Hi, you are using the right stack for this kind of project, very promising!
I have only two questions I could not answer myself by reading the docs, it would be great if you would like to answer these:
A) Groups: for many use cases of "social softwares" groups are a very basic requirement - I can not see any way to have a group inside an instance or a way to simulate groups by using Pleroma in a multi-tenant way, like one Pleroma instance for each group served from the same code installation (ecto has a db prefix feature, maybe this could help with a quick path for a "multi-tenancy-as-groups" feature?). Am I missing something or are groups simply not there yet?
B) EU data protection: would you say that Pleroma is safe for (naive) users to install in the sense of EU conformity or is it a risk currently for a single person to offer a Pleroma instance in EU? I could not find any information about this very important topic - what again made me wonder if developers are realizing the importance of this issue at all?
Would be very interesting to read your ideas about these issues!
BTW the docs at https://docs.pleroma.social/readme.html would be more readable if the sidebar could be adjusted to the width of the containing text - HTML + CSS allows that, it should be used! Also having "Top" - a navigation directive - listed as an actual chapter name seems a little strange.
Did you try this on an up2date Linux OS, like eg Debian or Ubuntu? What was your result?
Certainly as a real hacker you are not only re-posting "things from the news" but validate everything before posting any comments? Are you?
I did not see any relevant content on the websites you mention in your HN profile, I expected some in-depth security publications - maybe update it with some real code that shows us how you are using the mentioned CVE-2019-14378 to perform escapes on any KVM host? Thanks!
If that was my server I would of course put a joke in /etc/shadow - did you try to brute force the hashes? It would not be a great surprise to find some obvious funny content if you try?
Did you try this on an up2date Linux OS, like eg Debian or Ubuntu? What was your result?
Certainly as a real hacker you are not only re-posting "things from the news" but validate everything before posting any comments? Are you?
I did not see any relevant content on the websites you mention in your HN profile, I expected some in-depth security publications - maybe update it with some real code that shows us how you are using the mentioned CVE-2019-14378 to perform escapes on any KVM host? Thanks!
You wrote something interesting, unfortunately you accidentally hit the "reply" button before you could insert some URLs that would add some substance to your words.
I am sure you know that words without evidence are of no value on the internet and it will kill your reputation, so I am waiting until you get online again and send some examples.
Please post some currently working code for escaping XEN, KVM, also VMWare and Virtualbox may be of interest, thanks!
I could not find any relevant content on the website you publish in your profile - btw it seems to be a bit broken, maybe go into webdev a little bit after you finished the code for the VM exploits?
Can anybody provide a good comparison e.g. with Meltano?
I am not affiliated with the Meltano people, but I like the idea of keeping the system modular, what seems to make it easier to replace components.
I have no doubt that we will see better replacements for every component of a data pipeline in the coming years. If there is only one thing to do right, then it´s to not bet on one tool but keep the whole stack flexible.
I am still missing well established standards for data formats, workflow definitions and project descriptions - hopefully open source ninjas will deliver on this front before proprietary pirats will destroy the field with progress-inhibiting closed things. It seems to be too late to create an "Autocad" or "Word" file format for datascience, but I see no clear winner atm, but hopefully my sight is bad - please enlighten me!
Would you please like to add data and evidence to add some substance to your words? It is not enough to just "say something" on the internet - you need to provide evidence if you want to be taken seriously.
I am not a Twitter engineer, but I guess that this is nothing else but a great marketing campaign - suddenly many people remember all their accounts and login and that will help to produce very nice reports about the "active user base".
But why is this needed?
My guess: many people are sick of Twitter and since one president of one nation made it his personal propaganda vehicle it is becoming a mental wasteland - new ecosystems are growing and people inside these new communities are quite happy that all the zombies are contained in that trash dump, like facebook.
Actually we should all be happy that these first big "social" networks decontaminated the internet for us - these are now the Tschernobyls of social media where all the toxic waste is collected, hopefully for many years.
How do you know that they do not hire "any people with ops experence"? Do you have insight? Is there any public evidence for this or anything you could publish yourself to add some substance to your words?
It would be great if you understand that just saying something is not enough on the internet.
What are your qualifications that enable you to come to this conclusion?
I would be very interested in studying your publications - where can I find your analysis?
Also it would be really very appreciated if you would like to publish the datasets that lead you to this conclusion - would you like to give us a public repo with the data, so we can check your results?
Hmmm, just today I wanted to install a new virtual machine with the latest Gitlab release to check if it makes sense to run that inhouse... does anybod know if there is a VM, a vagrant machine, an ISO or a repository online that still can be used? Thanks!
Yes, that is one of the most important reasons for me to use Linux on Notebooks and Workstations everywhere - so much time gained not baby sitting the OS every few weeks, that is still a great experience!
I have only two questions I could not answer myself by reading the docs, it would be great if you would like to answer these:
A) Groups: for many use cases of "social softwares" groups are a very basic requirement - I can not see any way to have a group inside an instance or a way to simulate groups by using Pleroma in a multi-tenant way, like one Pleroma instance for each group served from the same code installation (ecto has a db prefix feature, maybe this could help with a quick path for a "multi-tenancy-as-groups" feature?). Am I missing something or are groups simply not there yet?
B) EU data protection: would you say that Pleroma is safe for (naive) users to install in the sense of EU conformity or is it a risk currently for a single person to offer a Pleroma instance in EU? I could not find any information about this very important topic - what again made me wonder if developers are realizing the importance of this issue at all?
Would be very interesting to read your ideas about these issues!
BTW the docs at https://docs.pleroma.social/readme.html would be more readable if the sidebar could be adjusted to the width of the containing text - HTML + CSS allows that, it should be used! Also having "Top" - a navigation directive - listed as an actual chapter name seems a little strange.