splinter

It will likely take 30-60min

I know all of us would be happy to have more people to interact with on content. The idea of limited federation came up a bit recently too, and I mentioned that we are open to it.

The reasons we haven't been federated have nothing to do with not wanting to open up to the rest of the Fediverse, and everything to do with the drama that comes with federation. Specifically, we don't want the dodgy porn that other instances get bombed with, the endless political fanatics who poison every topic, the admins who want to impose their views on you, the constant screeching and demonizing, etc. The overwhelming majority of all Fediverse content is hot garbage, and having to store that bloat for nothing is also a huge turn-off.

On the other hand, I think we can all agree that it would be nice to have more people to talk shit with, and federation is an easy(er) way to achieve that. Our current thinking is that we'd like to selectively federate with instances who tick off a few requirements:

1. No porn or loli shit or pedo apologists or anything like that
2. They require registration applications (this one's about spam)
3. Their admins aren't missing in action (also about spam)
4. Their rules don't sound like something Stalin would've come up with

The requirements above are just a way of me saying I don't have time to deal with this shit if it became high drama and high maintenance, so I'd like to avoid that if possible. I really don't care about political lean or anything like that.

Alice compiled an initial list:

• https://aussie.zone/
• https://lemmy.sdf.org/
• https://programming.dev/
• https://mander.xyz/
• https://monero.town/
• https://lemmy.zip/
• https://reddthat.com/
• https://feddit.ch/
• https://lemm.ee/
• https://lemmy.nz/
• https://dmv.social/
• https://iusearchlinux.fyi/
• https://fanaticus.social/
• https://lemmy.basedcount.com/
• https://donky.social/
• https://links.hackliberty.org/
• https://lotide.fbxl.net/

What are your thoughts?

Edit: Updated list

People are incapable of just enjoying something

Here's mine:

🤣 🤣 🤣 🤣 🤣 🤣

This is better and wackier than any comedy movie.

There's been a bit of a stir over this post: https://sh.itjust.works/post/13512126

I thought I would explain some things about Lemmy in general and HC in particular, for better or worse.

About this exploit

1. We are NOT affected by this particular bug. It only affects Lemmy 0.18.5, at the time of that post we were on 0.19.2 and I have just upgraded us to 0.19.3, which was released a few days ago. In general I keep close tabs on Lemmy development and we are always on the latest version within a couple of days.

2. Even if we had been affected, you would have to be a registered user on HC to even attempt to exploit it, and this particular bug involved spamming the Report feature. It would've been really obvious to Alice or I had anyone tried, since we get notified of all reports.

About Lemmy security in general

Lemmy is still early in its development, things are changing rapidly and there have been a number of rather serious security bugs over the past year. This is not the first time and it won't be the last time something like this comes up.

I keep an eye on Lemmy development and upgrade us to the latest version soon after it is released. This is the main thing I can do to make sure we limit our exposure to any potential Lemmy exploits.

We are also not federated and as of now we're a pretty small tight knit group. This vastly reduces our risk from any exploits, since typically exploits require you to be a registered user.

Lastly, if there was ever a serious exploit that affected us, you will hear from me.

About Lemmy private messages

Lemmy private messages exist as unencrypted text inside of the Lemmy database.

Lemmy admins in general CAN'T view or delete your private messages through the Lemmy admin interface, there is simply no option for it.

The server admin (me in this example) has access to the database directly and could run a query to view or delete private messages.

In practical terms, this means the only person here who could do that is me. As I said before, I really don't care to view the dick pics you send to each other, but you should keep in mind that I could.

In general you should never use Lemmy private messages for anything that could hurt you if they ever became public. There are some scenarios in which that data could end up in other people's hands, such as:

• Through some funky Lemmy exploit we don't know about yet
• If someone hacks the server itself (extremely unlikely but you never know)
• If someone shows up at my door with a warrant.

Overall though, Lemmy private messages aren't less secure than those of any other similar service you use, even the likes of Reddit, Twitter, etc. There is nothing to panic over, just use common sense.

I'm happy to answer questions on any of this, feel free to ask them here.

We also have a PeerTube instance: https://videos.hilariouschaos.com/

I'm happy to give you access to it if you want to use it to share your creations. As a general rule, this should be original content you made, not anything copyrighted.

If you're interested then just sign up at https://videos.hilariouschaos.com/ and send me a DM here to let me know it's you.

This is kinda hilarious, the hi-viz just confers authority for some reason