Wack Playstation Sup! ๐Ÿ™Š ๐Ÿ‡ฎ๐Ÿ‡ธ ๐Ÿ is a user on mastodon.xyz. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.
Wack Playstation Sup! ๐Ÿ™Š ๐Ÿ‡ฎ๐Ÿ‡ธ ๐Ÿ @HerraBRE

I thought of a completely trivial way for to implement all their soft security stuff w/o content leaking when it federates to incompatible servers.

It's such an obvious idea that I can't help but wonder if @Gargron is already doing it...

The idea: Put sensitive content in a non-standard XML element (e.g. <scopedcontent> instead of <content>). Poof, the problem just goes away, until a node is actually malicious.

JollyOrc @JollyOrc@octodon.social

@HerraBRE @gargron I might be wrong, but... isn't it already only a problem only when a node is malicious or at least badly configured? (which is kinda the definition of "incompatible servers", either by intent or incompetence)

Wack Playstation Sup! ๐Ÿ™Š ๐Ÿ‡ฎ๐Ÿ‡ธ ๐Ÿ @HerraBRE

@JollyOrc Not quite.

If I understand correctly, if you set a post to "followers only" that disables boosting in the UI and prevents the toot from appearing on public timelines.

As I understand it, GNU Social doesn't implement either of those behaviours.

The scoping features require cooperation from the receiving server, much like deletion does.

They've got the content, but implementing the implied social contract is work not all have done - or want to do!

ยท Web ยท 0 ยท 0
mastodon.xyz powered by Mastodon