Cocoa Hoto (real) bro come on
Timeline
Post
Remote status
Context
5
@Cocoa Had a moron also taunt me through my own search on lab when I had one of these bots. This stuff works and it makes them mad, keep it running.
@kirby chomos get mad when you take away their baby rape access but I think in this case it's just a privacyfag
@otso @kirby @Cocoa I didn't say that and again that you bring this wording up is a red flag.
I live in EU where free speech barely exists at this point. Everyone, and I mean everyone, stores logs on you for ~4 weeks (the default in most cases). Every image you load from a post is a ping in someone's access logs, because Wiz doesn't run a media proxy according to the "features" list on the tsundere about page. If you didn't know that, than well now you know. That's how the Internet works in general.
It's not the fact that you don't like someone having logs on you that matters to me. It's the recoil after someone mentions they have search logs from nonces that speaks volumes to me. It's not the action, but in what context it occured.
If you really cared about the logs and being private, you would probably use something like Tor to access fedi.
I live in EU where free speech barely exists at this point. Everyone, and I mean everyone, stores logs on you for ~4 weeks (the default in most cases). Every image you load from a post is a ping in someone's access logs, because Wiz doesn't run a media proxy according to the "features" list on the tsundere about page. If you didn't know that, than well now you know. That's how the Internet works in general.
It's not the fact that you don't like someone having logs on you that matters to me. It's the recoil after someone mentions they have search logs from nonces that speaks volumes to me. It's not the action, but in what context it occured.
If you really cared about the logs and being private, you would probably use something like Tor to access fedi.
Replies
4
@fluffy @otso @kirby @Cocoa I think everyone is free to decide. Large instances probably should to keep their user base from affecting other smaller instances and smaller instances are free to do whatever they want.
I have media proxy enabled for the preview generation on slow networks I can be on for days.
I have media proxy enabled for the preview generation on slow networks I can be on for days.
@phnt @Cocoa @kirby @otso
how does the caching work? does it proxy on timeline query? precache? auto prune?
my main concern with running a media proxy has always been bad actors using it to inject malicious media onto my server.
>don't be paranoid
i've never been attacked, but, i've seen it happen to other people, i don't want to make myself an easy target for internet crazies
how does the caching work? does it proxy on timeline query? precache? auto prune?
my main concern with running a media proxy has always been bad actors using it to inject malicious media onto my server.
>don't be paranoid
i've never been attacked, but, i've seen it happen to other people, i don't want to make myself an easy target for internet crazies
@fluffy @otso @kirby @Cocoa It can pre-cache with an MRF policy or download on demand. Pruning is done with nginx depending on cache size and how stale a file is.
>inject malicious media
You can either be vulnerable to someone injecting illegal media by sending you a DM or have a VPN 24/7 so that nobody can grab your IP by sending you a DM with an image. Neither are great, really. At least you can prevent the former by putting it on a subdomain or even a different domain, so any funky attachments trying to execute scripts will get rejected by the browser with a CSP.
>inject malicious media
You can either be vulnerable to someone injecting illegal media by sending you a DM or have a VPN 24/7 so that nobody can grab your IP by sending you a DM with an image. Neither are great, really. At least you can prevent the former by putting it on a subdomain or even a different domain, so any funky attachments trying to execute scripts will get rejected by the browser with a CSP.