A word of warning to anyone upgrading to Mastodon 1.3(.1)!!!
Starting with 1.3(.1) Private posts will federate! But they don't do so securely! Warnings are built in but be aware that if you have followers on GNU Social, Friendica, or postActiv then they will **NOT** know that your post is marked private/followers-only!! And they **will** be able to boost it!! Once they do so, it becomes a public post
This is not opt-in, it just happens post-update
If this worries you, go audit your followers
@lambadalambda OK but like the worst thing is like
remember how in my write-up Solution A, proposed by Hoodie, was to make it OPT IN and you have to read a warning explaining it first??? And we agreed this worked under that circumstance??
And like rather than any of those options we get like, weird A-1 which removes the main component that would make Solution A acceptable
@lambadalambda the moment your instance upgrades to 1.3 or higher it Just Happens and nothing tells you that it's different
and to a new user who isn't here in This Moment then they'll have no idea until they get rly confused by their followers-only post getting boosted when it's not supposed to be
@z411 I mean "look at who follows you and make sure that if they're on a non-mastodon instance you trust them not to boost posts you wouldn't want boosted even without knowing it's disabled on mastodon instances"
that's literally the Official Solution to the problem of post leakage. Like this isn't my solution it's what was deemed an acceptable solution to the problem of "boost-disabled posts can be boosted by GNU social users"
ur_faec
Moved: -> @
Oracle(tm) e-Business Social 🎃
Maiyannah Bishop
Constance Variable
z411