# Twtxt is an open, distributed microblogging platform that # uses human-readable text files, common transport protocols, # and free software. # # Learn more about twtxt at https://github.com/buckket/twtxt # # This is hosted by a Yarn.social pod twtxt.net running yarnd 0.14.0@1ccc07b0 # Learn more about Yarn.social at https://yarn.social # # nick = mckinley # url = https://twtxt.net/user/mckinley/twtxt.txt # avatar = https://twtxt.net/user/mckinley/avatar # description = A guy on the internet. https://mckinley.cc/ # # followers = 35 # following = 47 # # # follow = Dilbert https://feeds.twtxt.net/Dilbert/twtxt.txt # follow = adi https://f.adi.onl/user/adi/twtxt.txt # follow = adi@twtxt.net https://twtxt.net/user/adi/twtxt.txt # follow = alexp https://twtxt.net/user/alexp/twtxt.txt # follow = anth http://a.9srv.net/tw.txt # follow = anx https://twtxt.anxsnest.eu # follow = apptester https://twtxt.net/user/apptester/twtxt.txt # follow = arisu https://twtxt.net/user/arisu/twtxt.txt # follow = codebalion http://twtxt.prismdragon.net/twtxt.txt # follow = darch https://twtxt.net/user/darch/twtxt.txt # follow = darch@neotxt.dk https://neotxt.dk/user/darch/twtxt.txt # follow = david https://netbros.com/user/david/twtxt.txt # follow = eldersnake https://yarn.andrewjvpowell.com/user/eldersnake/twtxt.txt # follow = fastidious https://arrakis.netbros.com/user/fastidious/twtxt.txt # follow = gareppa https://twtxt.net/user/gareppa/twtxt.txt # follow = hecanjog https://hecanjog.com/twtxt.txt # follow = home_datacenter https://twtxt.net/user/home_datacenter/twtxt.txt # follow = jcrawford https://twtxt.net/user/jcrawford/twtxt.txt # follow = jlj https://twt.nfld.uk/user/jlj/twtxt.txt # follow = jsreed5 gemini://jsreed5.org/feeds/twtxt.txt # follow = kt84 https://twtxt.net/user/kt84/twtxt.txt # follow = laz https://tt.vltra.plus/user/laz/twtxt.txt # follow = lazarus https://twtxt.net/user/lazarus/twtxt.txt # follow = lohn https://tw.lohn.in/user/lohn/twtxt.txt # follow = luqaska https://lucas.tild3.org/twtxt.txt # follow = lyse https://lyse.isobeef.org/twtxt.txt # follow = marado https://twtxt.net/user/marado/twtxt.txt # follow = mckinley https://twtxt.net/user/mckinley/twtxt.txt # follow = mckinley@mckinley.cc https://mckinley.cc/twtxt.txt # follow = mearaj https://twtxt.net/user/mearaj/twtxt.txt # follow = monero-observer https://feeds.twtxt.net/monero-observer/twtxt.txt # follow = movq https://www.uninformativ.de/twtxt.txt # follow = mutefall https://twtxt.net/user/mutefall/twtxt.txt # follow = news https://twtxt.net/user/news/twtxt.txt # follow = ocdtrekkie https://twtxt.net/user/ocdtrekkie/twtxt.txt # follow = prologic https://twtxt.net/user/prologic/twtxt.txt # follow = quark https://ferengi.one/twtxt.txt # follow = saltyim https://twtxt.net/user/saltyim/twtxt.txt # follow = sdk https://codevoid.de/tw.txt # follow = slashdot https://feeds.twtxt.net/slashdot/twtxt.txt # follow = stutteringsteve https://twtxt.net/user/stutteringsteve/twtxt.txt # follow = tkanos https://twtxt.net/user/tkanos/twtxt.txt # follow = ullarah https://txt.quisquiliae.com/user/ullarah/twtxt.txt # follow = will https://twtxt.net/user/will/twtxt.txt # follow = xandkar https://xandkar.net/twtxt.txt # follow = xjix https://xj-ix.luxe/.well-known/twtxt/xjix.txt # follow = xkcd https://feeds.twtxt.net/xkcd/twtxt.txt # 2021-03-05T03:36:56Z Hello, @ here. I hope it isn't confusing for me to maintain two feeds. I made this feed to more easily interact with the twt.social community, leaving the one on my website as a regular microblog. 2021-03-05T03:47:30Z (#) @ Thank you. I rarely use my phone for things other than calls or text messages, but I'll give the app a try if I need to post from my phone. 2021-03-05T03:51:42Z (#) @ Thanks for clarifying. Either way, it's a very reasonable privacy policy. I was just wondering about the details. If you don't store the email addresses, is it just a hash that's stored? Check against it for recovery, send an email if it passes? 2021-03-05T04:05:42Z (#) @ I really like that. Email can't be known until it's needed. 2021-03-05T05:57:37Z (#) Mkws is great the way it is, and `pp` is genius. The only reason why I don't use it for my own site is because I can't figure out how to escape the required characters in an elegant way before files are sent to `pp`. The best parts of mkws are the simplicity and the ability to tweak the script for your use case. Putting everything in one binary or adding a bunch of extra features like a web server would add unnecessary complication. 2021-03-05T06:20:02Z (#) @ Double quotes and ampersands with a backslash for `sh`, probably other characters it uses to do special functions as well. I just can't get used to omitting quotes or using single quotes in HTML tags. 2021-03-05T06:40:41Z (#) @ I believe so, and I can't for the life of me remember what problem I ran into. 2021-03-05T06:54:16Z (#) @ Thank you, I appreciate it. If I remember correctly, the `printf` program can escape a string for shell input, but I had difficulty making it work elegantly with the contents of a multi-line file. 2021-03-05T21:49:17Z (#) @ I'm trying it again with a clear head, and I'm making a little headway. 2021-03-07T08:23:02Z (#) @ Void and OpenBSD are pretty hardcore, as operating systems go. I'm surprised you can tolerate Windows. 2021-03-07T08:34:33Z (#) @ Ah, I see. 2021-03-08T19:47:21Z (#) The suspense is killing me, was it successful? 2021-03-08T22:48:43Z @ (#) Yeah, I don't know what to set it to. I don't know if I should go with the synthwave bagel I usually use, or something else. 2021-03-09T03:22:13Z ![](https://twtxt.net/media/sYao8Cbvt7TeYEL5bURhXn) 2021-03-09T18:13:49Z (#) @ It's HN, but made to look like lobste.rs. It's not a slightly off mock-up made in GIMP, I spent much more time than I care to admit writing very messy, very hacky CSS. 2021-03-09T18:45:03Z (#) @ (#) Very minimal progress has been made since my last twt about it. After working for hours and making glacial progress, I couldn't get titles to work, got frustrated, and left to go do something else. Haven't worked on it since that day. Now that I think of it, I couldn't take advantage of `pp` in the content of documents anyway because I'm escaping everything. 