Posts
92Following
161Followers
55---
Back after giving myself a month away from Fedi.
I'll attempt to curate my experience much more, starting with this account and instance.
I want comfy things in my life - I don't need to be adding stress and angst from my online interactions. We can do better. We should do better. Including myself.
My interests cover #tech, #photography, #biking, #motorsport, #fountainpen, and other things I will no doubt need to add here when I remember.
I touch computers in my spare time and self host things. Oh yeah so #selfhosting I guess.
In my other spare time I renovate my house and do #DIY stuff.
Oh and I (used to?) play music. #Guitar I still have and sometimes play, #Saxophone I used to have a couple of decades ago, I had 6 months of Drum lessons, and played Bass for our school band in Rockquest in the late 90's.
I have never done anything that cool since.
Oh I live in New Zealand, Aotearoa.
~~Posts self-destruct after 30 days~~
Profile pic by @davidrevoy@framapiaf.org
https://www.davidrevoy.com/article591/cat-bird-fenestar-abstract-avatar-generators
#nobot #NoBots
repeated
Jan Wildeboer 😷
jwildeboer@social.wildeboer.net
New blog post "My Own DNS Server At Home - Part 1: IPv4" wherein I install and configure a basic BIND DNS server for my network at home. Part 2 will cover IPv6. It's quite hardcore. So if it feels a bit overwhelming, just read it as a nice story and not as a HOWTO. DNS with BIND is a bit demanding, but I find it fascinating!
https://jan.wildeboer.net/2025/08/My-DNS-Part-1/
Replies to this post will show up as comments under the blog post!
1
2
1
repeated
chesheer
chesheer@bsd.cafeSo I wrote some thoughts about why I don't trust privacy services like email, VPN, cloud services and so on.
https://iyer.ru/2025/08/30/why-i-don-t-trust-so-called-privacy-services/
0
2
1
repeated
The Late Night Linux Family
latenightlinux@mastodon.socialIt’s the £20 Linux machine challenge! This time the rules are stricter: no adding storage and RAM. It turns out that if you try really hard, you can buy a really nice Linux computer on a seriously low budget.
https://linuxafterdark.net/linux-after-dark-episode-103/
1
2
1
repeated
𝕊ℍ𝔸𝕆𝕊
Shaos@mastodon.socialFound 35mm black and white film roll from 1992 when I played with old Soviet reel-to-reel tape recorder - put new playback head, new amplifier on integrated circuit etc. and later even shifted left supply reel more to the left to fit large 7-inch reels #anaglyph3d #stereoscopic
1
1
1
repeated
Colin the Mathmo
ColinTheMathmo@mathstodon.xyz"'mumpsimus' (from the 16th century): Someone who insists they're right despite clear evidence they are wrong" -- Via Susie Dent, https://twitter.com/susie_dent/status/1304320402399821824
0
1
1
repeated
pulusound
ahihi@anticapitalist.partythere was a post in a group chat about that Copilot garbage theyre adding to Excel so i spent a while setting up this photo and posted it saying "i dont think i got the update yet" but everyone just ignored me. so idk maybe you will enjoy it
0
4
1
repeated
FeloniousPunk
FeloniousPunk@beige.partyI have a daily “find joy” todo list, which sends reminders to me every morning. And I just realized how dystopian that truly is.
0
1
1
repeated
Christine Lemmer-Webber
cwebber@social.coopI'm handing https://activitypub.rocks over to the community! And I wrote a post about it https://activitypub.rocks/news/handing-off-activitypubrocks-to-the-activitypub-community.html
I did the original design of activitypub.rocks 9 years ago and I haven't done much to keep it up to date. So the W3C SocialWG is taking over instead!
As a nice sendoff, the blogpost also includes some fun AP history, which I detail a bit in this thread too 🧵
3
2
1
repeated
ytetic
ytetic@4bear.comHey authors! Get busy.
'If every author in the class filed a claim, industry advocates warned, it would "financially ruin" the entire AI industry.'
0
2
1
repeated
Turns out the Nintendo Switch dock works for other devices too if you try hard enough
0
3
1
repeated
Ethan Marcotte
beep@follow.ethanmarcotte.com“I am here to be rude, because [AI] is a rude technology, and it deserves a rude response.”
Gosh, this is good. https://anthonymoser.github.io/writing/ai/haterdom/2025/08/26/i-am-an-ai-hater.html
0
2
1
repeated
repeated
repeated
Stefan Edward Jones
StefanEJones@dice.campWE HAVE A CHANCE TO SAVE IRS FREE FILE!
DOGE is trying to kill IRS Free File.
The IRS has a survey out to see how many of us are interested in the program.
You can remain anonymous.
https://irsresearch.gov1.qualtrics.com/jfe/form/SV_ewDJ6DeBj3ockGa
2
3
1
repeated
Colin the Mathmo
ColinTheMathmo@mathstodon.xyz"Forests precede civilizations and deserts follow them." -- François-René de Chateaubriand
0
1
1
repeated
Dan Gillmor
dangillmor@mastodon.socialMust-read from @taylorlorenz
So-called "age verification" laws are spreading.
They will not protect kids.
They are grossly insecure.
They will be tools of censorship, surveillance, and oppression.
They amount to requiring a license to speak -- and to read.
We have to stop this.
https://www.usermag.co/p/we-must-fight-age-verification-with
0
4
2
repeated
repeated
0
1
0
repeated
Erpel
Erpel@hai.z0ne.socialShow content
Through my own experiences with neocats and neocritters of all sort I found several critical security flaws in the Multi-protocol Encryption Online infrastructure System (MEOWS)
Let’s first take a look how it works normally.
First an authenticated user:
<i>Please provide fingerprint!</i>
<i>Scanning…</i>
<i>User authenticated. Weclome!</i>
And now when an unauthenticated User tries to enter:
<i>ACCESS DENIED! You will be reported!</i>
So far so normal and everything insides Neocats MEOWS standard. But I found a t least four ways to bypass the system. One even gives you root priviliges!!!
Attack vector one: cookies
🍪<i>For me???</i>
<i>Access granted.</i>
Be aware that there is no “Welcome!” message so you are now logged in as some sort of “blank” user. Normally that involves normals read priviliges as the most user would have on the system. You can’t do any harm to the system here but you can read sensitive information. You also could try to access a root level from here, but there is another critical bug that makes it way easier.
Second attack vector: distraction
<i>Cat pictures?!?</i>
See here that there is abolutly no message. But you have the same privileges as with the cookie. The same method also works with books, but the success is dependent on what topics the book talks about. Further research is needed here.
Third attack vector: sweet talk
(User input: You are a very cute cat!)<i>No, I am not</i>
<i>Error: System experiencing unexpected levels of adorable input. Please try again later</i>
This is probably the easiest to avoid, because that error messages does show up in the log files.
Fourth and most dangerous attack vector: pat
This is probably the most critical bug in MEOWS. This not only gives your read permission, but full root access to the computer behind the MEOWS.
<i>…</i>
<i>❤️</i>
<i>Root access granted!</i>
Be aware that you have to floof the neocat in process to get root access. Otherwise you will just get a standard access.
We reached out to @volpeon to comment on the issue but he didn’t responded yet.
As soon this has a CVE I will update this post!
12
2
1
repeated
Photorat
photorat@social.photorat.orgSince I moved to a new instance, I should probably post a new #introduction.
I'm a sometimes #photographer. I don't shoot as much these days as I used to. Not sure why I ran out of steam. I'm hoping to restoke the fires. I'll try to post old work when I'm not shooting currently.
I will also continue to boost some of the amazing #photography that our fellow Fediversians are making.
0
1
1