Am I the only one that has noticed the massive increase in buggy software across almost every domain? Like, EVERYTHING has so many more bugs now. Things just break constantly. AI isn’t one shotting fixing bugs, it’s one shotting making hundreds of new ones.

the amount of people that do not understand how big of an improvement passkeys are is really saddening. They think that somehow these tech companies are utilizing this in some nefarious way, rather than the very very simple explanation that … tech companies don’t want to be responsible for more breaches.

Passkeys are so simple and such a huge improvement that it’s literally all upsides and no downsides. Either you use their passkey managers like you would their password managers and it’s safer for them, or you use your own password manager with passkeys in it and it’s still safer for them.

You have a vast misunderstanding of why passkeys aren’t transferrable or usable outside of those providers. It had nothing to do with lock-in, but because every implementation was different. And no, you do not ‘depend on the site’ to let you use that option instead of a major provider. There’s a standard now and everyone is following it. If you can use a passkey you can use your password manager to manage that passkey.

I restarted the server so hopefully some stuff speeds up and your post eventually shows up.

We’ve been having problems with the whole instance being incredibly slow so I’m guessing it’s more related to that. We keep getting behind on activities anytime lemmy tries to create the aggregates.

It blocks access to the link on your site. For example, on programming.dev people have uploaded CSAM. The links are immediately blocked (e.g. no one can get to them except an instance owner actually looking in the pictrs database) and then in the CF dashboard you get a notification with the link to the webpage it occurred on.

CSAM blocking works based on a known agreed upon, shared hash list which is created by a consortium of large tech giants. If novel CSAM is uploaded to your instance, then yes, it will fail to catch that. db0’s plugin might catch it though. LLM blocking doesn’t have the benefit of a bunch of multi billion dollar companies trying to stop it, in fact they’re doing the exact opposite, so yes LLM blocking sucks.

For your edit, I would expect you to have an email set up that you would get the notice from. You are not responsible for this kind of stuff until you have been notified, pretty much globally, so pay attention to your email.

You can set up Cloudflare as your CDN and turn on CSAM detection. It will automatically block links to known CSAM from the managed global CSAM hash lists.

If you want something in addition to that, you can use db0’s plugin that adds in a similar capability.

Really weird reading an article that interviews someone you’ve worked for (who is a billionaire themselves).

When I was working on adding voting to lemmy (I never finished it) one of my features I wanted was exactly this. Essentially locking down votes to your instance, meaning you have to have an account in the instance to vote and the votes won’t federate. This would make it so that users of the instance could make decisions without brigading from other instances.

One thing I do beg you to add: 3-2-1 voting and STAR voting. We really need to stop using plurality voting for things.

I see, you’re talking about manual reporting (as in you filed a report directly on CF’s website) rather than CF’s CSAM scanning. This is the same as reporting CSAM to any US service provider.

They do not. Here’s the email I got (I maintain programming.dev).

Cloudflare does not automatically report to the NCMEC anymore.

I work for a solar company and they said that we would have to start using solar powered two factor authentication key fobs.

barely receives any updates even from the public.

what do you mean by this?

about 50% of traffic to programming.dev is bots who have marked their user-agents as such. I’m pretty confident the actual number is higher, but haven’t spent time validating.

yes sorry, I have a goal to get set up with an open sponsor, but just haven’t. Currently in regards to funding I am $1000 short for the last year, so I definitely need to get the open sponsor set up because lots of people are only willing to fund that way (which I completely understand). And that’s just for base infrastructure. I would like to pay the admins as well.

14 year olds aren’t allowed to take ubers by themselves in the first place. not sure how many 14 yo have banks in the UK, but in the US it’s vanishingly small.

man what part of america are you in lol. I’ve never seen either of those as an everyday occurrence, though you will find them if you go to a southern fried chicken joint.

as an instance admin I will let you know that lemmy (the software) runs very very poorly.

then why is every linux advocate stating that all that matters is picking your distro? If the system needs to have the OS preinstalled then the distro doesn’t matter at all. Yet that still really isn’t the problem. Installing an OS from a flash drive (distros are just as easy to install as windows is and people have been installing windows fine from hard media for decades) is a different realm of troubleshooting than driver issues. Either linux is ready for people to start installing any distro on their gaming rig to migrate off of Windows or it’s not. And it clearly isn’t.