2021-03-09T18:52:58Z (#) @ No, I like its normal styling a lot. I just did this for fun, and thought you gentlemen might enjoy it. Maybe I'll make Lobsters look like HN at some point. That would probably be a lot easier, I won't have to work in the confines of tables. 2021-03-09T19:05:45Z (#) @ Great job, and I like the look of the sidebar. It makes the whole thing look delightfully retro, and doesn't cost that much space on the side. I agree that it shouldn't be fixed while scrolling, though. 2021-03-09T19:09:13Z (#) @ If all the documents were in the root directory and I could get used to not using quotes, mkws would most certainly be my pick. 2021-03-09T19:32:13Z (#) @ If I have some time today, I can recreate your mock-ups in HTML and CSS. It always helps to scroll through it in the browser, see what it would really look like. 2021-03-09T19:37:45Z (#) @ Huh, I tried going back to stock mkws while I was working on my own script, and it wouldn't generate pages in other directories. I didn't really poke through it and figure out why. Do you have to add the new directories manually in the script? 2021-03-09T19:53:51Z (#) @ As for `sed`ing files, that's what I'm already doing. At the moment, I just can't benefit from `pp` inside my content documents because I'm escaping everything. I agree it's not impossible, I'm sure I could make `sed` skip sections for `pp`, but the end result would be even more of a complicated mess of a shell script than the one I have now. I really don't want to deal with something like that when it's not that much of a chore, in the grand scheme of things, to maintain it manually. 2021-03-09T20:04:00Z (#) @ I really appreciate your help but as I said in my blog post, I just need to make my own generator in a real programming language if I want it to be exactly right for my website. 
> Depends on what you understand by "mess" and "complicated"
It's 55 lines long and I'm having trouble understanding it as I read through it, less than a week after it was written. 2021-03-09T20:05:11Z (#) @ @ Please excuse me, I don't know how formatting works on this thing. Second line of the quote is supposed to be my response. 2021-03-09T20:15:22Z (#) @ I'm sorry, I hope you didn't take offense to my reply. It wasn't a great choice of words. I didn't mean to imply anything, I just wanted to offer some help. 2021-03-09T20:17:49Z (#) @ Thanks. Blank line under the quote, noted. 2021-03-10T21:35:25Z (#) @ Big fire, wiped out one datacenter, damaged another. https://www.ovh.ie/news/press/cpl1786.fire-our-strasbourg-site https://nitter.42l.fr/OVHcloud_UK 2021-03-11T00:03:33Z (#) @ @ I'm really tired of Amazon's shenanigans surrounding books. All we can hope for is that enough frogs in the hot water reach the same conclusion. 2021-03-11T00:12:40Z (#) @ If I read your meaning correctly, I'll have to say no. A web of trust is much more concrete, based on a single standard that changes, if at all, very mildly. 'Proof of Woke' is a standard that frequently makes wild shifts, which is why high-profile nodes are dropped from the swarm so frequently. 2021-03-12T00:28:31Z (#) If they don't plan on doing a bunch of invasive garbage to stop people from doing what they want with the computer part they own, then the whole thing looks like a tremendous blunder. The only problem is, while Nvidia's executives do have a certain deficiency of IQ points, I doubt this is the end. They will start adding invasive garbage, and we can expect the experience of GNU/Linux users with Nvidia cards to diminish even further as a result. I predict we'll be seeing mod chips for graphics cards within two generations if they keep this up. 2021-03-12T04:07:29Z (#) @ It's been a while. 2021-03-12T04:12:34Z (#) @ ![Linus Torvalds flipping off Nvidia](https://twtxt.net/media/k3far2he96YyiM96P5uqVm)

This was almost nine years ago 2021-03-12T04:14:05Z (#) @ No gif support, noted. 2021-03-12T05:51:16Z (#) @ Ah, no worries man. 2021-03-12T19:43:23Z @ (#) Hey, looking good! 2021-03-12T20:07:23Z (#) @ I couldn't get around to it, I'm sorry. 2021-03-13T08:43:00Z (#) @ Yes, that's an excellent way of putting it. :) 2021-03-17T04:28:48Z (#) @ Oh man, you're one of the 10,000. You should check out http://bettermotherfuckingwebsite.com/ and https://bestmotherfucking.website/ There's also https://thebestmotherfucking.website/, but I personally disagree with that one. 2021-03-17T07:32:35Z (#) @
![XKCD: Ten Thousand](https://imgs.xkcd.com/comics/ten_thousand.png)
Admittedly, those websites aren't something *everyone* knows, but I am surprised you haven't seen them yet. 2021-03-18T17:00:43Z (#) @ I'm excited to see it, man. 2021-03-18T17:05:25Z (#) @
> But still, that gorgeous lock

https://www.motherfuckingwebsite.com/ has one too 2021-03-19T05:34:57Z (#) Could it be your browser's autofill? On my settings page, the 'change email' box has no content. 2021-03-20T05:28:59Z (#) Behold, the smart watch of champions:
