lunaria22
Mastodon⚠️ We are planning to release important security fixes for #Mastodon on July 6th, between 13:00 and 15:00 UTC. They will be available for the 4.1, 4.0 and 3.5 versions as well as a nightly release, to make the upgrade as small and painless for everyone as possible. Be ready to upgrade!
Fábio Rodrigues Ribeiro
Christian 
Patrick 
@christian @Mastodon gestern noch drüber gesprochen 😉
halfa
Paweł Klebba
Juffo-Wup@Mastodon
Adding a Rate Limit feature? 😂
Adding a Rate Limit feature? 😂
H. Mantegazzi
Macer
Mikhail PaulyshkaIn case I'm running the server from the main branch, did I already get the fix or do I still need to update on July 6th?
val@mixaill You'll need to update then
Σ🌊🌊🌊@Mastodon Prepared for more Twitter migration
ɑᴢıᴍ@Mastodon i got 503 error when i publish my post
but it sent it
but it sent it
Nie 🏳️🌈 
@Mastodon Is it available to change this? It will improve comfort of using mastodon
Aranjedeath@Nie_6969 @Mastodon part of the problem is here, you can subscribe to this bug for updates: https://github.com/mastodon/mastodon/issues/34
Benjamin@Aranjedeath @Nie_6969 @Mastodon That may be a different issue. When following a user who hasn’t been seen by the server before you’ll typically only see their posts from that point onward, their profile won’t show the posts from before you followed them (the server discovered them).
Whereas that message refers to a user who has migrated and since posts currently cannot be migrated (natively) and so they direct you to the original profile/server to see those posts.
@BenjaminNelan thank you for differentiating, I did know that when I posted (contained within the phrase "part of the problem"). Once you have the software and operational infrastructure to backfill posts... It is not hard to add additional situations where you do so.
@Aranjedeath I agree that it could be done this way and I would prefer it than the current system.
Though may affect how those backfilled posts could be interacted/distributed. Backfill = cache linking to existing ActivityPub objects. In the case of a migrated account where the remote server no longer exists you effectively have zombie posts.
@Aranjedeath Having said that - I just did an experiment with my self-hosted server where I cached old posts from my old account then edited the database to change the owner to the migrated user's new account and... it works just fine...
No idea if there's side effects of doing this, about to try it on a post that has replies. I definitely thought there was more going on under the hood though.
j.r / Julian
Erik Uden => You can fetch the follower count, you can fetch the people who participated in polls, but you can’t fetch likes & boost statistics as well as posts made in the past on another server?
Excuses! It’s easily possible. Even on a client basis.
Paul Chambers🚧I use @michael's #FediFetcher to do this. You can run it as a GitHub action, server, or desktop computer. Basically, set it up and forget about it. It chugs along backfilling new follows/followers, replies to posts, and more.
GitHub - nanos/FediFetcher: FediFetcher is a tool for Mastodon that automatically fetches missing replies and posts from other fediverse instances, and adds them to your own Mastodon instance.
FediFetcher is a tool for Mastodon that automatically fetches missing replies and posts from other fediverse instances, and adds them to your own Mastodon instance. - nanos/FediFetcher
MichaelI will absolutely implement this on #MastodonDE! Wow! Thank you so much.
Bucker Fuskyote@Mastodon Will it include a fix for blocked and muted accounts showing up in Home and Search?
Daniel Kuhl@Mastodon Please no rate limit! 🙏🏻😅
Krev - The Littlest Sogchamp
kepler@krev Yee I'm aware :3 I got my thumb on that Masto pulse!
osfanbuff63
Apicultor 🐝@Mastodon Why a two-hour release window? Drop it at a fixed time!
Purple 
@apicultor @Mastodon It's crazy how bad this is being handled honestly
1. We have no indication of the severity
2. There is a two hour window where we're supposed to keep refreshing to see if the patch for what all we know is a 10.0 CVE score security issue
🇺🇦Will🏴Fella@Mastodon any chance of a spaces style addition ?
Sérgio Glórias
Flit 🦊 🔥
Evv1L 
TopKnot@Mastodon
Realize I am really ignorant of this stuff ... as a person on a Windows computer using Mastodon in a browser, do I need to do anything?
Can I also assume my android app will also auto-update like all other apps on my phone?
Did I mention that I'm ignorant on all aspect of this issue?
Sérgio Machado
Sander
Emil Jacobs - Collectifission
PorkrollPosadist
Dylan 
@TopKnot I’m pretty sure this update is just for server admins, you’re in the clear!
njamster 
@TopKnot No, you don't need to do anything! Mastodon is the software that's running on the server which is hosting your instance. So the android app is not affected by this at all (but yes, would auto-update like any other app if there was an update for it). Depending on what this update actually changes and if applying it requires restarting the instance, as a user you may not even notice this update at all.
@TopKnot @Mastodon no, this is an announcement for instance administrators, they are the ones that need to update.
For us regular users this means that probably some hours after this our instance might have a bit of downtime while it is being updated, which will depend on your local administrator's time availability (keep in mind that most admins are volunteers with their own jobs and such, so the time can be away from office hours)
Ethan Black
rian maly
Digitalcourage-Admins
Bumble@Mastodon Might be worth editing this post to say it's a server update, and users need not do anything/panic!
@Mastodon with this new release , will support Debian Bookworm?
Meaning: nodejs 18 and libidn12 icu72?
Is Ruby 3.2.2 also full supported ?
Meaning: nodejs 18 and libidn12 icu72?
Is Ruby 3.2.2 also full supported ?
Arun Shah™@Mastodon waiting for quote post & direct message feature
@arunshah240 @Mastodon direct message does exist as a privacy option for each message, alongside public, unlisted and followers-only.
Quote-posting isn't in plans for Mastodon, but exists in other compatible options, like Calckey, which some instances use.
You can already direct message people on Mastodon!
But I agree, it needs an WebRTC-esque chat that’s compatible with Pleroma, Akkoma, and all the other Fedi platforms that have already implemented it.
hermit
Darius Kazemi