GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Julian Lam (devnull@crag.social)

  1. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 29-Mar-2024 14:22:12 JST Julian Lam Julian Lam
    in reply to
    • Matthias Pfefferle
    • Evan Prodromou

    @evan @pfefferle I was wondering how Megalodon did it (or maybe it's via Mastodon API)... I always figured that maybe Mastodon saved a list of domains corresponding to known instances, but wasn't 100% sure.

    I'm honestly a little glad it's NOT that hacky.

    In conversation about a year ago from crag.social permalink
  2. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 29-Mar-2024 14:22:03 JST Julian Lam Julian Lam
    in reply to
    • Matthias Pfefferle
    • Evan Prodromou

    @evan @pfefferle is there a way to do it without having to load the whole page?

    I'm thinking through how my app would know to load a resource via AP instead of a browser navigation, but if the step to determine that requires... a browser navigation, then what even is the point?

    I have to be missing something, right?

    In conversation about a year ago from crag.social permalink
  3. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Wednesday, 27-Mar-2024 11:52:03 JST Julian Lam Julian Lam
    in reply to
    • Matthias Pfefferle
    • Evan Prodromou

    @evan @pfefferle does this mean that if I add this link tag to my pages, then implementors (should they look for it) could elect to load that content internally? (And vice versa?)

    In conversation about a year ago from crag.social permalink
  4. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 22-Mar-2024 04:55:08 JST Julian Lam Julian Lam

    Can an instance operator running a derivative of Misskey (Sharkey, firefish, or maybe even Misskey itself) get in touch with me? I can't seem to federate with that entire pie of the fediverse... 401 Unauthorized 😬

    Alternateively, if you've run into this type of issue before, any tips? Heh.

    #fediadmin #activitypub

    In conversation about a year ago from crag.social permalink
  5. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Thursday, 21-Mar-2024 09:42:09 JST Julian Lam Julian Lam
    • Johannes Ernst
    • Kaliya Identity Woman

    You know what @J12t or @Identitywoman need to do? Send out a formatted csv file of everybody who provided a fediverse handle, so you can import it into Mastodon in one fell swoop and follow everybody all at once 😂

    In conversation about a year ago from crag.social permalink
  6. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Wednesday, 20-Mar-2024 08:50:05 JST Julian Lam Julian Lam

    #fediforum

    In conversation about a year ago from crag.social permalink

    Attachments


    1. https://cdn.masto.host/cragsocial/media_attachments/files/112/124/963/564/489/525/original/4056d0d28e83a3a0.png
  7. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Sunday, 03-Mar-2024 08:18:48 JST Julian Lam Julian Lam
    • Daniel Supernault

    @dansup awesome news, fellow Canuck 🇨🇦

    Do you mind sharing any pitfalls or stumbling blocks you encountered?

    In conversation about a year ago from crag.social permalink
  8. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Thursday, 22-Feb-2024 10:00:26 JST Julian Lam Julian Lam
    • Wary Jerry

    @jerry honestly I think fedi might've dodged a bullet there.

    Approaching open federation is a tricky subject, and it seems like Threads isn't rushing in and breaking things like they used to say 😏

    Pleasantly surprised.

    In conversation about a year ago from crag.social permalink
  9. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Thursday, 22-Feb-2024 09:58:29 JST Julian Lam Julian Lam

    Spent most of the workday today adding in hostname checks to the NodeBB-ActivityPub integration in order to improve security. There's much to reflect on with the recent vulnerability disclosures, and many lessons to learn.

    It absolutely sucks that Mastodon and Pixelfed contained these vulnerabilities, but their public disclosure allows the rest of the fediverse to learn from their mistakes and publish better software.

    #nodebbActivityPub

    In conversation about a year ago from crag.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Page Redirection
  10. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Thursday, 22-Feb-2024 09:47:37 JST Julian Lam Julian Lam

    🙄

    No matter the reason, and despite how silly the reason, it's these stress tests that expose weak spots and allow us to improve.

    I look forward to joining a more spam-resilient fedi soon 😈

    https://cyberplace.social/@GossiTheDog/111954920343204483

    #fedi #spam

    In conversation about a year ago from crag.social permalink
  11. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Monday, 19-Feb-2024 01:38:22 JST Julian Lam Julian Lam
    in reply to
    • wakest ⁂
    • Matthias Pfefferle

    @liaizon as you alluded to in your reply, WP gets around this by assuming type as:Note which I disagree with from a protocol fragmentation standpoint. It implicitly acknowledges Mastodon as the dominant #ActivityPub player with clout to change the behaviour of others, and I stand against it.

    #nodebb will send type as:Page (like #lemmy and #kbin), and we will work with @article_interop (and hopefully @pfefferle) to encourage Mastodon to handle it properly by modelling the appropriate behaviour.

    In conversation about a year ago from crag.social permalink
  12. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Monday, 19-Feb-2024 01:38:20 JST Julian Lam Julian Lam
    in reply to
    • wakest ⁂
    • Matthias Pfefferle

    @liaizon @article_interop @pfefferle my understanding is that if Mastodon doesn't recognize the type it just falls back to showing title and url, which is a sane default. Not everything is meant to be parsed like a note.

    So I get their direction here, but the knock-on effect on other implementors is signalling that some additional thought is required here.

