Featured Articles

Trusted Boot (Anti-Evil-Maid, Heads, and PureBoot)
WordPress Profiling with XHProf (Debugging & Optimizing Speed)
Hardening Guide for phpList
Continuous Documentation: Hosting Read the Docs on GitHub Pages (2/2)
Nightmare on Lemmy Street (A Fediverse GDPR Horror Story)
Detecting (Malicious) Unicode in GitHub PRs
Crowdfunding on Crowd Supply (Review of my experience)
WordPress Multisite on the Darknet (Mercator .onion alias)
Introducing BusKill: A Kill Cord for your Laptop
previous arrow
next arrow

Nightmare on Lemmy Street (A Fediverse GDPR Horror Story)

By Michael Altfield, on March 4th, 2024
Nightmare on Lemmy "A Fediverse GDPR Horror Story"

This article will describe how lemmy instance admins can purge images from pict-rs (click here if you just want to know how).

This is (also) a horror story about accidentally uploading very sensitive data to Lemmy, and the (surprisingly) difficult task of deleting it.

Intro

tl;dr I (accidentally) uploaded a photo of my State-issued ID to Lemmy, and I couldn't delete it.

Friends don't let friends compose jerboa comments in bed before coffee (@theyshane)

A few weeks ago I woke up to my 06:00 AM alarm, snoozed my phone, rubbed my eyes, and started reading /c/worldnews (on Lemmy).

Still half-asleep, I was typing a comment when my thumb accidentally hit the "upload media" button. Up popped a gallery of images. I tried to click the back button, but I missed. I tapped on a photo. The photo that I tapped-on was a KYC selfie image (that I took the previous day for a service that has no business having such PII anyway).

That was all it took -- two consecutive mis-taps while half-asleep in bed, and my dumb-ass just inadvertently uploaded a KYC selfie onto the public internet. And thanks to archaic State authentication systems, anyone with
. . . → Read More: Nightmare on Lemmy Street (A Fediverse GDPR Horror Story)

Leave a comment  

Guide to Finding Lemmy Communities (Subreddits)

By Michael Altfield, on June 11th, 2023
How To Find Lemmy Communities

This article will show reddit refugees how to easily search-for and subscribe-to to popular lemmy subreddits communities across all lemmy instances.

tl;dr use the Lemmy Community Browser https://browse.feddit.de/ Intro

Lemmy is a federated reddit alternative that started in 2019. Thanks to funding from NLNet, Open Collective, Patreon, and Librapay, the project has two full-time developers.

Unlike Reddit, all of Lemmy's code is open-source under the AGPL.

Context

In 2008, Reddit launched an API that allowed third-party clients to use Reddit. This API has been free for 14 years.

In April 2023, Reddit announced that they would begin charging for use of their API, starting just 3-months later. This made headlines when one developer calculated that reddit's proposed fee structure would cost them $20 million per year. As a result, most popular reddit apps including Apollo, RIF, ReddPlanet, and Sync are all shutting down in July.

In protest, hundreds thousands of subreddits are participating in a reddit blackout on June 12th.

At the time of writing, all the apps still work and protest hasn't even started yet, but already thousands of reddit refugees have flocked to lemmy -- at a rate of about 2,000 new users per day. And because
. . . → Read More: Guide to Finding Lemmy Communities (Subreddits)

6 comments