
Troth Central?
doesn't that run on an old version of mastodon? It would be a real shame (sic) if it was taken down and everything wiped. Nothing of value to humanity would be lost.
Mastodon has called admins to action following the disclosure of a critical vulnerability affecting the decentralized social network favored by erstwhile Twitter lovers. With a 9.4 severity score, exploiting CVE-2024-23832 potentially allows attackers to take over Mastodon accounts remotely. While very little has been …
Truth Social and Gab are both running Mastodon technology (though in walled garden fashion so they can't be reached from the general Mastodon network) but I don't know how close they stay to the reference implementation. My guess is that they are pretty understaffed and will probably be following quite close. In that case they could likely pretty easily port this fix over too.
I can't be arsed myself but it shouldn't too hard for someone to inspect the web interface and API of Truth Social or Gab to see how it identifies itself. With a random Mastodon server you can see in the bottom left corner of the Explore page which version it runs, such as here on Mastodonapp.uk.
And this is why I won't trust Mastodon, running on any number of servers run by who knows what kind of monkeys (with no accountability) who may or may not fix problems like this and introduce vulnerabilities that could affect me even if I'm not on their server. (There are other reasons I have no interest in it, though.)
You get to choose which server hosts your account.
Your choice can be influenced by how the monkeys describe themselves.
If the description proves inaccurate or you prefer different monkeys you can switch you account to a different server.
There is accountability: poor hosts can be de-federated.
If poor maintenance of one server could have negative consequences for accounts held on others then the same effect could be achieved by malice. The fact that this has not happened shows that such an attack requires more effort that bad actors have so far been willing to apply.
The fact that you have other (probably good) reasons not to take an interest in Mastodon explains your ignorance. I had enough interest to do some research and try Mastodon last year. What you get out of Mastodon depends on how much effort you put in and how many people you find with similar interests who make some effort. Last year I was not getting enough from Mastodon to make it worth the effort I was putting in. Other people have different interests and priorities so will have a different experience. I am sure I will try again some time.
You have it wrong. Other server admins can block you, not the devs*. That causes a problem, but it's not what you're implying. Since I don't use the system, I don't know how frequent that is, but at least describe it accurately.
* Technically, the devs could write the code to exclude you, but that's not what has happened.
And this is why I won't trust Xitter, running on any number of servers run by who knows what kind of monkeys (with no accountability) who may or may not fix problems like this and introduce vulnerabilities that could affect me even if I'm not on their server. (There are other reasons I have no interest in it, though.)
Its good too see third reich maste race politics is finally acknowledged in the USA as being official policy. I remember the other day in a Boeing article here, someone said that B nealy killed some AMERICANS, which made them bad. Nobody down voted this, B has already killed humans with their green im refering ot the Ethipian Max accident etc, but obviously they dont count becaue they arent American.
What part of de-centralised is giving you issues? Break it down into small chunks, you can do it.
Mastodon isn't a platform, it's a piece of interoperable software that can talk to other bits of software.
Outside of your head, it's not quite clear what the Russians would have to gain by having a secret asset (that's what you're claiming Gargron is, right?) build a bit of software that can trivially be replaced with Akkoma and the like
There isn't even an algorithm for them to quietly exploit - toots are time-ordered.