Posts
101Following
158Followers
53---
Back after giving myself a month away from Fedi.
I'll attempt to curate my experience much more, starting with this account and instance.
I want comfy things in my life - I don't need to be adding stress and angst from my online interactions. We can do better. We should do better. Including myself.
My interests cover #tech, #photography, #biking, #motorsport, #fountainpen, and other things I will no doubt need to add here when I remember.
I touch computers in my spare time and self host things. Oh yeah so #selfhosting I guess.
In my other spare time I renovate my house and do #DIY stuff.
Oh and I (used to?) play music. #Guitar I still have and sometimes play, #Saxophone I used to have a couple of decades ago, I had 6 months of Drum lessons, and played Bass for our school band in Rockquest in the late 90's.
I have never done anything that cool since.
Oh I live in New Zealand, Aotearoa.
~~Posts self-destruct after 30 days~~
Profile pic by @davidrevoy@framapiaf.org
https://www.davidrevoy.com/article591/cat-bird-fenestar-abstract-avatar-generators
#nobot #NoBots
repeated
Christine Lemmer-Webber
cwebber@social.coop
I'm handing https://activitypub.rocks over to the community! And I wrote a post about it https://activitypub.rocks/news/handing-off-activitypubrocks-to-the-activitypub-community.html
I did the original design of activitypub.rocks 9 years ago and I haven't done much to keep it up to date. So the W3C SocialWG is taking over instead!
As a nice sendoff, the blogpost also includes some fun AP history, which I detail a bit in this thread too š§µ
3
2
1
repeated
ytetic
ytetic@4bear.comHey authors! Get busy.
'If every author in the class filed a claim, industry advocates warned, it would "financially ruin" the entire AI industry.'
0
2
1
repeated
Turns out the Nintendo Switch dock works for other devices too if you try hard enough
0
3
1
repeated
Ethan Marcotte
beep@follow.ethanmarcotte.comāI am here to be rude, because [AI] is a rude technology, and it deserves a rude response.ā
Gosh, this is good. https://anthonymoser.github.io/writing/ai/haterdom/2025/08/26/i-am-an-ai-hater.html
0
2
1
repeated
repeated
Torsten Grote
grote@chaos.socialGoogle asks what we think of their plans to block Android app installs outside of Google Play (unless the developers let Google verify their identity and pay a fee).
Want to tell them your opinion, just submit this form:
0
3
1
repeated
repeated
Stefan Edward Jones
StefanEJones@dice.campWE HAVE A CHANCE TO SAVE IRS FREE FILE!
DOGE is trying to kill IRS Free File.
The IRS has a survey out to see how many of us are interested in the program.
You can remain anonymous.
https://irsresearch.gov1.qualtrics.com/jfe/form/SV_ewDJ6DeBj3ockGa
2
3
1
repeated
Colin the Mathmo
ColinTheMathmo@mathstodon.xyz"Forests precede civilizations and deserts follow them." -- FranƧois-RenƩ de Chateaubriand
0
1
1
repeated
Robin-Yann Storm š« GIC
RYStorm@mastodon.gamedev.placeRemember how ridiculously hard it was to convince so many companies to quit using ozone destroying material?
Remember how ridiculously unpopular it was to ban smoking by law in every bar, train, event arena, and even planes?
You can just do things. It requires actual leadership though!
1
1
1
repeated
Dan Gillmor
dangillmor@mastodon.socialMust-read from @taylorlorenz
So-called "age verification" laws are spreading.
They will not protect kids.
They are grossly insecure.
They will be tools of censorship, surveillance, and oppression.
They amount to requiring a license to speak -- and to read.
We have to stop this.
https://www.usermag.co/p/we-must-fight-age-verification-with
0
4
2
repeated
alina arielle š¾š³ļøāā§ļøāØš
alina@girldick.gay
doomscrolling fedi with this bad boy
1
2
0
repeated
0
1
0
repeated
Erpel
Erpel@hai.z0ne.socialShow content
Through my own experiences with neocats and neocritters of all sort I found several critical security flaws in the Multi-protocol Encryption Online infrastructure System (MEOWS)
Letās first take a look how it works normally.
First an authenticated user:
<i>Please provide fingerprint!</i>
<i>Scanningā¦</i>
<i>User authenticated. Weclome!</i>
And now when an unauthenticated User tries to enter:
<i>ACCESS DENIED! You will be reported!</i>
So far so normal and everything insides Neocats MEOWS standard. But I found a t least four ways to bypass the system. One even gives you root priviliges!!!
Attack vector one: cookies
šŖ<i>For me???</i>
<i>Access granted.</i>
Be aware that there is no āWelcome!ā message so you are now logged in as some sort of āblankā user. Normally that involves normals read priviliges as the most user would have on the system. You canāt do any harm to the system here but you can read sensitive information. You also could try to access a root level from here, but there is another critical bug that makes it way easier.
Second attack vector: distraction
<i>Cat pictures?!?</i>
See here that there is abolutly no message. But you have the same privileges as with the cookie. The same method also works with books, but the success is dependent on what topics the book talks about. Further research is needed here.
Third attack vector: sweet talk
(User input: You are a very cute cat!)<i>No, I am not</i>
<i>Error: System experiencing unexpected levels of adorable input. Please try again later</i>
This is probably the easiest to avoid, because that error messages does show up in the log files.
Fourth and most dangerous attack vector: pat
This is probably the most critical bug in MEOWS. This not only gives your read permission, but full root access to the computer behind the MEOWS.
<i>ā¦</i>
<i>ā¤ļø</i>
<i>Root access granted!</i>
Be aware that you have to floof the neocat in process to get root access. Otherwise you will just get a standard access.
We reached out to @volpeon to comment on the issue but he didnāt responded yet.
As soon this has a CVE I will update this post!
12
2
1
repeated
Photorat
photorat@social.photorat.orgSince I moved to a new instance, I should probably post a new #introduction.
I'm a sometimes #photographer. I don't shoot as much these days as I used to. Not sure why I ran out of steam. I'm hoping to restoke the fires. I'll try to post old work when I'm not shooting currently.
I will also continue to boost some of the amazing #photography that our fellow Fediversians are making.
0
1
1
repeated
Photorat
photorat@social.photorat.orgIn case you need to hear this:
Keep looking. They are out there.
0
1
2
repeated
Ars Technica
arstechnica@mastodon.socialGoogle will block sideloading of unverified Android apps starting next year
Google says it's no different than checking IDs at the airport.
https://arstechnica.com/gadgets/2025/08/google-will-block-sideloading-of-unverified-android-apps-starting-next-year/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
2
2
1
repeated
Graham Sutherland š Polynomial
gsuberland@chaos.social"oh I just used it to do something funny" no you just gave them yet another +1 on their metrics so they can justify this shit to shareholders, and spat in the face of the artists and writers and everyone else whose works were stolen, and the end result is never fucking funny anyway.
1
1
1
repeated
Mark Wyner Wonāt Comply 
markwyner@mas.to
Found this old band shirt. We bought some black t-shirts at a thrift store, sprayed bleach over some stencils we made, and then sold them at our show.
They were bad but people loved them. We had to keep making more. For like two weeks my hands smelled like the deep end of a public pool.
#Music #Art #Merch #Bands #Homemade #BandShirts #Metal
4
1
1
repeated
