repeats
This is funny. I thought it mainly "light-fedi" users causing dramas for various silly reasons while "dark-fedi" users take things easy. Or at least relatively easy. Seems like its not the case 😀
(DIR) Post #AZTqWw8DlvGZrkbzwe by malakai@the.usualsuspects.lol
2023-09-06T05:21:32.480680Z
0 likes, 0 repeats
The majority of fedi is meta and drama shit. This is why I don’t spend much time here these days
(DIR) Post #AZTsBCFtLMWFPUxe76 by lonelyowl@the.usualsuspects.lol
2023-09-06T05:40:01.526292Z
0 likes, 0 repeats
Disagree. Fedi has no algorythms or promotion of any kind, and because of that, you get exactly what you followed. So, don't blame the mud if you got into it yourself, cold-bloodedly and knowingly 🤷♀️
(DIR) Post #AZTt1XDGfVXhT3gs2i by malakai@the.usualsuspects.lol
2023-09-06T05:49:28.946594Z
0 likes, 0 repeats
@lonelyowl @zero @sysrq @rees @alex @NEETzsche @mischievoustomato @mint I know how fedi works, thank you. I also know when people's posts aren't appearing properly, and I need to investigate what's wrong. It's not a choice for me
(DIR) Post #AZTvJf0AeH0CkFKq2a by rees@breastmilk.club
2023-09-06T06:15:10.417984Z
0 likes, 0 repeats
@malakai @sysrq @alex @NEETzsche @mischievoustomato @mint @zero @lonelyowl my fedi experience has been 99.9% cats you're just doing it wrong
(DIR) Post #AZTvZdhJGVkZKj8GjA by lonelyowl@the.usualsuspects.lol
2023-09-06T06:18:03.484805Z
0 likes, 0 repeats
> I also know when people's posts aren't appearing properly, and I need to investigate what's wrong. Fair! However, to generalize it to the point where it's like all fedi is just dramas and dull garbage is kind of over the top.
(DIR) Post #AZU0lcrqg0qU0Mb4DI by malakai@the.usualsuspects.lol
2023-09-06T07:16:12.718970Z
0 likes, 0 repeats
You’re right, actually. I should’ve clarified that by “The majority of fedi is meta and drama shit”, I meant it at an instance level. The “drama” happens across both “light” and “dark” fedi and everything in between, usually because of guilt by association, or just admins blocking other instances because of years-old grudges against other admins.I notice this despite trying to avoid it because I follow a lot of other instance admins (because all of us are into self hosting) and they sometimes post about it. Every single time, it’s petty bullshit that causes a lot of collateral damage.For whatever it’s worth, I block exactly zero instances because an admin or users from their instances have been insufferable assholes to me (and I’ve had plenty such cases) or pull stupid shit like this.