Moved: -> @[email protected]Apr 27, 2017

A word of warning to anyone upgrading to Mastodon 1.3(.1)!!!

Starting with 1.3(.1) Private posts will federate! But they don't do so securely! Warnings are built in but be aware that if you have followers on GNU Social, Friendica, or postActiv then they will **NOT** know that your post is marked private/followers-only!! And they **will** be able to boost it!! Once they do so, it becomes a public post

This is not opt-in, it just happens post-update

If this worries you, go audit your followers

Show threadz411Apr 27, 2017
@shel what do you mean by audit my followers? block everyone who's on gnu social?
Show threadMoved: -> @[email protected]Apr 27, 2017

@z411 I mean "look at who follows you and make sure that if they're on a non-mastodon instance you trust them not to boost posts you wouldn't want boosted even without knowing it's disabled on mastodon instances"

that's literally the Official Solution to the problem of post leakage. Like this isn't my solution it's what was deemed an acceptable solution to the problem of "boost-disabled posts can be boosted by GNU social users"

Show threadz411
@shel yeah, well i rarely post privately but i can see this causing friction with gnu social users, can this be standardized somehow?
Apr 27, 2017 at 10:57pmWeb
Show threadMoved: -> @[email protected]Apr 27, 2017

@z411 that would require cooperation between the different groups

which precedent has shown doesnt really happen...