cornyoverflows
Jerry π¦ππ¦Ok. The roster so far is:
- Infosec.exchange (mastodon)
- pixel.Infosec.exchange (pixelfed)
- video.Infosec.exchange (peertube)
- relay.Infosec.exchange (activitypub relay)
- risky.af (alt mastodon)
Whatβs next? I think I promised some people here bookwyrm
Sigh. I forgot one. The REAL roster so far is:
- https://Infosec.exchange (mastodon)
- https://pixel.Infosec.exchange (pixelfed)
- https://video.Infosec.exchange (peertube)
- https://relay.Infosec.exchange (activitypub relay)
- https://risky.af (alt mastodon)
- https://Infosec.press (writefreely blog)
leE Brotherston@jerry had no idea you were running all these!
You'll need to run some sort of opensource service catalogue, as a service, to be able to keep track :)
Sindarina, Edge Case Detective@jerry Now that your users have a place to craft dangerously long walls of text, will you be reducing the post size on the main Mastodon instance to more, let's say, manageable sizes? π
Bobby Brown@jerry Do you have any plans for SSO? We used Keycloak for Mastodon / PeerTube / Matrix and it certainly unfolds a new world of complications
@bobbyd0g I started using mastodonβs oauth provider - Infosec.press uses it. I expect to move peertube and pixelfed to it as well. Itβs not ideal, but the ideal case would have been to use keycloak from the start.
I am considering another set of instances that start from the ground up using keycloak, though.
@jerry You may find them terribly rudimentary, but you're welcome to use our configs, and I've been looking for experienced admins to discuss the challenges it presents for these apps. I think it could ultimately render something that better empowers users, but until then it clearly gives administrators more power to root users to the instance. I'm on Matrix at @bobbyd0g:hellsite.net . Don't mind the senseless utulalia in the readme -- https://github.com/bobbyd0g/commlab
Mike@mikemacleod @bobbyd0g I believe you would be directed to keycloak to create an ID, which would then allow you to login to Mastodon
@jerry @mikemacleod Keycloak has basic signup and login flows built-in, they are about as slapped-together as could possibly be on Hellsite.net and it works. New users sign up for Keycloak, and as soon as they visit each app with that auth, it creates an account with the same username. And so, obviously, begin the complications! :) Migration and integration should be greatly assisted by Keycloak's mapping config & SAML/LDAP support
Functional Security
[nate@social0 ~]$ 
@jerry totally giving peertube a try. Ive been curious but haven't taken the time to set it up on my own. Owncast has been fun though.
@gangrif how do you like owncloud? I've had people asking for that next...
Joseph Hanson@jerry https://video.infosec.exchange/w/8GXw37bQqKxDyDYDnTVwtU keeps making me laugh π did you iron out the mobile/cdn issue?
CISO is briefed on Red Team engagement
@jahanson I did - bunny.net had an odd issue with their CORS header interface
Dennis Faucher 
@jerry Such great work. Thank you. Do you know if WriteFreely has a comments option?
@dennisfaucher it does not. Some discussion in this thread: https://infosec.exchange/@jerry/109699928448928272
Jerry Bell :verified_paw: :donor: (@[email protected])
@[email protected] 1. Federation is one way - comments made to the post donβt show up in the blog 2. The UI has very limited options for customization 3. The βdiscoverabilityβ doesnβt appear to be very good (from a search engine perspective) - though I donβt have enough data yet to declare this a major issue
@jerry Thanks
Fennix @jerry A suggestion: Maybe cross-link everything in this network in the About section on the various platforms? I had to come hunt for this post to figure out where the other services went. :)
JamesN π³οΈβπ@jerry is there a federated Only Fans clone?
If so, not that. Anything but that.
@jerry Iβm kidding obviously. Keyboard ASMR videos produced by infosec.exchange members could be a huge and untapped revenue stream.
Aeon@jerry
awesome work π
awesome work π
Visne 
@jerry Is the relay up already?
Colin Mahns@jerry
forgejo when they get their federation going. yes git is already effectively federated just double up on it!
forgejo when they get their federation going. yes git is already effectively federated just double up on it!
Ptisan@jerry I would be possibly interested in some owncast, either for myself or watching others. Hackers aren't allowed on Twitch or YouTube? Fine! We'll build our own Twitch and YouTube!
@Ptisan you can stream using peertube - does owncast have better features?
@jerry my understanding is that owncast is more built to accommodate the social aspects of streaming with chat integration and such. I'm not familiar with peertube and honestly, only slightly familiar with owncast (having watched a few streams). It seems like peertube focuses more on static content while owncast puts streaming first much like YouTube vs. Twitch. Β―\_(γ)_/Β―
@Ptisan got it. If thereβs interest, Iβll create one.
mask-wearing, socially distant entity@jerry Ooooooooohβ¦. Bookwyrm, you say? Yes, please, and thank you!
Phillip Hallam-Baker@jerry If you want to go ultra-experimental, could set up a Mesh Service Provider node, should be ready for that in a few months.
The Mesh is a PKI that does everything the PKIs we did in the 90s did but isn't a pig to use. In fact, it is damn near invisible if integrated into apps. The big mistake in PKIX/X.509 was we didn't manage the private keys for the user.
The near term goal is to get synchronous text/voice/video communications up so this can plug the 'direct message encryption' hole in Mastodon. But the Mesh can manage any sort of credential across all a user's devices. It includes a password manager that doesn't depend on passwords at all.
Robert George π³ππΉππ₯ππ@jerry Iβm almost done hacking in mastodon authentication on my bookwyrm server.
Robert@jerry I actually was not aware of the extensibility here--thank you for sharing your tinkering with us!
Simon ZerafaIRC channel for real time chat?
Then a Usenet newsgroup! ππ€·ββοΈ
Camilo Bravo 
@jerry what about a blogging platform? (I think there's one called "write freely" or something like that)
@cambraca I forgot to add that to the list
sBani@jerry Do you approve a relay subscriber instance manually? My instance is in status "waiting for approval" although all other instances approved me automatically. It's just new to me.
btw: Thank you for doing all this. I really hope this pays off for you because I know it's a lot of work
@sbani I do approve them manually - I take a look at what instances are about before approving - I am not concerned about particular topics, but I donβt want hate instances/troll farms/etc subscribing - and several have tried.
@jerry Absolutely! I would do the same. Thank you for clarification
Maybe it also makes sense to have a landing page (like this https://relay.beckmeyer.us/) that gives a node owner a little more details? Nothing fancy, just a little text that says "manual approval needed".
Seems like other relay admins use the same software for that.
Claudius Link
0x726f63636f@jerry any advice on apps to explore pixelfed / peertube on android?
By the way, thanks for the amazing work.
@roccobarbi for peertube, there are a few listed here: https://docs.joinpeertube.org/use-third-party-application
I'm not aware of any apps for pixelfed. For mastodon, peertube, and pixelfed, I access them using the mobile browser, though I'm using iOS