Jerry πŸ¦™πŸ’πŸ¦™Nov 20, 2022

I love all of you and I want nothing but the best for each of you, particularly those on infosec.exchange. I understand that Mastodon isn't Twitter, that DMs aren’t end-to-end encrypted, that we are spread across different instances and it can be hard to find your friends, and that an instance can go away at any time, and that translating posts doesn't work correctly, and there is no native giphy support, and that some instances are overwhelmed and super slow, and that you don't think the federated model can scale to a billion users, or that it doesn't support full text search of every post and account, or that we can't comply with the GDPR, or that we don't support quote tweet style functionality, or that we shouldn't collect IP addresses, and many other things.

The fediverse is a work in progress. I've been here for going on 6 years. In that time, it's come a long, long way. That said, Mastodon is not going to appeal to everyone. The decisions I make are not going to appeal to everyone. No one is forcing you to be here. No one is forcing you to disclose your personal secrets into a network of federated servers running by volunteers and hobbyists. NB: this is not Twitter. It has some similar functionality, but it is not Twitter. Parts of it are better, IMO, and parts are not. The security community is generally among the most skilled and competent IT people the world has to offer. Mastodon is open source. Do you see where I'm going?

I set this instance up a long time ago for reasons I don't even remember. I have poured my soul into this thing because I believe in the importance of this community. I have effectively peaked in my career as a CISO and I and my family live well. I am not running this instance for fame, money, a better job, or anything other than wanting to foster a community of people that can learn from each other and make the world a better place. That's it.

As I've said in several recent interviews, I felt particularly obligated to ensure the security community had a good landing spot in the fediverse as everyone was running for the doors in Twitter. We've grown from 180 active users to about 30000 in the span of 3 weeks. I do not expect everyone to stay. Some will set up their own instances. Some will move to one of the other excellent security focused instances. Some will give up and move to on to some other social media. And that is OK. While I am super excited to see the buzz here, I don't have subscriber targets, engagement targets, retention targets, or anything else. The only metric I hold myself to is whether I think this is serving a useful purpose to the community.

I appreciate all of you, regardless of where you land. Infosec.exchange has been here for a long time and will continue to be here for you.

Show threadbbennettesq Nov 20, 2022

@jerry this is outstanding and I hope you don't take my occasional musings about features (like e2ee) or chatter with folks about the legal issues of the fediverse as a personal critique at all. This reminds me of old school IRC days with all the tight communities and chaos and forum moderator meltdowns of the early 00s come again.

It's like we've hit the reset button on the internet and rolled back a decade plus of updates. For those of us who've been questioning the direction of an increasingly centralized and corporate internet with a few giants retaining so much power, for those of us nostalgic for the internet we grew up with when the toxicity had so much less reach, this is like a breath of fresh air.

There's a chance here, in some ways, to reset internet culture or at least to opt out of the toxicity of the current iteration for something smaller but healthier. A grand social and technical experiment seems to be unfolding and I'm glad to be here for it. Thanks for putting up w me.

Show threadJerry πŸ¦™πŸ’πŸ¦™
@bbennettesq It wasn't directed at any particular person. I've just read SO MANY criticisms, and "why don't you make it do $X?" and so on. I feel like I need to levelset expectations. (nearly) all of the points people raise are valid, at least to some extent.
Nov 20, 2022 at 7:53pmWeb
Show threadbbennettesq Nov 20, 2022
@jerry I'm not so arrogant as to think your post was directed at me. It was just to assure that MY posts weren't criticisms of you! I've been around tech long enough to understand a little of the chaos descending on the fediverse and the hosts!
Show threadJerry πŸ¦™πŸ’πŸ¦™Nov 20, 2022
@bbennettesq my apologies - I appreciate the feedback and I want to find a way to channel the energy everyone has to making things better. I do appreciate your views - there are some damn sharp people here, you included, and I'm trying to keep up :)
Show threadbbennettesq Nov 20, 2022

@jerry no apologies! Can you dig up the donate post periodically so I remember to donate to you? Or pin it in an faq somewhere? Is that a thing? πŸ˜‚

It came and went and is lost to the fediverse until I learn how to find things better on here.

Show threadJerry πŸ¦™πŸ’πŸ¦™Nov 20, 2022
@bbennettesq you bet - it's in my profile, and also on the infosec.exchange/about page
Show threadbbennettesq Nov 20, 2022
@jerry thanks!