![Casio CA53W](https://twtxt.net/media/tMNNZxFSZQf8jh2KkwbqwT) 2021-03-21T09:11:48Z (#) @ @ iPod classics hold up as great portable music players nowadays. You can run a [free OS](https://www.rockbox.org/) on them, and storage can go up to 2TB if you have the right model iPod, 4 512GB MicroSD cards, and an [iFlash Quad](https://www.iflash.xyz/store/iflash-quad/). I use a 5th gen iPod running Rockbox every day. 2021-03-21T23:10:13Z (#) @ For most iPods, a Rockbox install is just a couple of clicks on their installer program. It doesn't actually wipe the stock OS, though. You can still boot into iPod OS by turning on the hold switch when booting. iPods were much, much more open back then. 2021-03-31T02:00:42Z Hey @, I think feeds are being removed from my following list. I've certainly followed more than seven people, because I click "follow" on almost everyone involved in conversations here. Users I am very sure that I have followed here include @ and my main feed on mckinley.cc which I just followed for the third time. I am fairly sure I've followed @ and @ as well. 2021-03-31T02:57:36Z (#) I followed several feeds about a half an hour ago, and they all appeared in my following list as they should. I've had to re-follow my feed on mckinley.cc at least one time in the past, but I haven't consciously noticed other users missing before today. 2021-03-31T06:15:55Z (#) No need to apologize, I was just curious. Thank you very much for looking into it. I know you're a busy guy. 2021-04-06T07:29:35Z (#<2lpzvhq https://twtxt.net/search?tag=2lpzvhq>) @ @ As far as I can tell it's like buying art, but with a blockchain, non-free JavaScript, lower quality art, and you don't really get to own it. 2021-04-06T21:46:28Z (#<2lpzvhq https://twtxt.net/search?tag=2lpzvhq>) @ You are definitely not the only one. Here's someone who "sold" a [git commit](https://nitter.42l.fr/tjholowaychuk/status/1377163602776367104) for $127, because that isn't completely ridiculous. 2021-04-09T02:40:19Z (#<7rhdpna https://twtxt.net/search?tag=7rhdpna>) @lobste_rs @ @ I definitely need to give this a try. I've always found tmux a little clunky. Have you gentlemen seen [twin](https://github.com/cosmos72/twin)? 2021-04-09T10:29:50Z (#<7rhdpna https://twtxt.net/search?tag=7rhdpna>) @ @ @lobste_rs Here's a screenshot, not mine though. ![Screenshot of twin](https://twtxt.net/media/c76KEzrjNXnEFKrZkCMYV5)
[Non-compressed picture](https://i.imgur.com/DEdxNlD.png) 2021-04-12T03:18:57Z (#) I've identified a flaw in the public follow notification system... 2021-04-12T03:52:42Z @ (#) Actually, I think the flaw is with the entire follow system. I wonder if a simple curl command could make another user on the pod appear to follow me. 2021-04-12T03:55:00Z @ (#) This one was a slightly different request, I didn't think the first one worked but it did. I promise to stop screwing with your website now @ 2021-04-13T20:47:30Z @ (#<7kbwzra https://twtxt.net/search?tag=7kbwzra>) Wow, $26,000 isn't as high as I thought a setup like that might cost. Of course, you have the skills to do almost everything yourself. That must have saved thousands. 2021-04-13T20:53:20Z (#<2eing7q https://twtxt.net/search?tag=2eing7q>) @ @ @ RMS would definitely take issue to that, here's the GNU Project's take: https://www.gnu.org/philosophy/open-source-misses-the-point.html 2021-04-14T01:14:02Z (#<2eing7q https://twtxt.net/search?tag=2eing7q>) @ Conflating "open source" and "free software", as @ said. I'm sorry, I wasn't clear. 2021-04-14T03:39:32Z (#) @ @ The regex for user agents is too permissive, I opened a [GitHub issue](https://github.com/jointwt/twtxt/issues/416) 2021-04-17T00:11:13Z @ (#) What useless domains do you guys on twtxt.net have? 2021-04-17T08:24:00Z (#) @ Most of them, huh? 2021-04-22T00:55:38Z (#<7625tqq https://twtxt.net/search?tag=7625tqq>) @ @ @ Session is definitely not well polished. People I know have had issues with messages syncing between devices. Plus, the only client I've been able to find is the official Electron one. I would probably be using Signal if it didn't require the use of a tracking device (smartphone) or a phone number. 2021-04-22T18:05:26Z Hey, welcome to twtxt.net @ and @! 2021-04-23T07:27:01Z (#) Well, I know John Deere is anti right to repair. Take the same people, add in nonfree JavaScript, unnecessary accounts on a web service because you own a tractor or something, and assorted forms of tracking and you get this.
Seriously, though, I really don't know how username enumeration like this leads to locations of users. 2021-04-24T03:10:09Z (#<7625tqq https://twtxt.net/search?tag=7625tqq>) @ @ @xuu Personally, I don't trust smartphones not to give information to companies interested in that sort of thing. Most code they run is proprietary, so it's difficult to know. Monitoring network traffic only goes so far. Better to avoid the suspicious proprietary software altogether if you can, in my opinion. 2021-04-25T23:19:27Z (#) For life? That's a shame. I hope the maintainers reconsider that in a year or two. To my knowledge, @umn.edu email addresses didn't make up the majority of known malicious patches. 2021-04-26T01:11:53Z (#) @ I agree it was unethical, but I don't think an entire university should be permanently banned from submitting patches because of the actions of a few people. If banning the whole school for a while is the only thing that would make them knock it off, then so be it. I just don't think it should be permanent. 2021-04-26T02:03:00Z (#) @ Definitely not the way to go. This kind of research could have been extremely useful for the Linux maintainers and the free software community as a whole, so long as the researchers got approval from some kind of lead maintainer to do this. 2021-04-27T00:59:07Z (#<7625tqq https://twtxt.net/search?tag=7625tqq>) @ @ @ I've also heard good things about Threema, but it's paid and, like Signal, requires the installation of the smartphone app (AGPL) to use. Unlike Signal, to my knowledge, you need access to and an internet connection on that phone when using their web client. 2021-04-27T01:06:04Z @ (#<4kjvlfa https://twtxt.net/search?tag=4kjvlfa>) Hey @, it looks like dollar signs are messing with a parser somewhere. Do you know what might cause this? 2021-04-27T07:57:24Z (#<4kjvlfa https://twtxt.net/search?tag=4kjvlfa>) @ The post I replied to is supposed to have dollar signs instead of what look to be escaped parentheses there. What's really weird is that the parentheses open and close as if they are surrounding something.
