Follow

Mastodon and Pleroma privacy update 

instance block and privacy update 

instance block and privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

@kaniini @nightpool yes, we know. at the time of writing my post, many Pleroma instances had not yet updated, thus warranting the post.

@bug @nightpool

that wasn't targeted at you, but instead nightpool's response which I did not appreciate the tone of.

obviously, do what you need to do to protect your users!

you may also want to be aware that there is a Pleroma fork that has been modified to completely ignore activitypub to/cc fields. as far as we are aware, there is only one server running it: pleroma.rareome.ga, but there may be others.

@kaniini @nightpool I saw no problem with their tone; I appreciate any new information about vulnerabilities.

I've also heard about this fork and instance, but thank you for corroborating it.

@kaniini @bug I pointed it out because the original post made it sound like it was just a nuisance/spam attack, but it has more severe consequences then that. The "known bug" thing was meant to mean that the same information had been circulating for a while, nothing more. I didn't know about the rareome.ge server, so thanks for pointing it out. I'll make sure people know to block it.

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

@bug indeed, but we will have to agree to disagree here. there were several unpleasant interactions i have had with him on this issue, including a gross misinterpretation of my positions on the issue tracker, etc.

@kaniini i'm sorry to hear that. it sounds like your previous interactions with them coloured your interpretation of their "tone". i hope you understand that my only interest is in obtaining, disseminating, and acting upon accurate data security info, and I have no reason to turn away a tip-off based on that.

@nightpool @bug

my apologies, i wasn't aware that you were non-binary.

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Mastodon and Pleroma privacy update 

Sign in to participate in the conversation
Chitter

Chitter is a social network fostering a friendly, inclusive, and incredibly soft community.