So, what's the method to deal with the #eunomia threat, anybody got one?
I assume the first step is defederating from mastodon.social?
What about advertising to move people off mastodon.social?
Conversation
Notices
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:09:03 CEST 
The_Gibson {UTC -4}
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:15:54 CEST
The_Gibson {UTC -4}
Believe it or not, I am all about a level headed approach.
This doesn't look good though.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:16:46 CEST
The_Gibson {UTC -4}
Yeah, I mean the real issue here is the insecure nature of all social networks.
-
Michael W (Warren) Lucas (mwlucas@bsd.network)'s status on Monday, 08-Apr-2019 18:20:37 CEST
Michael W (Warren) Lucas
300K accounts, yes.
Many folks use m.s as an entry point. Once we understand the fediverse, we jump off to form our own enclaves.
I'd like to see someone start another obvious entry point, explicitly labeled as a "learn the fediverse, find your tribe, and move on to make room for others."
The Doctor repeated this. -
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:23:00 CEST
The_Gibson {UTC -4}
3xcept the entire federation is potentially threatened... not just mastodon.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:36:34 CEST
The_Gibson {UTC -4}
Because in the past when we open it up, we got bad faith actors trying to override/poison the community.
At least that was last year here at H.town.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:38:42 CEST
The_Gibson {UTC -4}
I'm not sure that the code would matter... it is trivial to setup an instance and Hoover up data from everywhere.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:39:28 CEST
The_Gibson {UTC -4}
At least since I've known of IRC.... which is since like 1993.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:47:13 CEST
The_Gibson {UTC -4}
All they have to do here is ask.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 18:52:58 CEST
The_Gibson {UTC -4}
Points!
-
peter hessler @openbsd (phessler@bsd.network)'s status on Monday, 08-Apr-2019 20:12:35 CEST
peter hessler @openbsd
@thegibson sigh. what's going on now?
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 20:44:43 CEST
The_Gibson {UTC -4}
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 20:46:02 CEST
The_Gibson {UTC -4}
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 20:50:23 CEST
The_Gibson {UTC -4}
Eugen is on it's board of founders.
Not that it is necessarily a problem... until he bakes it in.
-
peter hessler @openbsd (phessler@bsd.network)'s status on Monday, 08-Apr-2019 20:51:16 CEST
peter hessler @openbsd
@thegibson @gedvondur thanks, then I can click on "use cases" and look.
Don't forget to scroll, because there is a bunch of lazy loading bullshit.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 20:52:53 CEST
The_Gibson {UTC -4}
I am largely with you.
I have been saying for some time that this platform is essentially insecure.
It is trivial to gather information from it.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 20:56:22 CEST
The_Gibson {UTC -4}
The official word is that it won't be a code thing.
-
The Dude Abides (bill@bsd.network)'s status on Monday, 08-Apr-2019 21:19:13 CEST
The Dude Abides
@thegibson
I just read the project management report for Eunomia. They are targeting any platform open to activity pub. This includes diaspora, and media sharing sites. They are also targeting linkedin.So... they are attacking the protocol.
One solution would be to migrate to a more private protocol/platform. Zot6 is more privacy focused. There may be others.
https://zotlabs.com/That isn't the only solution, and I'm sure others have better examples.
The_Gibson {UTC -4} repeated this. -
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 23:12:43 CEST
The_Gibson {UTC -4}
@ajroach42 @sungo @lordbowlich @mwlucas
Still AP, right?
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Monday, 08-Apr-2019 23:13:07 CEST
The_Gibson {UTC -4}
That is an indicator.
-
Radical Edward (radicaledward@hackers.town)'s status on Monday, 08-Apr-2019 23:23:56 CEST
Radical Edward
@thegibson Brings to mind the walkaway net in the book Walkaway. The openess is a feature even though they know bad actors will take advantage of that.
The_Gibson {UTC -4} repeated this. -
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Tuesday, 09-Apr-2019 00:20:26 CEST
The_Gibson {UTC -4}
Eunomia.social expressly calls itself a social credit scoring system.
I don't know that it's just a survey.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Tuesday, 09-Apr-2019 00:26:47 CEST
The_Gibson {UTC -4}
Same.
-
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Tuesday, 09-Apr-2019 01:02:38 CEST
The_Gibson {UTC -4}
@dude @ajroach42 @sungo @lordbowlich @mwlucas
AP will still land you in their grasp...
-
dude (dude@take.iteasy.club)'s status on Tuesday, 09-Apr-2019 01:08:12 CEST 
dude
@thegibson indeed. Recall AP is a thing because of Eugen. He moved on there after he managed to break most of the OStatus network. This isn't meant to be a secure protocol. People trying to take it there (ie by introducing things like federated dm's don't understand the technology let alone opsec). The HUGE difference is the behaviour of the development team compared to Eugen's BDFL model. @ajroach42 @sungo @lordbowlich @mwlucas The_Gibson {UTC -4} repeated this. -
The_Gibson {UTC -4} (thegibson@hackers.town)'s status on Tuesday, 09-Apr-2019 01:35:14 CEST
The_Gibson {UTC -4}
OK.
So we don't sell it in the EU?
-
Cathal Garvey (cathal@octodon.social)'s status on Tuesday, 09-Apr-2019 01:38:42 CEST
Cathal Garvey
@TheGibson More than that. Unless you can certify that a member is not EU based, you may have to just ban all EU people. Because if you fuck up and infringe an EU person's GDPR rights you could start getting hit with those murderous fines.
And, some sites have done so: banned EU citizens. That's fine. Would Mastodon.social? I strongly doubt it could be done.
Also: how does federation interact with GDPR? Would they have to ignore incoming toots in case they were GDPR-covered? 🤷♂️The_Gibson {UTC -4} repeated this. -
bananachi :verified: (jeff@social.i2p.rocks)'s status on Tuesday, 09-Apr-2019 04:02:00 CEST
bananachi :verified:
@dude @thegibson yes YES omg this join the onion federation OMfG
-
All umeHack social content and data are available under the