$test to see if surrounding text with dollar signs here does the same thing$ 2021-04-27T07:58:52Z (#<4kjvlfa https://twtxt.net/search?tag=4kjvlfa>) @ @ Yeah, it did it. Look at my [plain text feed](https://twtxt.net/user/mckinley/twtxt.txt), the dollar signs are replaced with escaped parentheses. 2021-04-27T16:17:17Z (#<4kjvlfa https://twtxt.net/search?tag=4kjvlfa>) @ Thank you, man. I'm sorry I wasn't clear in the beginning. 2021-05-07T05:13:53Z @ (#<66aenwq https://twtxt.net/search?tag=66aenwq>)
> Yandex and Google trackers will potentially be added to Audacity: https://github.com/audacity/audacity/pull/835

Reposting here because I want more eyeballs on this. 2021-05-07T17:32:49Z (#<66aenwq https://twtxt.net/search?tag=66aenwq>) @ I'm sure there will be several good spyware-free forks if that PR is merged. Even so, it would be a huge loss for the free software community. 2021-08-26T22:31:09Z (#<7h2n6fq https://twtxt.net/search?tag=7h2n6fq>) I've never heard of a company providing that service. I know there are companies like https://www.macstadium.com/ that will give you access to a dedicated Mac for use as a server, though. Why? 2021-08-26T23:00:56Z (#<26gymaq https://twtxt.net/search?tag=26gymaq>) @anthk @ @ Funnily enough, my home IP seems to have been banned from floodgap.com and the gopher proxy on there. I have no idea what I did wrong. 2021-08-26T23:01:39Z (#<7h2n6fq https://twtxt.net/search?tag=7h2n6fq>) @ Ah, makes sense. It's been a while, I hope you're doing well. 2021-08-27T21:30:42Z (#) @ @ Heh. 2021-08-29T17:40:14Z (#) @ @ "My serverless, headless, Micropub-powered, personal website" https://barryfrost.com/2021/07/vibrancy
I should add that I link to this page often and it was down for at least 2 weeks a little while ago. 2021-08-29T20:09:41Z (#) @ @ My other example I use when talking about needless complexity is https://github.com/1ntEgr8/yolo-tree, a web page with a header and four links on it that uses 91 lines of JavaScript to download a JSON file with the information and put the links on the page.
It also downloads two (2) fonts, making the page weight 44.1KB and a WebBS of 22.9 without executing the JavaScript to get the JSON and the images. https://www.webbloatscore.com/?url=https%3A%2F%2F1ntegr8.github.io%2Fyolo-tree%2F
Somebody spent enough time on this project to give it two releases on GitHub. 2021-08-29T20:53:23Z (#) @ @ It's not an "app", there's nothing interactive about it. It's like a Hello World program as compared a text file that says "Hello World". The concept is good for learning but impractical, even counter-productive, for anything else. That's why you don't usually see a release 0.2.0 of helloworld.c.
Besides, if your personal website is an "app", you're doing it wrong.
https://www.webbloatscore.com/?url=https://mckinley.cc/ 0.041 :) 2021-08-30T03:47:03Z (#<6ac7glq https://twtxt.net/search?tag=6ac7glq>) @ @ I think you're dangerously close to an XKCD 927 situation here. ![XKCD: Standards](https://twtxt.net/media/nkgqo9GWhR5DH2SLBk6jSX) 2021-08-30T20:44:21Z (#) @ I use the "Non-Production" nearlyfreespeech.net plan. I put $10 in my account over a year ago and I'm still chewing through that. How much do you end up paying? ![](https://twtxt.net/media/hrpEMSNqrhmHiSxHFNeueP) 2021-08-30T21:43:19Z (#) @ @ I'll definitely check it out if I need a VPS for something. Thanks man. 2021-08-30T23:24:23Z (#) @ @ You have a 30 day grace period before your account gets deleted. https://www.nearlyfreespeech.net/about/faq#Empty 2021-08-31T02:11:03Z (#) @ @ 
> If you haven't added funds after the 30 days, we'll start cleaning things up. Services paid for by that account, including all hosted content, will be removed. If you don't have any registered domains on that account, the account will be removed a few days later.

It's not that harsh in my opinion. Besides, it as close to free as a paid hosting service can be for the non-production option. 2021-09-01T00:45:31Z (#) @ You inspired me to write a whole blog post about it: https://mckinley.cc/blog/20210831.html 2021-09-01T03:43:39Z (#) @ Appreciate it, man. 2021-09-01T18:50:14Z (#<5n76dia https://twtxt.net/search?tag=5n76dia>) @ Appreciate it! 2021-09-01T20:11:21Z (#<5n76dia https://twtxt.net/search?tag=5n76dia>) @ Man, you spread that post around, didn't you? I opened HN and saw it on the front page. 2021-09-01T21:02:39Z (#) @ I was on Lobsters too? 2021-09-01T21:04:59Z (#) @ Hey, I'm 9th! 2021-09-01T21:11:09Z @ (#) I didn't say that either, 9th is great! 2021-09-01T21:22:49Z (#) @ @ I call it "anti-social social media" because of the lack of discoverability and interactivity with other people. Twtxt's original spec is like taking a 140 character long string of text, loading it into a cannon, and shooting it off into space. I like that idea, which is why I keep a separate feed on my website. Yarn is a whole different concept, it adds a lot of the "social" elements back into twtxt.
