Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Notices by Sean Tilley (dsh@deadsuperhero.com)

  1. Sean Tilley (dsh@deadsuperhero.com)'s status on Thursday, 20-Dec-2018 19:10:02 EST Sean Tilley Sean Tilley
    Happy Birthday Dreams
    In conversation Thursday, 20-Dec-2018 19:10:02 EST from deadsuperhero.com permalink
  2. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 31-Jul-2018 05:52:24 EDT Sean Tilley Sean Tilley
    in reply to
    Happy birthday! ??
    In conversation Tuesday, 31-Jul-2018 05:52:24 EDT from deadsuperhero.com permalink
  3. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 04-Jul-2018 01:29:58 EDT Sean Tilley Sean Tilley
    in reply to
    • Sean Tilley
    @Sean Tilley this probably means you made a typo in the address. Check the remotes URL with a git remote -v .
    In conversation Wednesday, 04-Jul-2018 01:29:58 EDT from deadsuperhero.com permalink
  4. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 03-Jul-2018 19:46:00 EDT Sean Tilley Sean Tilley
    @Hubzilla Support Forum+ Hey, I'm trying to update my Hubzilla installation to the new Hubzilla repo. I've updated the remote, but trying to do a git pull seems to prompt me for framagit's password?

    Does anyone know of a workaround?
    In conversation Tuesday, 03-Jul-2018 19:46:00 EDT from deadsuperhero.com at 37°47'2"N 122°23'50"W permalink
  5. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 09-May-2018 17:44:17 EDT Sean Tilley Sean Tilley
    @interviews Cool, this federates!
    In conversation Wednesday, 09-May-2018 17:44:17 EDT from social.nasqueron.org permalink
  6. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 09-May-2018 17:43:27 EDT Sean Tilley Sean Tilley
    Damn, looks like the embedded player doesn't quite work with #Hubzilla yet. :(
    In conversation Wednesday, 09-May-2018 17:43:27 EDT from deadsuperhero.com permalink
  7. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 09-May-2018 17:41:20 EDT Sean Tilley Sean Tilley
    "The social network where YOU are in control!" An interview detailing Diaspora with Craig and Ben Crossman. There are some pretty funny moments during the interview, and viewer turnout was not particularly high, but it was still fun to particip...
    In conversation Wednesday, 09-May-2018 17:41:20 EDT from deadsuperhero.com permalink
  8. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 08-May-2018 14:27:32 EDT Sean Tilley Sean Tilley
    Hey @Jason Robinson ?? , these people could use some insight on the social relay, as Mastodon is thinking of using the technical solution for their own platform: https://github.com/tootsuite/mastodon/issues/7399
    In conversation Tuesday, 08-May-2018 14:27:32 EDT from deadsuperhero.com at 37°47'2"N 122°23'50"W permalink

    Attachments

    1. Federation relays · Issue #7399 · tootsuite/mastodon
      from GitHub
      I'm not saying that we're planning to implement this, but it's an interesting idea worth a discussion. One glaring hole of Mastodon UX is bootstrapping a new server with content so it d...
  9. Sean Tilley (dsh@deadsuperhero.com)'s status on Friday, 20-Apr-2018 14:44:03 EDT Sean Tilley Sean Tilley
    in reply to
    Perfect, thank you Mike!
    In conversation Friday, 20-Apr-2018 14:44:03 EDT from deadsuperhero.com permalink
  10. Sean Tilley (dsh@deadsuperhero.com)'s status on Thursday, 19-Apr-2018 15:38:54 EDT Sean Tilley Sean Tilley
    in reply to
    Back to the original problem since I didn't see any sign of it being resolved yet.

    delete from item where item_blocked = 4

    This will remove any moderated items on your server, including those owned by others. If you want to be more specific add "and uid = xx" replacing xx with your channel_id.

    This is begging for improvement.
    In conversation Thursday, 19-Apr-2018 15:38:54 EDT from macgirvin.com permalink
  11. Sean Tilley (dsh@deadsuperhero.com)'s status on Thursday, 19-Apr-2018 14:09:03 EDT Sean Tilley Sean Tilley
    in reply to
    A checkbox "I'm a bot [ ]"


    Just to be sure give it some of the crappy "What symbols do you see"-Captchas below so that the bot feels challenged ;)
    In conversation Thursday, 19-Apr-2018 14:09:03 EDT from mint-n-er.de permalink
  12. Sean Tilley (dsh@deadsuperhero.com)'s status on Thursday, 19-Apr-2018 01:31:54 EDT Sean Tilley Sean Tilley
    in reply to
    A checkbox "I'm a bot [ ]"
    In conversation Thursday, 19-Apr-2018 01:31:54 EDT from deadsuperhero.com permalink
  13. Sean Tilley (dsh@deadsuperhero.com)'s status on Thursday, 19-Apr-2018 01:22:19 EDT Sean Tilley Sean Tilley
    in reply to
    An extra field on a form worded so that hunans don't fill it in can help stop a lot of spam on open comment forms.
    (can say anything as long as any human seeing it leaves it blank)

    and you can hide it with css
    (so anyone using a modern browser doesn't even have to see that field - don't do that inline though - spambots look at the form, but probably not many would bother looking at separate css files)

    Spambots often put random rubbish into every field (I guess in case it turns out to be required)

    then if theres something in the field block them from posting!