    In conversation about a year ago from crag.social permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: note.so
      产品经理文档 | Product Manager
      这是一个为全栈产品经理准备的灵感、想法、工具集、知识库、设计系统等。
  13. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Saturday, 17-Feb-2024 23:35:39 JST Julian Lam Julian Lam
    • NodeBB

    At an in-office session with the #nodebb team, talking #ActivityPub

    There are some hard questions to answer, such as:

    - how to scalably introduce the concept of ACL at the post/toot level.
    - how to educate about the #fediverse in a user-friendly way
    - how to solve the "empty home feed" problem
    - how do we handle #GDPR compliance when federating in and out?
    - how do we improve on "newest to oldest" without introducing a corruptible algorithm?

    @nodebb is all in on fedi. Let's make it work.

    In conversation about a year ago from crag.social permalink
  14. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Saturday, 17-Feb-2024 04:36:26 JST Julian Lam Julian Lam

    It seems this happens occasionally on #fedi where malicious users decide to take advantage of instances with poor moderation to spam widely.

    There are many solutions, but let me offer a simple change that stops spam dead in its tracks:

    #nodebb has a post queue built in. If you have 0 reputation, you need your post to be manually approved. You can adjust this as needed, but even the default (allow regular posting after 1 upvote) is sufficient. Stops 👏spam 👏 cold 👏.

    #fediblockmeta #mastoadmin

    In conversation about a year ago from crag.social permalink
  15. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Sunday, 11-Feb-2024 22:36:33 JST Julian Lam Julian Lam
    in reply to
    • Steve Bate

    @steve is email the "right" mental abstraction, or is it just the most convenient?

    Even *during* the advent of email, "to", "cc", and "bcc" seemed oddly outdated, but that's because it too, came from something before it.

    Nowadays with fine-grained permissions and ACLs baked into a lot of the software we already use, stuffing it into a recipient list seems awkward at best.

    In conversation about a year ago from crag.social permalink
  16. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Sunday, 11-Feb-2024 18:26:06 JST Julian Lam Julian Lam
    • Lisa Melton

    My #nodebbActivityPub implementation now handles incoming boosts, but I haven't gotten around to pruning stale content that wasn't interacted with... and I also followed @lisamelton, so I guess it's a race against time to either implement content pruning, or my hard drive fills up with her boosts. 🤷

    #activitypub

    In conversation about a year ago from crag.social permalink

    Attachments


    1. https://cdn.masto.host/cragsocial/media_attachments/files/111/890/514/129/158/370/original/0193cdb3e24e9f24.png
  17. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 02-Feb-2024 04:52:18 JST Julian Lam Julian Lam
    in reply to
    • infinite love ⴳ
    • Evan Prodromou

    @evan this open issue raises similar questions and @trwnh advocated for sending a separate activity for the bto/bcc'd user

    https://github.com/w3c/activitypub/issues/326

    For simplicity's sake, disallowing bto/bcc in S2S seems wise.

    If blind recipients are omitted then it presents a real problem in S2S communications, and sending the activity to those users' inboxes directly ASSUMES behaviour on the other server's part, which is unwise.

    In conversation about a year ago from crag.social permalink
  18. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 02-Feb-2024 03:21:49 JST Julian Lam Julian Lam
    in reply to
    • Dave Winer ☕️
    • David Megginson
    • Evan Prodromou
    • phiofx

    @phiofx @david_megginson @davew @evan interested in hearing more about this threading problem? I'd love to tackle something like this with #nodebb

    In conversation about a year ago from crag.social permalink
  19. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 02-Feb-2024 02:47:49 JST Julian Lam Julian Lam
    in reply to
    • Dave Winer ☕️
    • David Megginson
    • Evan Prodromou

    @david_megginson @davew @evan I disagree, #ActivityPub is perfect for medium and long-form content. #Mastodon is just crap at displaying it because its UI is optimized for short-form microblogging.

    You can watch an on-stage performance through a camera lens but it doesn't mean the performance itself is sub-par because of it.

    In conversation about a year ago from crag.social permalink
  20. Embed this notice
    Julian Lam (devnull@crag.social)'s status on Friday, 02-Feb-2024 02:24:18 JST Julian Lam Julian Lam
    in reply to
    • Evan Prodromou

    @evan my understanding is that those properties are stripped if forwarded along in another activity, but not on the original send.

    Please please please I mean no offense by quoting the AP spec to you 😅

    https://www.w3.org/TR/activitypub/#server-to-server-interactions

    It's not explicitly mentioned but that paragraph talks as though bto/bcc are present.

    In conversation about a year ago from crag.social permalink
  • Before

User actions

    Julian Lam

    Julian Lam

    Co-Founder (@nodebb) & Instance admin of crag.social | Husband 🤷♂️ and Dad 🙉 to three | Rock Climber 🧗♂️ | Foodie 🥙 | Conductor 🎵 | Saxophonist 🎷✅ Small teams craft better code.🗨️ Federating NodeBB (in-progress) with funding from #NLNet ♥️🇪🇺#fedi23 #linux #foss #opensource #webdev #nodejs #music #conducting #rockclimbing #yyz

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          116369
          Member since
          3 May 2023
          Notices
          57
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.