You're right, though. "Anti social media social media" would also work. 2021-09-01T21:32:16Z (#) @ Nice website, man. Reminds me of @'s http://txtpunk.com/ 2021-09-01T21:50:44Z (#) @ Yarn has its roots in "vanilla" twtxt and the two are intercompatible to an @ Yarn has its roots in "vanilla" twtxt and the two are compatible with each other to an extent, but Yarn has created an ecosystem very different to that of vanilla twtxt. 2021-09-01T21:55:18Z (#) @ You replied in the wrong thread. Is there a difference between the terms "anti-social" and "antisocial"? 2021-09-01T22:03:56Z (#) @ Oh, I get it. I said that twtxt.net *puts the* "social" *in* "anti-social social media". It puts the "social" elements back into twtxt. 2021-09-02T00:42:11Z (#<7glhbxa https://twtxt.net/search?tag=7glhbxa>) No. I think I still have a Reddit account, but nowadays I only use teddit. 2021-09-02T00:49:32Z (#<7glhbxa https://twtxt.net/search?tag=7glhbxa>) @ It's a free, self-hostable Reddit front end that doesn't track you, https://codeberg.org/teddit/teddit 2021-09-02T01:01:02Z (#) @ At least you wouldn't clog your server logs with 404s because you actually have your icon at /favicon.ico 2021-09-02T01:02:13Z (#<7glhbxa https://twtxt.net/search?tag=7glhbxa>) @ If you prefer a more modern interface there's libreddit https://github.com/spikecodes/libreddit 2021-09-02T01:19:28Z (#<7glhbxa https://twtxt.net/search?tag=7glhbxa>) @ I don't think either of them have that feature. I think Teddit was working on an account system to do that, but don't quote me on that. 2021-09-02T01:25:05Z (#<7glhbxa https://twtxt.net/search?tag=7glhbxa>) @ No, I think both of them have preferences stored in cookies.
Hey, thank you for sharing my blog post around. I'm glad you liked it. 2021-09-02T21:37:55Z (#) @ @ @ I put Live.js in a userscript for http://127.0.0.1:1337 and it works like a charm 2021-09-02T21:47:11Z (#) @ @ @ I put Live.js in a userscript for http://127.0.0.1:1337 and it works like a charm 2021-09-02T21:49:04Z (#) @ Yes, when I read that blog post I realized that my website was already designed to last without me even knowing about it. All it takes is simplicity. 2021-09-03T03:26:13Z @ (#) I was glad to see an update from your blog in my feed reader earlier. Keep it up! 2021-09-03T03:28:44Z I'm doing my best right now to resist the urge to start an online magazine like https://www.lab6.com/ because I know it will never get a second issue. 2021-09-03T06:40:57Z @ (#) Lab6 is the best, I hope a new issue comes out soon. 2021-09-03T06:43:13Z (#) @ Thanks, I had fun making it. I've had ideas for a couple other buttons, but they haven't turned out quite right. 2021-09-03T07:39:08Z (#) @ It's been over a month since the last issue, the others were one month apart.
One was a LibreWolf version of that animated "Get Firefox" gif that was all over the Web back in the day. The other one was a button for the [NetSurf](https://www.netsurf-browser.org/) browser. 2021-09-03T20:53:39Z (#) @ @ PDF definitely has its problems. I like the idea of distributing publications as HTML files, either standalone or along with other assets in a tarball. HTML is readable on a wide range of devices, but you could easily run `lynx -dump $URL` to get a plaintext version. 2021-09-03T22:45:29Z @ I'm sorry about what's going on in Australia. It seems like the "COVID restrictions" are [getting worse every day](https://www.theatlantic.com/ideas/archive/2021/09/pandemic-australia-still-liberal-democracy/619940/). How are things on the ground? 2021-09-03T23:38:53Z (#<2ufffga https://twtxt.net/search?tag=2ufffga>) I'm not sure if you noticed, but I linked that exact same article. I hope things will get better, but unfortunately I don't see an end in sight. 2021-09-05T05:35:26Z What are you all up to this weekend? 2021-09-05T18:12:39Z (#) @ @ Sounds like fun, guys. I went to the flea market this morning and found a [TRS-80 Model 100](https://en.wikipedia.org/wiki/TRS-80_Model_100) computer that seems to be in good shape. I'll see if I can get it going. 2021-09-05T18:51:23Z (#) @ Hm? HTTP referrer header? From my blog post? Are there really humans out there who go to my website and read what I have to say? 2021-09-05T23:16:22Z (#) @ Arguably, the top two shouldn't be counted. I'm taking the win on that one. 2021-09-06T02:36:27Z (#) @ There were some old AA batteries in it that had leaked a little. The contacts need to be cleaned and I think there's a good chance that it would start right up. The exterior is in great shape for a flea market machine, it even had the original manual with it. The only thing I'm really concerned about is the internal Ni-Cd backup battery for the memory. I'll open it up tomorrow and have a look. 2021-09-06T02:50:34Z @ (#) There's not much corrosion, I think the board will be fine. 2021-09-06T03:00:04Z Hey, here's a cool graph for you. Daily bandwidth usage for http://mckinley.cc/ ![Bandwidth Report](https://twtxt.net/media/AqLQH6CqbK2BqoLDSKi7mA) 2021-09-06T03:23:31Z (#) @ Nah, my traffic will probably stay pretty low. NearlyFreeSpeech likes to talk about how well they handle scaling, anyway. 2021-09-06T04:08:15Z (#) @ I don't know, but I've never noticed any downtime and I use their "non-production" plan. 2021-09-06T05:30:44Z (#) @ One (American) cent per day. Their business model is "pay for what you use". My website uses almost no resources, so I pay the minimum. I think we talked about NFS a few days ago. ![](https://twtxt.net/media/nZa8vvWyUtExyhiBsodV3X) 2021-09-06T06:27:05Z (#) @ I believe they own all their hardware and IPv4s are shared between sites so that cuts down on cost quite a bit.
