Follow

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

@kaniini @nightpool yes, we know. at the time of writing my post, many Pleroma instances had not yet updated, thus warranting the post.

@bug @nightpool

that wasn't targeted at you, but instead nightpool's response which I did not appreciate the tone of.

obviously, do what you need to do to protect your users!

you may also want to be aware that there is a Pleroma fork that has been modified to completely ignore activitypub to/cc fields. as far as we are aware, there is only one server running it: pleroma.rareome.ga, but there may be others.

@kaniini @nightpool I saw no problem with their tone; I appreciate any new information about vulnerabilities.

I've also heard about this fork and instance, but thank you for corroborating it.

@kaniini @bug I pointed it out because the original post made it sound like it was just a nuisance/spam attack, but it has more severe consequences then that. The "known bug" thing was meant to mean that the same information had been circulating for a while, nothing more. I didn't know about the rareome.ge server, so thanks for pointing it out. I'll make sure people know to block it.

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

@bug indeed, but we will have to agree to disagree here. there were several unpleasant interactions i have had with him on this issue, including a gross misinterpretation of my positions on the issue tracker, etc.

@kaniini i'm sorry to hear that. it sounds like your previous interactions with them coloured your interpretation of their "tone". i hope you understand that my only interest is in obtaining, disseminating, and acting upon accurate data security info, and I have no reason to turn away a tip-off based on that.

@nightpool @bug

my apologies, i wasn't aware that you were non-binary.

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

Mastodon and Pleroma privacy update Show more

instance block and privacy update Show more

instance block and privacy update Show more

Sign in to participate in the conversation
Chitter

Welcome! Chitter is a social network fostering a friendly, inclusive, and incredibly soft community.

All sorts of folk with all sorts of interests gather here. At any time, the local timeline might be talking about video games, tech, art, furry stuff, LGBTQIA and identity, jokes (lots of jokes,) etc…