Mastodawn

Are you an administrator running Mastodon?

⚠️ Upgrade to version 4.5! ⚠️

Older versions of Mastodon contain known security vulnerabilities. In addition, outdated instances may not properly display or communicate certain types of content (such as quotes) introduced in the latest version.

To ensure the security, compatibility, and convenience of your users, you should upgrade your Mastodon instance to version 4.5 as soon as possible.

#Mastodon #Fediverse #ActivityPub #Fedi #FediAmin #Administrator #Admin #MastoAdmin

Show thread

Michael Nov 6

@NetscapeNavigator > “Older versions of Mastodon contain known security vulnerabilities.“

That's just not true!

#MastoAdmin

Show thread

Netscape Navigator Nov 6

@michael

That's very true, and their own developer logs note this.

For example, they have been desperately trying to get people to stop using the old Mastodon 4.2 branch. You would be surprised — or even terrified — at how many sites I still see using v4.2.x.

https://github.com/mastodon/mastodon/releases/tag/v4.2.27

#MastoAdmin

Show thread

Michael Nov 6

@NetscapeNavigator Saying 'Older versions [than 4.5] contain known security vulnerabilities' and 'v4.2 contains known security vulnerabilities' are different things though.

Between 4.2 and 4.5 are 4.3.x and 4.4.x

I am not aware of known security vulnerabilities in either of those versions.

(admins should update faster, that's for sure. I despair seeing some instances still on 3.x. But implying that there are known security vulnerabilities in 4.4 and 4.3 is just spreading FUD.)

There are known security issues in versions 4.4.x and 4.3.x. Again, check the GitHub.

The latest 4.4.8 release, for example, fixed some security concerns — although not critical — still, security is security.

My advice is to follow their development more closely. And we agree that it would be better if more people kept their sites up to date

https://github.com/mastodon/mastodon/releases/tag/v4.4.8

#MastoAdmin