With my baseline membership, they don't hold your hand. You get an extensive FAQ section and a community forum to refer to. That's about it. If you pay $5/month, you get access to individual support and a few other perks.
I think I read somewhere that half of your websites hosted with them must be using the 5 cent or 50 cent per day plan, too. That's probably where they make most of their money. I don't imagine they make anything off of me. 2021-09-06T18:41:09Z (#) @ @ A lot of bots use standard browser user agents, anyway. 2021-09-06T18:49:40Z (#) @ 2.4MHz ought to be enough for anybody. 2021-09-07T03:26:51Z I wonder if one could make a vanity (v3) onion address generator that, instead of looking for a small set of user-defined prefixes, looked for a prefix based on three or four short dictionary words from a long list instead. You would be able to have a prefix that's easily recognizable by users to make sure they're at the right address but it would still be very difficult for someone to brute force an address with the same prefix. 2021-09-07T03:33:51Z @ (#) For example, `examplexpi...z2j.onion` would be difficult for me to generate but it would be equally difficult for someone who wants to pretend to be that service to generate `example6yf...9wn.onion`. Instead, I might be able to generate something like `wellhairrainba7...m4c.onion` based on a list of random words. The other guy would need to find an address with a set 12 character prefix. That would be much more difficult than the 7 character example from before. 2021-09-07T03:49:29Z @ (#) The obvious potential pitfall is the computational expense of comparing generated addresses to possible combinations of a large word list. It would be interesting to see how this compares to the brute force method in practice. 2021-09-07T04:31:54Z (#) @ Wikipedia can explain onion addresses better than I can: https://en.wikipedia.org/wiki/.onion
A "vanity address" is made by generating thousands of keypairs until you find one that corresponds with an onion address that has the first few characters matching a given string. A well known example would be the archive.today hidden service, http://archiveiya74codqgiixo33q62qlrqtkgmcitqx5u2oeqnmn5bpcbiyd.onion/ 2021-09-07T04:37:06Z (#) @ I didn't know mkp224o had that option, but I think doing it with long words will be impractical. The difficulty goes up drastically as you add words, and 5 characters is already difficult to generate. Take a look at these generation times on a cluster of 5 raspberry pis: https://www.jamieweb.net/blog/onionv3-vanity-address/#generation-times
Someone much smarter than I could probably calculate the increase in difficulty based on word length. 2021-09-07T04:49:04Z (#) @ (#)
> what I'm trying to solve

People use the address to be sure they're using the right hidden service, and if you can get an address with the same prefix you might be able to trick some users into thinking you're the other service. It's the same basic idea as [Typosquatting](https://en.wikipedia.org/wiki/Typosquatting). My idea, in theory, would make it easier (less computationally expensive) to generate an address with a certain prefix the first time, and much harder to do a second time. 2021-09-07T05:08:07Z (#) @ Wow, how many have you managed to generate already?
MeanWall: An SSH honeypot that insults anyone who tries to log in. 2021-09-08T03:27:39Z (#) @ It's definitely too low. These gimmicky social media services don't last long. I remember one that would take two weeks or something to deliver messages. It was actually meant to mimic letters sent in the mail. I don't know why you wouldn't just send letters at that point, too. Last I checked, the postal service still works. 2021-09-13T00:56:55Z (#) The Model 100 is alive! I opened it up last night. The backup battery is fine and the corrosion on the main battery contacts cleaned off well with vinegar. It fired right up with some fresh AAs. The screen looks good, but the keyboard isn't working. I got sidetracked last night and haven't had time today to resume the project. Maybe later today.
In the meantime, here's an exploded view taken from the [service manual](https://archive.org/details/m100service). ![TRS-80 Model 100 exploded view](https://twtxt.net/media/paFQWbcy7YU4WcRYX9qbEf)
Edit: # 2021-09-13T01:41:23Z (#) @ I'll have to check out the search engine. Congratulations on the release.
@ There's a very good chance that it will be fixed eventually. Just keep in mind I have a closet full of old computers (only a small handful of which are listed on my website) and I don't have the time, energy, or soldering skills to get them all running. 2021-09-13T01:51:55Z (#) @ 

> Maybe, over time, everything evolves into Usenet.

Convergent evolution, just like how creatures keep evolving to resemble crabs. 2021-09-14T02:26:43Z (#) Not only do they make you connect an account to an unrelated service, they require those invasive permissions. Is that a video conference thing? Jitsi Meet is the way. 2021-09-14T02:50:07Z (#<3ll4fja https://twtxt.net/search?tag=3ll4fja>) As a user, I think 1-3 times a day would be fine.
As someone who pays to host a twtxt feed, I don't mind what you set it to as long as it's not unreasonably often. It won't really make a difference to me. As of about 6 months ago, 3 different yarn.social pods each request /twtxt.txt (with an If-Modified-Since header) every 5 minutes, 24 / 7. I think I also had a different twtxt client requesting it every 10 minutes. 2021-09-14T03:01:41Z (#) @ It was my main feed, @ when I had access logs on for a while.
It doesn't take up much bandwidth because it's not actually sending over the file every time. It really just clogs up the log file, and `grep -v "/twtxt.txt" access_log` fixes that. 2021-09-14T03:22:38Z (#) @ No, I'm not bothered by it at all. I get enough bots on there trying to exploit old WordPress vulnerabilities and the like that I can't be too mad about a legitimate service doing what it was designed to do. 2021-09-14T03:35:50Z (#) @ Woah, an italicized emoji. Don't think I've ever seen that before. The two feeds are different. Most of my original posts are on my website's feed (in 140 characters or less) and I use this one mostly for interacting with others. 
