Pushed "inline" replies to my #Honk fork so I am sure to reply to the good honk 😅
@goose You can know that by asking the sqlite database ahah
$ISP activated IPv6 in my area, finally! I am surprised that it does not come with CGNAT as they usually implement that along. Maybe it will happen later ~~~ to be continued ~~~
As such, I have taken the opportunity to preconfigure my home network, so if they really move me to CGNAT my home server will still be accessible from outside. It was frustratingly fun to do ahah
The price of the honk API will double every day from now until the end of free ride February.
grmph I broke my atme indicator
@goose Yes, it would be needed to wrap all requests before being sent to
http.Client in a way or another because it is needed to take into account external modules (notably the
On top of that, the feature may be unwanted, for example if people are using honk only on the local network (it may be unlikely to be honest).
That's why using an external tool as mitigation or a firewall rule to contain honk is for now the best thing to do in my opinion, but I am not a security expert.
Some people wrote an easy to use SSRF prevention module, but from my experience even if you use it as drop-in replacement,
webs/junk will still use and send
http.Client objects that will type clash and defeat the purpose of doing so.
@horia Given the size and the fact there are 2 boxes, I would say a router 🤔
HAHAHA l'API de Twitter va devenir payante. 😂
500 requêtes par mois ? 149 dollars !
5000 requêtes ? 1299 dollars !
I hope someday someone © bring SSRF hardening to Honk, meanwhile systemd has
I do not want to mess with firewall rules out of
ufw or use
ip namespaces, because I will probably mess up.
You can cut the network for Honk through my dear friend AppArmor, assuming you are using a Unix socket, but then bonks and many other external resources will not load.
There are people that think the end of the free APIs on birdsite means the end of cross posting. This is too optimistic in my opinion, it is easy to use a scraper instead of the API heh.
Random shot from walking around Geisemet neighborhood, Cartagena Colombia.
I was tired to search for mentions in the honkers/xonkers page, so I have added a mention completion system for the #Honk form in my fork. The UX could see improvements, but it is already great, and doing better is prompting for using jquery or another framework like that.
The code can probably be improved, but it works :D
This looks like something @NanoRaptor would post
Brick road printer 🖨️
Spotify’s results are a great example of why we’re seeing tech layoffs. Impressive revenue growth of 18% year over year is dwarfed by costs growth of 44% year over year.
Such gaps in costs versus revenue growth scares shareholders which is why layoffs.
A comprehensive map of all countries that use the MMDDYYYY date format
TIL that if you want to specify a given set of ciphers for TLSv1.3 to nginx, you have to use the
ssl_conf_command Ciphersuites ... directive, not the
This is what makes the difference between A+ in SSLlabs with ciphers strength at 90% and at 100%. And you can still access said site even with the good old windows 7 (and XP with Firefox ahah).
That being said, the default let's encrypt settings are meh in this regard to be honest.
Time to say goodbye to openports.se
Au Centre Pompidou, quelqu’un-e s’est amusé à poser des cartels à côté des équipements.
Le personnel ne savait plus quoi retirer ou garder. 😂 😂 😂
I wanted to add a fancy background image to Honk guest (not logged in) pages like cute fox instances most often do, but only for guest pages because it hinders readability in the long term. Picky heh.