Notices by h3artbl33d :openbsd: :ve: (h3artbl33d@exquisite.social)

We might have a world first on a proper and just DRM implementation :flan_hurrah: Signal has implemented DRM to protect against the adversarial functionality dubbed Recall :flan_molotov:

#BurnTheClouds

Google has announced that from May, 30, 2025, they will stop supporting 3DES for incoming SMTP.

I had to triple check whether that announcement was a (very) late April Fools prank. It isn't. They are dead serious :flan_nooo:

Meh. OnlyOffice is Russian and they tried to obfuscate it.

@wizzwizz4 @Gina

A moderator should be able to view a users details and reports about them. Having no access to the (limited) user view has a real impact on judgement calls for a moderator.

A moderator can virew the uses details - like previous reports and their e-mail address. And their IP address, if not disabled by the server admin.

A moderator is not able to hijack access to DMs. Even an admin can't do that from the interface. It is possible, but requires access to the database and being able to run queries and/or exports there.

It always remains an issue of trust. Larger instances can't be run by a single person, so you'll have to trust the admins to pick the moderators wisely.

If you are not okay with that, you can always spin up your own instance. That gives you full control, but can also be a burden because of the responsibilities that come with it.

OpenSSH 10.0 is out! :flan_hacker:

True story #selfhosting

Just read this in the docs of a PHP script:

Run as root if you get a permission error.

Run, Forrest, Run :flan_molotov:

@BeAware

People are SO brainwashed

This scares me more than anything else. Is mankind that susceptible to misinformation?

BlueSky has reached 30 million victims.

It is just the next big tech silo. The federated aspect of it is a lie - can't really create an instance for it. Only partial - and even that is broken beyond repair.

I am preaching to the the choir here: but please, please try to raise awareness with your beloved ones and help them make the jump to the Fediverse.

Silos will eventually enshittify. It isn't a question of if, it is a question of when.

@abstractcode

This os exactly what makes projects like #OpenBSD and #HardenedBSD a bliss to use. 'Dogfooding' is the de-facto scenario.

#Signal is gaining massive traction and adoption in the #Netherlands :flan_hurrah: It currently holds the first position on Google Play (category: communication) and the iOS App Store (category: social networking).

@GossiTheDog

Open question - no wrong answer possible: would you be okay wearing the CISO hat? There is quite a lot of politics involved. More than I can personally stomach as a techie :flan_XD:

@farshidhakimy @dale_price

GrapheneOS has contact scopes which is a working implementation of this. It allows to select which contacts you want to share (if any) and offers that to the application. If you seleted none, then it'll be just an empty address book.

You didn't near this from me...

Signal has been working on encrypted clud backups for quite a while. The hopes were that we would see this come to frution at the end of this year, but Meredith Whittaker has just dashed that.

Word is that the current ETA is March 2025. This won't impact local backups or selfhosted backups, but will fix one feature request that has been asked by many over the last years: cross-platform migration (eg, facilitating iOS => GrapheneOS).

A lot of additional details remain to be seen. It is likely that Signal will offer the cloud (in addition to). Only time will tell. But the cross-platform migrations: whoohoo!

#Signal

Flatpak, after many years, is still an insecure shitshow.

Yes. That article is four years old. It still applies :flan_peek:

@rysiek

This Toot and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this Toot in error, please notify the system manager. This post contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this Toot. Please notify the sender immediately by Toot if you have received this Toot by mistake and delete this Toot from your system.

@pinskia @geerlingguy

Oh damn... Do you know where I can find more in-depth information on this? Seems like Apple isn't exactly open about this.

@geerlingguy

The Apple M4 SoC uses the ARMv9.2-A instruction set. I am way curious whether Apple did adapt the hardware extensions in recent versions like memory tagging (ARMv9.0-A introduced this).

@thomholwerda

Sandboxed Google Play runs unprivileged - line any other app - and thus provides no special access.

MicroG on the other hand, needs to run privileged, requires closed source binaries and much more. It is not really an open source reimplementation.

@solene

This is huge. The difference is enormous.