I keep two feeds because, while I really enjoy what the dev.twtxt.net spec extensions and yarn.social pods have to offer, I also like the effect of the original twtxt specification. 2021-09-14T03:37:35Z (#) From a conversation a little while ago:
> Twtxt’s original spec is like taking a 140 character long string of text, loading it into a cannon, and shooting it off into space. I like that idea, which is why I keep a separate feed on my website. Yarn is a whole different concept, it adds a lot of the “social” elements back into twtxt.

Search engine works great, by the way. :) 2021-09-14T04:37:24Z (#) @
> duplicate posts

That's strange. I don't sync my posts between here and mckinley.cc. I have an alternate feed on my website that only contains the most recent 25 posts. You should only have duplicate messages if you follow mckinley.cc/twtxt.txt *and* mckinley.cc/twtxt-25.txt
> Is this something we should support in Pods?

I haven't seen anyone else with two distinct feeds, so a feature like that probably wouldn't be used often. 2021-09-16T01:08:52Z Test post from Tor with JavaScript disabled. A lot of small features of the Web client rely on JS, but let's see if I can at least log in and post. 2021-09-16T01:10:58Z (#) There's no editing of messages, no use of the rich text buttons in the text box, no replying. I think I should be able to reply by going to a conversation page and using the reply box there. Testing that now. 2021-09-16T01:13:17Z (#<5i3df5a https://twtxt.net/search?tag=5i3df5a>) This whole forked conversation thing is confusing. What's going on? 2021-09-16T01:14:04Z (#) @ How's the experience actually using PageKite? I've recommended it as an alternative to Ngrok but I haven't had a reason to use it myself. 2021-09-16T01:23:38Z (#) JS-free experience, overall, isn't as bad as I thought it would be. I don't know if you can create an account without JavaScript but you can at least make and reply to posts.
Kudos for not blocking Tor exit nodes by the way @. 2021-09-18T03:14:19Z (#)
> "We know lots of people will find it an invasion of privacy, we 100% get that, and it’s not the solution for those folks,"

In other words, "Yeah, it's an invasion of your privacy. What are you gonna do about it?" 2021-09-18T03:32:58Z (#) Looks good :) 2021-09-18T03:33:48Z (#<47ae7iq https://twtxt.net/search?tag=47ae7iq>) Do you have an approximate number of feeds you can share with us? 2021-09-18T03:34:52Z (#) @ I certainly would, but I seriously doubt most people would care enough about it. 2021-09-18T05:19:06Z (#<47ae7iq https://twtxt.net/search?tag=47ae7iq>) @ Wow, that's more than I expected. 2021-09-18T06:41:18Z (#) This is the closest thing I've ever had to a "bulk optical disc ripper". Picture was taken a few years ago. It was an old Dell PC from ~2009 with three optical drives hooked up. The case only had 2 5.25" bays, so the side cover was off and the third drive was hanging out.
Lubuntu was installed on the original hard drive, and it was running 3 instances of Exact Audio Copy over Wine, one instance for each drive. I had one hell of a weekend with this thing, let me tell you. ![](https://twtxt.net/media/iLZXcXDqCeJa32FbWDit98) 2021-09-19T04:28:30Z @ (#<5gb3dqq https://twtxt.net/search?tag=5gb3dqq>) I didn't know unfollow events were publicly broadcasted... 2021-09-19T17:13:55Z @ (#) I like it, valid HTML too https://validator.w3.org/nu/?doc=https%3A%2F%2Fmkws.sh%2F 2021-09-19T18:55:10Z (#<5gb3dqq https://twtxt.net/search?tag=5gb3dqq>) Honestly, the entire follow system is flawed. Check my followers, #<3 https://twtxt.net/search?tag=3> was a web crawler with a user agent that happened to fit the regex, and #<17 https://twtxt.net/search?tag=17> was myself requesting my own feed with a simple curl command.
Unfortunately, I don't see a real solution to the problem while keeping the ability for external feeds to show up as "following" a user on a Yarn pod. 2021-09-19T19:14:21Z (#<5gb3dqq https://twtxt.net/search?tag=5gb3dqq>) The user agent regex was made a little more restrictive after my [git issue](https://git.mills.io/yarnsocial/yarn/issues/416), but I think someone could use this and really start breaking things. I want to poke around more than I already have, but I'm not doing it on a live production instance of Yarn. 2021-09-20T02:47:16Z (#) @ I think @ was talking about that strange bug we talked about a while ago where two dollar signs turn into escaped parenthesis. I think I saw it happening within the last day or so. $ test $ 2021-09-20T02:49:53Z (#) Yeah, it worked. Check my [plaintext feed](https://twtxt.net/user/mckinley/twtxt.txt). The dollar signs turn into parenthesis escaped with backslashes when viewed on the web client. 2021-09-20T02:57:35Z (#) @ I just typed the dollar signs into the reply box. The post on my plaintext feed is exactly what I typed. You typed two dollar signs and it didn't work, but maybe they have to be separated? Test: $ $ 2021-09-21T02:49:59Z (#) It seems like this per-event feed thing would be a lot of work. Personally, I think it's fine the way it is now. Publicly broadcasting unfollows went a little too far in my opinion but that was removed, right? 2021-09-21T03:10:53Z (#) Oh man, bookmarked. 2021-09-21T03:20:34Z (#<2m6fb6q https://twtxt.net/search?tag=2m6fb6q>) @
> There’s too much of this “libre” nonsense out there

I realized this earlier today when I opened LibreWolf and went to librespeed.org to test my internet connection. 2021-09-21T03:26:34Z (#) The language police have already won, because we're here talking about it. It all comes down to attention and internet points. 2021-09-21T03:33:22Z @ (#) Fair enough 2021-09-21T03:41:35Z @ (#) Looks great! 2021-09-21T04:06:31Z (#) @ @hackew-news-newest I skimmed through that article this morning and I had a similar reaction. I don't think blogs were ever "gone" for technical people like us, but they were for a lot of other people. They're making a comeback now with the rise of Medium and Substack. 
