Email or username:

Password:

Forgot your password?
56 posts total
marius

Another piece of risky code that relies on Go compiler internals is added to the Rube Goldberg machine that is the #GoActivityPub library... Sigh.

The link to the code: git.sr.ht/~mariusor/ssm/tree/a

A screenshot of a function in the Go programming language doing something very risky using the unsafe.Pointer combined with a type replicated from the go standard library, which is possible to get changed in the future, and thus breaking the function in the process.
marius

We're bringing Computer Metal to @wacken this summer! SPREAD THE CODE

marius

Hello, I'm an open source software engineer in my late 30s living in #Seoul, #Korea, and an avid advocate of #FLOSS and the #fediverse.

I'm the creator of @fedify, an #ActivityPub server framework in #TypeScript, and @hollo, an ActivityPub-enabled microblogging software for single users.

I'm also very interested in East Asian languages (so-called #CJK) and #Unicode. Feel free to talk to me in #English, #Korean (#한국어), or #Japanese (#日本語), or even in Literary Chinese (#文言文, #漢文)!

#introduction

marius

Fun fact: #Letterbook contributors can now get a page on our docs site, complete with rel=me verification

In case you wanted another check mark on your profile

letterbook.com/blog/author/jen

marius

It's been a high volume social media day for me, apologies to all followers that had to sit through me arguing about democracy. I promise I'll stop. :)

marius

@veronica someone seems to be working on a way for projects (and probably services or people) to advertise their preferred monetization options: floss.fund/funding-manifest/

I remember you were curious about options that could be used for that on Fediverse platforms. This looks like it could fit the bill with some elbow grease.

marius

Happy to release #bofied v1.2.0, the latest version of my modern, scriptable OSS netboot server after a two year hiatus! It has a modernized #Go backend and almost completely rewritten PWA frontend (in #WebAssembly), plus standard WebDAV and gRPC management APIs! github.com/pojntfx/bofied

The starting screen for bofied
The file sharing screen for bofied
The mounting screen for bofied
Felicitas Pojtinger 🌅

Plus the obligatory short demo video (w/o the new UI just yet) :)

marius

I've finally got off my ass and created a Codeberg account in order to submit my first PR to the #FEP repository.

I'm not very familiar with the FEP submission etiquette so any pointers from more experienced people would be helpful.

The PR: codeberg.org/fediverse/fep/pul

Mailing list thread for feedback: lists.sr.ht/~mariusor/go-activ

#activitypub #activitypubdev

marius

I'm working to build an ethical home for #Musicians that doesn't siphon their work into the #AI torment nexus.

Today, I've installed a new firewall on #Bandwagon called "Silicon Dome" that blocks every known AI and malicious bot.

With regular monitoring and updates, Silicon Dome will actively protect human creativity from the rampant AIs already out in the wild.

I think it's a win for humanity.

Anon Stork

@benpate I'm with you there, totally sounds like a win! 💯

marius

Well, @Mastodon has started closing stale bugs on their tracker telling me to reproduce on a newer version and resubmit, even though the ticket invites them to a theoretical discussion rather than being a technical problem. It's clear to me that the dude that closed it hasn't even read the issue.

A good time to link Drew's wisdom about bug tickets: drewdevault.com/2021/10/26/sta

> ...a different way of thinking about issues:
> a place for motivated users to collaborate on narrowing down the problem and planning a potential fix.
> A space for the community to work, rather than an action item for you to deal with personally.

#mastodon #activitypub

Well, @Mastodon has started closing stale bugs on their tracker telling me to reproduce on a newer version and resubmit, even though the ticket invites them to a theoretical discussion rather than being a technical problem. It's clear to me that the dude that closed it hasn't even read the issue.

A good time to link Drew's wisdom about bug tickets: drewdevault.com/2021/10/26/sta

marius

Whelp, we finally committed to releasing an experimental release of Pidgin 3.0 by the end of the year! To be clear, this is a **pre-alpha** release, but you can read more here discourse.imfreedom.org/t/pidg

#OpenSource #Pidgin #UniversalChat #IRCv3

marius

Why isn't anyone losing their mind over "765874: Unification" ??!

home.otoy.com/unification/

SunDancer

@mariusor I watched it yesterday and it really doesn't resonate with me. And I've watched almost every Star Trek series or movie.

marius
For today's #ThankYouTuesday, I want to send my regards to all people that have contributed any piece of code to #snac or that have sponsored me via one way or another.

You, people, are great.
marius
I'm glad to announce the release of version 2.63 of #snac, the simple, minimalistic #ActivityPub instance server written in C. It includes the following changes:

The server can now act as a proxy for all image, audio or video media coming from other account's posts (both from the Web UI and the Mastodon API). This way, other servers will see media requests coming from the server IP, not the user's, improving privacy. This is controlled by setting the proxy_media boolean field to server.json to true.

The strict_public_timelines option introduced in the previous release now works correctly.

Fixed a crash when posting from the links browser.

Fixed some repeated images from Lemmy posts.

Fixed a crash when posting an image from the tooot mobile app.

Updated FreeBSD rc script: the server process is now managed by the daemon(8) utility (contributed by @stefano@bsd.cafe).

