foss advertising Show more
"An Adblock/AdblockPlus/uBlock compatible filter list for allowing advertising that benefits open source"
We need federation to be so easy that nobody even thinks of funding their hosting costs via advertising. Sponsorships, sure, but no more advertising.
Federated Read The Docs when?
matrix thing Show more
so apparently the attacker:
- broke into jenkins
- noticed flywheel (OS X build server) having ssh access from outside through a forwarded port
- used those two to take flywheel
- waited for someone to connect to flywheel and forward their agent
- used the agent to get access to every server and add their key to a authorized_keys2 so it wouldn't get overwritten
last issue atm: "Monitor log files to avoid relying on external whitehats"
Regarding #commento: it was relatively easy to set up, and will more-or-less work for my two blogs separated by paths (though Commento also assumes one blog per subdomain and breaks with unhelpful messages if you include a path in your subdomain).
It doesn't do Oauth to Mastodon/Pleroma. There's an open MR to implement that, but it's poorly documented. I'd help, but it's #golang and that bugs me even more than JS.
As part of the process, I'll try adding docs to the fork about modifying it; so many #FOSS projects lack even a basic explanation of how to make changes to the code.
Schnack works, mostly, and let me comment on my blog using this account. But it has a giant assumption baked in: you will run your blog on one domain, and you will run Schnack on a subdomain of that same domain. My blog is at gdorn.mydomain.com/blog and I'm using an Apache Location clause to send gdorn.mydomain.com/schnack to, well, schnack.
So I'm forking it to remove this assumption or at least allow it to be overridden.
Because I don't have enough projects going already.
fedidev Show more
Tangentially, I wonder if there is a difference in average toot length between instances, a result of the expected delay in delivery between instances...
I tend to write long screeds, imagining the fediverse to be more like FidoNet or Email (it'll get there eventually) but I've definitely seen other users treat it more like chat (a toot for every sentence in a reply, piling up messages and expecting them to be delivered in near real-time)...
fedidev Show more
Given how chatty the federation implementation is in Mastodon (and Pleroma as a result), has there been any effort to bundle API calls and save on HTTP overhead? This is something I'd normally throw in the 'premature optimization' bucket, but I gather this is a serious concern for smaller instances.
Maybe something like HTTP pipelining? Or multiplexing?
fedidev (-) Show more
As the number of services grows, the chances of smooth interoperability goes way, way down. In the case of Oauth2, this is because every Oauth2 library, every Oauth2-supporting service, every Oauth2-consuming client has a different idea of how access tokens are to be handed off from provider to client, especially if the client is not another website (e.g. #fedilab).
I'm working on a PR to an oauth library. In my resaurch I noticed that Pleroma and Mastodon have very different templates for handing off the oauth access-token using the `urn:ietf:...` redirect_uri.
I wondered if you could point me to where in the fedilab source you deal with this problem, and if you had any insights into how services _should_ implement that token handoff?
programming jobs (-) Show more
The intersection of (part-time, remote, python/django, not-ad-tech) jobs is the null set.
I wonder what % of software development hours is spent pretending to optimize which ads to try to show to users who don't want to see them.
prog sp Show more
The '2' in oauth2 is an exponent, referring to the level of complexity.
mastodev ruminations Show more
Mastodon's notion that everything is a Status is a major conceptual shortcoming. It was fine when the only thing on the fediverse was microblogging*, but now that other types exist the metaphor is getting strained, and it has ramifications for other projects trying to federate with the "default" platform**.
It will only get weirder when single platforms have multiple types.
* Technically never the case.
** Removing the default produces an opportunity to fix this.
higher higher edu query Show more
I'm indecisive about exactly what I want to do, though. Ideas:
- Switch to EE, or something with embedded systems.
- Focus on AI, mostly to do some good in a pretty craptastic field.
- Get whatever degree gets me into a management role, because even though I don't want to manage, good managers are incredibly rare and maybe I could be one.
- Move to an adjacent field via computer modeling, like economics or statistics.
higher higher edu query Show more
My self-imposed underemployment of late has me thinking about a career change, or an upgrade. This might involve going back to school for a masters degree in something.
Is there a good source to browse available graduate programs in my area? I haven't looked into this in ~15 years.
I love the idea of the #fediverse, where there are all these different services that can all talk and share stuff on the same underlying framework.
The HUGE issue I'm having is I still have to make accounts on almost a dozen servers to be able to share different kinds of content. #Pixelfed for images, #mastodon for short messages, #Plume for blogging, and now #prismo for reddit-esk news.
Whatever happened to federated logins like #OpenID that let me use my main to sign into other sites? 🤔😓
Anarcho-syndicalist leftist vegan atheist biker capoeirista quiet software dev; privileged white cis male; he/him.
social.coop is a cooperatively-run corner of the Fediverse. The instance is democratically governed by its members, who generally share an interest in the co-op model, but topics of discussion range widely.
Our instance is supported by sliding scale contributions of $1-10/mo made via Open Collective. You must have an active Open Collective account to apply for membership; you may set one up here