Notices by :mima_rule: Mima-sama (mima@makai.chaotic.ninja), page 13

@tchambers@indieweb.social #Misskey for example also has #fulltextsearch already for every #fediverse post that it saw, so unless their #Mastodon instance decides to switch to allowlist federation and block every Misskey and other fediverse instances that ignores the proprietary "consent setting" for full-text search, their expectation of "#privacy" (if you can even call it that considering #ActivityPub's design) has been broken long ago.

Mastodon really is an outlier. :seija_coffee:

@timmy@goblin.camp @mawhrin@circumstances.run

#DidYouKnow that @lain@lain.com is a #food #dish in the #Philippines? :satrithink:

https://en.wikipedia.org/wiki/Laing_(food)

@pinoy@chirp.social @pinoy@a.gup.pe #Pinoy #Filipino #FilipinoFood

The hammer and sickle worked hand-in-hand with the American guerillas to kick out the Japanese invaders out of my country and I suspect my great-grandma may have been a Huk

Of course, it's not something you privileged Americans who take their liberty for granted will ever understand when they just casually say that the Nazis, who were allies with the Japanese are better than the communist guerillas in Asia :seija_coffee:

RE: https://mk.magicka.org/notes/9plt4j5arscd0035

I am NitoMari/MariNito's weakest proponent :nitori_pandereta:

NitoMari forever!!! :dot_marisa::dot_nitori:

RE: https://makai.chaotic.ninja/notes/9pj6hwg4vp

@kirby@lab.nyanide.com I had the same problem when I tried to move @mimi@flyingbattery.zone (which is #Akkoma) to @mimi@missiletest.site (which is #Pleroma) before :sagume_think:

@SinclairSpeccy@oldbytes.space

https://github.com/LemmyNet/lemmy-ui/issues/1895
https://web.archive.org/web/20231228012647/https://sh.itjust.works/post/923025

You can compare your Lemmy instance's CSP with #Raddle, which should be the gold standard for link aggregators: https://observatory.mozilla.org/analyze/raddle.me

@lain@lain.com Obligatory...

RE: https://makai.chaotic.ninja/notes/9o2w1w1ylj

Jabee 🐝🍴

#Jollibee #fastfood #food #foods #FilipinoFood

Truly an Aya moment :tenguinterested:

RE: https://mugicha.club/objects/a55a06c6-9cbc-4eda-bc35-29a9eda752bd

@moi@uoh.cx Some #IRC clients do embed the images if the file extension is recognized. I have a #ChatZilla plugin for example that puts an container if it detects an image from the link. :economist_kasen:

@kirby@lab.nyanide.com

#YouTube Poop

#Niconico Dunga :koakuma_giggle:

RE: https://eientei.org/objects/1cd20618-7400-4a7a-bf6d-5843c6fab3f5

@lina@eientei.org but knowing mahjong it's probably soul crushingnah #mahjong is a totally fine game what are you talking about :koakuma_giggle:

@MK2boogaloo@lab.nyanide.com It's just the superior PC form factor :chuckling_okuu:

nah this is cap :munch:

RE: https://lab.nyanide.com/objects/933335e3-aa5c-4501-8526-9c22ba4510ce

@kirby@lab.nyanide.com I heard that Pleroma's postgres db is usually larger than Misskey's :satrithink:

Like Pleroma is already using 1gb for just a few users while a Misskey that has plenty of users (like 50) is at around 400-500mb :sagume_think:

#Pleromatan stealing gigabytes of your storage for its neverending database hunger :pleroma-tan_corndog:

#Pleroma

RE: https://mai.waifuism.life/notes/9pag98xnswua00a4

Almost finished, passenger checked in :seija_coffee:

#NAIA #Terminal1 #Philippines #Manila

RE: https://makai.chaotic.ninja/notes/9paujkyd7q

@SuperDicq@minidisc.tokyo Not sure about regulation, but our peasants here do also face falling sale prices (especially in rice!!), rising costs, powerful and domineering retailers (especially in rice!!), debt, climate change and cheap foreign imports (especially in rice!!). Multiply by 100 and you get the Philippines. :koakuma_giggle:

At least those #European #farmers now know what it feels like to be 1% of a Filipino #peasant here in the Philippines :suwako_evil:

RE: https://minidisc.tokyo/notes/9p806tdga1

#Sharkey's recent vulnerability and their handling of it is still miles better than #Lemmy's #XSS exploit which actually took down a big instance and is something even more elementary than what Sharkey experienced.

Like seriously, the first thing you do when #Markdown parsing is involved is to sanitize the hell out of it, both in the Markdown input and the HTML output. And you put up a strict #CSP for good measure. Lemmy spectacularly failed on both counts, despite existing as a project for years and a lot more instances (and therefore users, which rivals #Mastodon) using their software!

I can cut some slack for the Sharkey devs here because:

- they're relatively new (only months since the project started)
- it only affected note imports from #Twitter which is already niche enough
- it was easy to mitigate (just disable note import)
- it didn't affect single-user instances IIUC
- I haven't seen any Sharkey instance get actually exploited by this
- they're taking steps to make sure this shit doesn't happen again (haven't seen this from Lemmy yet, and last I checked their CSP is still shit)

So this is not worth blowing over in the #fediverse. Your assessment is exaggerated, this energy could've been spent somewhere else, and you owe the Sharkey devs an apology.

#fediversemeta #security

RE: https://meowcity.club/fedi/tetra/p/1706812792.496325