RSS feeds are now in 2.0 version instead of 0.91.

https://comam.es/what-is-snac

If you find #snac useful, please consider contributing via LiberaPay: https://liberapay.com/grunfink/donate

#snacAnnounces

This release has been inspired by the song New Moon (Dark Phase) by #DuranDuran.

I'm glad to announce the release of version 2.63 of #snac, the simple, minimalistic #ActivityPub instance server written in C. It includes the following changes:

The server can now act as a proxy for all image, audio or video media coming from other account's posts (both from the Web UI and the Mastodon API). This way, other servers will see media requests coming from the server IP, not the user's,...
marius

4️⃣ Here's the 4th post highlighting key new features of the upcoming v257 release of systemd. #systemd257

One of the key features of systemd we have talked about in the past years are UKIs, i.e. "unified kernel images", which is a combination of a Linux kernel, an initrd, and more into a single unified PE binary, that can be signed as a whole for SecureBoot, measured as a whole and updated as a whole.

In my PoV UKIs are a central concept of securing the Linux boot process.

Lennart Poettering

But: they do have some disadvantages. They typically imply (not strictly, but typically) that they are built on OS vendor build systems instead of locally. This is different from the status quo ante, where the initrd is typically built on the deployed system (at least on generic distros), and thus highly adapted to the local system.

UKIs being vendor-built hence means they are a lot more rigid, less flexible than the traditional way. So far this meant you'd have to settle…

Julian Andres Klode 🏳️‍🌈

@pid_eins UKIs are fine, but systemd-stub churn every release makes it more of a liability than a stable foundation to build on.

Stuff like sysexts etc could poke holes in established security models similar (but restricted in scope) to how systemd poked giant holes into full disk encryption when it added DDI automount.

It's a massive effort to keep up with changes and validate them and it's pretty concerning. So you might end up not doing that, and end up with vulnerabilities in your product.

marius

Hollo 0.2.0 released! #Hollo is a single-user federated microblogging software which is #ActivityPub-enabled and powered by #Fedify.

The key changes of this release include:

1.

Thanks to @thisismissem, now you can report remote accounts and posts.


2.

Added two-factor authentication support.


3.

Thanks again to @thisismissem, Hollo improved alignment on Mastodon API changes about OAuth and apps.


4.

Thanks again to @thisismissem, RFC 8414 for OAuth Authorization Server metadata endpoint. It will improve interoperability between Hollo and Mastodon-compatible client apps.


5.

Renamed the Data menu from the administration dashboard to Federation, and:

- Now posts also can be force-refreshed.
- Now the number of messages in the task queue is shown.


6.

Custom emojis now can be deleted from the administration dashboard.


7.

Thanks @helge, PORT and ALLOW_PRIVATE_ADDRESS environment variables are introduced.


8.

Added a favicon.


9.

Dropped support for Redis, which was an optional dependency.


You can upgrade to Hollo 0.2.0 using the following ways:

-

To Railway users: Just redeploy the Hollo service!


-

To Docker users: Switch your Hollo image to ghcr.io/dahlia/hollo:0.2.0 or simply latest!


-

To manual installers: Fetch the stable branch and switch over to it!


Hollo 0.2.0 released! #Hollo is a single-user federated microblogging software which is #ActivityPub-enabled and powered by #Fedify.

The key changes of this release include:

1.

Thanks to @thisismissem, now you can report remote accounts and posts.


2.
5-a. Now posts also can be force-refreshed.
5-b. Now the number of messages in the task queue is shown.
6. Custom emojis now can be deleted from the administration dashboard.
2. Added two-factor authentication support.
marius

Since I'm such a fan of handmade programming, I find myself this fine eve implementing document indexing from scratch(ish) for my #GoActivityPub library storage backends.

marius

I'm sure I made plenty of mistakes, but I have to admit I find it surprisingly satisfying to be able to operate on a data type that I can overlay on top of the existing #FedBOX storage engines and get native and *fast* querying for them.

The indexes are quite chunky despite being built on top of roaring bitmaps because there's so many "indexable" elements in an #ActivityPub object. (Currently I'm indexing the type, the content, summary, name, preferredUsername, the recipients, the actor and the object)

As I explore some more, I hope I streamline some of these issues, and make the whole thing more robust.

I'm sure I made plenty of mistakes, but I have to admit I find it surprisingly satisfying to be able to operate on a data type that I can overlay on top of the existing #FedBOX storage engines and get native and *fast* querying for them.

The indexes are quite chunky despite being built on top of roaring bitmaps because there's so many "indexable" elements in an #ActivityPub object. (Currently I'm indexing the type, the content, summary, name, preferredUsername, the recipients, the actor and the object)

marius

Backend stuff for domain permission drafts is in place, working on the frontend / settings panel stuff now.

Domain permission drafts will let you create domain block or domain allow drafts either manually or from a block / allow list subscription. You can then remove the draft if you decide you don't want it, or accept the draft and put it into force as a block or allow.

#GoToSocial

Screenshot of the GoToSocial settings panel, showing a new side menu for domain permission drafts. The menu routes to pages for viewing existing drafts and creating new drafts.
Go Up