Notices by silverpill (silverpill@mitra.social), page 63

@helge @linos Mastodon uses Reject(Follow) to remove a follower

@mikedev @helge

There's a lot of uncertainty at the moment, and it seems that no one has definite answers to these questions. Personally I'm waiting for these issues to be resolved before rolling out eddsa-jcs-2022:

- https://github.com/w3c/vc-data-integrity/issues/225
- https://github.com/w3c/vc-data-integrity/issues/231
- https://github.com/w3c/vc-di-eddsa/issues/72

It is also interesting to see whether @helge 's submission is going to be accepted or not: https://github.com/w3c/vc-test-suite-implementations/pull/11

@helge Hmm. If "naive embedding" of signed objects is not compatible with JSON-LD, then FEP-ae97 is also not compatible, because client-signed Create(Note) activity needs to have its object embedded in order to work with what we have in Fediverse.

Between data/identity portability and JSON-LD compat, I would pick the former.

@mikedev @streams Even if properly implemented, authorized fetch is easy to bypass. For example, one can create a puppet actor on a different domain.

Instance blocks are only effective because setting up a new domain costs something (money, time). However, someone like Meta may create a lot of domains and a lot of actors, so the only real protection against them is allowlist federation (not necessarily a literal allowlist, it could be some complicated web-of-trust mechanism).

@helge You made it compatible with existing consumers, that's nice. But why bad example is bad is still not quite obvious to me.

@mikedev I only want to protect non-public messages (direct messages, private group messages, maybe even followers-only posts) from malicious server operators and accidental leaks. Group E2EE provided by MLS should work well enough for this purpose.

@mikedev @evan I'd like to try MLS because it supports groups and gaining adoption.

The list

@evan It is definitely possible, and implemented in my project Mitra. Here, "subscribers" and "followers" are different categories, and subscribers-only posts are published in a private group that uses mentions for targeting and therefore compatible with other popular micro-blogging platforms.

A variant of FEP-0837 protocol is used for federated payments. People on servers that don't support FEP-0837 can make a payment by navigating to a special payment page.

@helge I hope that a failure to properly unwrap a present won't make it explode.

@Pawlicker @mint @japananon @Moon That would be great. Mitra backend is written in Rust and *bsd variants are listed among supported platforms, so I expect it to work.

@trades @mint @Pawlicker @japananon @Moon Yeah, I should add that box. Is it alright if I copy Mastodon's behavior?

@japananon @mint @Pawlicker @Moon I did add it https://mitra.social/@silverpill/gallery but haven't touched since then due to a lack of feedback. There's a lot of room for improvement.

@alex One man's Vegan is another man's Alt-Right

https://wedistribute.org/2023/12/authorized-fetch-circumvented/

@nimda @aura As the database grows some queries could become slower because I didn't bother much with optimizations.

Loading of home timeline and notification list are probably the most expensive operations. They are still pretty fast one my instances but if you notice any performance degradation let me know

@deavmi You're welcome! I'm hoping to deliver a couple of big improvements in the next year, one of them is portable identities (similar to Nostr and ATProto)

@mint Ok thanks, I'll make reposts hidden by default in local/twkn.

@mint No, I didn't think about it at all. I assume other services don't show reposts there?

What about local timeline?

@ch0ccyra1n Yes! Try to follow @fediverse@socialhub.activitypub.rocks

#Mitra v2.6.0

https://codeberg.org/silverpill/mitra/releases/tag/v2.6.0
https://codeberg.org/silverpill/mitra-web/releases/tag/v2.6.0

This release contains many small improvements, including federation with Discourse, support for Phanpy client and automatic media cleanup after profile updates

@alex mitra.social is hardly a flagship, as I'm the only user here :) And I think Meta blocking my server is more likely a result of incompetence rather than a declaration of war. Nevertheless, thanks for mentioning Mitra