Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. lnxw48a1 (lnxw48a1@nu.federati.net)'s status on Sunday, 04-Dec-2022 22:15:33 EST lnxw48a1 lnxw48a1
    #Mastodon issue for #activitypub-troll denial-of-service vulnerability. https://github.com/mastodon/mastodon/issues/21977 with 2 pull requests. https://github.com/mastodon/mastodon/pull/22025 and https://github.com/mastodon/mastodon/pull/22026

    #security
    In conversation Sunday, 04-Dec-2022 22:15:33 EST from nu.federati.net permalink

    Attachments

    1. Any idea to stop activitypub-troll.cf or likewise attacks? · Issue #21977 · mastodon/mastodon
      from GitHub
      Pitch From about one hour ago, my instance's federated timeline was spammed with contents from activitypub-troll.cf, and the sidekiq queue is full of pulling requests. I have to purge all the t...
    2. Fix unbounded recursion in account discovery by ClearlyClaire · Pull Request #22025 · mastodon/mastodon
      from GitHub
    3. Fix unbounded recursion in account discovery (v3.5 backport) by ClearlyClaire · Pull Request #22026 · mastodon/mastodon
      from GitHub
      This is a straightforward backport of #22025 to stable-3.5. Some changes were needed for ActivityPub::FetchRemoteAccountService because it's been split into ActivityPub::FetchRemoteActorService bet...
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.