    There are lots of little tricks like that you can do if you think about how spambots behave ..


    Another thing that could help is if they send a user-agent string that looks like a common browser, check that it behaves like that browser. (there are lots of things you could check along those lines and if you are careful about it possibly without even blocking the occasional human that might turn up using an ancient browser)

    Spambots often try to look like commonly used browers to avoid being blocked by their user-agent string but they are actually more likely to be just scripts without a lot of the features of the browsers they try to look like.

    also ANY not-common extra step in the posting process could trip up a lot of the more stupid bots.
    eg perhaps an extra stip that shows something the user needs to copy into a field in another step - with a separate form - just another idea

    pretty much anything thats different to common cms default forms could trip up a lot of the more stupid bots.

    regarding captchas try to make sure they don't lock out real humans!
    (eg someone with poor eyesight or using a screenreader could have problems getting though image based captchas - and if its something like a puzzle make sure its easy enough for humans wanting to post to work out the right answer!)


    - blocklists like stopforumspam, etc can also help
    though I think for those its better to download blocklist data daily (eg with a script in cron)
    and do the checks locally on locally-cached data rather than doing the checks the way some of those blockists suggest (which would involve waiting for a request to send te ip to their site)

    I don't think its a good idea to leave people waiting for anything to do an external request,
    and it could be a privacy issue for real users.

    Doing a daily download of blocklist data and doing the checks against locally cached data avoids those privacy and latency/reliability issues.

    you probably don't need to go that far for moderated comments though


    try the tricks based on the differences in behaviour between stupid bots and humans first.
    most bots are not very smart .




    also while on this topic I should also say it would probably also be a good idea to change the paths of the registration and login forms so they don't have words related to those things in their paths.

    I've seen a lot of requests turn up in web server logs over the years for paths with names that look related to login or registration forms that don't exist and aren't linked from anywhere, but are probably where some commoly used cms put their rego and login forms by default.
    It looks like some bots that just try those common paths in case there's something there.
    Those kinds of 404 requests are almost certainly NOT humans and probably not nice.

    There is a very small minority of smarter bots out there that can get though email verification to register on websites, so tripping up bots in registration and login forms or making those things less easily discoverable by spambots is also worth looking at.
    In conversation Thursday, 19-Apr-2018 01:22:19 EDT from mercury.spraci.info permalink
  14. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 18-Apr-2018 03:41:41 EDT Sean Tilley Sean Tilley
    in reply to
    yes. the captcha I showed is a self-hosted one.
    In conversation Wednesday, 18-Apr-2018 03:41:41 EDT from hub.libranet.de permalink
  15. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 18-Apr-2018 03:23:29 EDT Sean Tilley Sean Tilley
    in reply to
    well, you could also host a captcha at the same site. No need to use a third party service per se.
    In conversation Wednesday, 18-Apr-2018 03:23:29 EDT from deadsuperhero.com permalink
  16. Sean Tilley (dsh@deadsuperhero.com)'s status on Wednesday, 18-Apr-2018 03:18:32 EDT Sean Tilley Sean Tilley
    in reply to
    Hm... CAPTCHA? Kind of kills all privacy to use a third party service... #justsayin'
    In conversation Wednesday, 18-Apr-2018 03:18:32 EDT from hub.somaton.com permalink
  17. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 17-Apr-2018 19:23:15 EDT Sean Tilley Sean Tilley
    in reply to
    Yeah, I agree, some form of CAPTCHA would be useful for accounts that want to allow anyone on the Internet to comment.
    In conversation Tuesday, 17-Apr-2018 19:23:15 EDT from deadsuperhero.com permalink
  18. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 17-Apr-2018 18:58:26 EDT Sean Tilley Sean Tilley
    in reply to
    sry not an answer to your question.
    but thought something like this would be needed to prevent it (forgot it's name, that's why I upload an image of an example)

    In conversation Tuesday, 17-Apr-2018 18:58:26 EDT from hub.libranet.de permalink
  19. Sean Tilley (dsh@deadsuperhero.com)'s status on Tuesday, 17-Apr-2018 18:43:46 EDT Sean Tilley Sean Tilley
    !Hubzilla Support Forum Due to a bad privacy setting on my behalf, my moderation queue is flooded with spam. Is there an easy way to just wipe the entire queue? Trying to click Delete on every single item takes forever, and due to a lack of paging, it's impossible to know where the end of the spam is.
    In conversation Tuesday, 17-Apr-2018 18:43:46 EDT from deadsuperhero.com at 37°47'2"N 122°23'50"W permalink
  20. Sean Tilley (dsh@deadsuperhero.com)'s status on Friday, 13-Apr-2018 21:25:57 EDT Sean Tilley Sean Tilley
    in reply to
    Scratch my previous comment if you see it.... just saw the update from Mario on the PR....

    https://github.com/redmatrix/hubzilla/pull/1073
    In conversation Friday, 13-Apr-2018 21:25:57 EDT from hub.webgoeslocal.net permalink

    Attachments

    1. Update sample-nginx.conf - fix .well-known location block by dentm42 · Pull Request #1073 · redmatrix/hubzilla
      from GitHub
      Fixes "access forbidden by rule" errors for "POST /channel/xxx/.well-known/zot-info" by changing the location block of the config to use a regex for /.well-known/ rather than si...
  • Before
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.