The author rightly blames search engines. A similar revelation hit me like a truck after I used [Marginalia Search](https://search.marginalia.nu/) a few times. Give it a try. 2021-09-21T04:36:31Z (#) @ Yes, it does its own crawling. You can check if a particular website is indexed by searching for a domain like this: `site:mckinley.cc` 2021-09-21T20:54:07Z (#<25qamca https://twtxt.net/search?tag=25qamca>) Sure, let's boycott Bitcoin and use Monero instead :) 2021-09-21T21:05:05Z (#) I agree. Everybody should have their own website. That's how the Web used to be. ![The Oatmeal: Reaching people on the internet](https://twtxt.net/media/Yo7WdCjmweaGJQ3pK4SnPo) 2021-09-21T21:16:57Z (#) QR codes frustrate me. I don't think we should be teaching people that it's okay to scan an unintelligible barcode with their camera and instantly be transported to some arbitrary site.
On the other hand, vanity QR codes are really cool. ![](https://twtxt.net/media/Lxg89fGdBAKFbJgoyDggUM) 2021-09-21T21:31:36Z (#) @ You think that's cool, I just found the one in color. Try scanning them, they both go to https://mckinley.cc/. I generated them with a web tool that's now offline. Here's a good explanation of what's going on: https://research.swtch.com/qart ![](https://twtxt.net/media/T6mW3S8guWEXsLJvtcwPYU) 2021-09-21T21:35:24Z (#<25qamca https://twtxt.net/search?tag=25qamca>) @ Yeah, but at least Monero protects your anonymity. I'll be the first guy in line for a solid proof-of-stake privacy coin but I don't think the technology has matured quite enough. 2021-09-21T21:37:34Z (#) @ I think it's more about "The Algorithm" dictating what people do and do not see. People used to seek out material they wanted to see, now they just scroll through the algorithm-generated feeds of 2-3 websites and hope they find something interesting. It's open to interpretation :) 2021-09-22T06:29:32Z (#) @ @ The local Discover timeline should definitely be preserved. A global timeline would be very nice to have, but it should be separate. 2021-09-23T22:58:58Z (#) @ @hacker-news-newest I've been telling people about this for 4 years. It resurfaces every now and then. There's always some mild outrage and then nothing gets done about it.
It's been time to stop using Google. They abandoned the whole "Don't be evil" thing a long time ago. 2021-09-23T23:02:02Z (#) I'm generally not a fan of using metrics beyond typical server logs. What information would be collected and how would you use it? 2021-09-23T23:48:58Z (#) @ I don't want to pay for a domain name just for that. Out of curiosity, I went to https://dontbeevil.com/ to see if it was taken and I found an anti-Google poem but guess what else was there? ![Google Analytics!](https://twtxt.net/media/Qsnbxwww6LSCiMSxDBte6K) 2021-09-24T01:27:02Z (#) Have you happened to find a twt hash collision in your crawling adventures? If not, I wonder if it would be feasible to brute force one and see what happens. 2021-09-24T01:38:35Z (#) Was the info on dev.twtxt.net moved somewhere else? I can't remember exactly how the hashes work. It's the URL of the feed, the time, and the message put in a specific order and then hashed, right? Then that hash is encoded in base32 and the last 7 characters are taken from it? Do I have that completely wrong? 2021-09-24T02:54:31Z (#)
- A 7 character hash with 32 possible characters has 34,359,738,368 possible combinations. More than I would have thought, but it's not that many in the grand scheme of things.
- Assuming a rate of 50,000 hashes per second, which I think might be feasible on modest consumer hardware, you're looking at about 8 days to generate all possible hashes if you have no duplicates.

I'm sure the strange generation method affects the probability, but I don't know how to account for that. My math is most likely wrong as it is but I think a collision is doable. 2021-09-24T04:16:07Z @ (#<736inyq https://twtxt.net/search?tag=736inyq>) Hm, those don't seem to be there on my screen. 2021-09-24T04:22:00Z @ (#<3ogzssa https://twtxt.net/search?tag=3ogzssa>) Sweet, thanks for putting it back up. 2021-09-24T05:08:22Z @ (#<3ogzssa https://twtxt.net/search?tag=3ogzssa>) Oh yeah, I see all the source files are right there in the main Git repository. I'm not familiar with Jekyll but I'll raise a PR if I notice something I'm able to fix. 2021-09-24T05:42:35Z @ you're on the front page of Hacker News right now https://news.ycombinator.com/item?id=28619684 ![14th](https://twtxt.net/media/ZHTvfcRVNkPZMr5rpZ8eQa) 2021-09-25T03:07:05Z (#) @ That emoji character in your terminal is making me uncomfortable... 2021-09-25T03:15:07Z (#<5scs43q https://twtxt.net/search?tag=5scs43q>) @ I haven't tried it myself but I've heard good things. 2021-09-25T17:31:08Z (#) @ @ Absolutely bookmarked. Great job, man. 2021-09-25T17:38:10Z Good morning, what are you all up to this weekend? 2021-09-26T00:53:50Z (#) @ @ Try getting through TSA with that thing. 2021-09-26T01:37:05Z (#) @ Transportation Security Administration, the government agency that runs the security checkpoints in American airports. Are you from the US? 2021-09-26T02:15:38Z (#) @ Oh, all this time I thought you were American. Sorry about that. 2021-09-27T00:01:57Z (#) @ I don't blame you. The market is crazy right now. I was going to upgrade my desktop machine a year ago but I just couldn't do it. 2021-09-27T23:14:19Z (#) @ Man, how much do you spend every year on domain registration? 2021-09-28T00:40:12Z (#) @ Wow, that's more than I would have thought. You don't seem to go for cheap TLDs either. 2021-09-28T00:47:36Z @ (#) I "only" spend about $50/yr US on domain registration. 2021-09-28T21:21:40Z (#) @ @ Worth mentioning that Gogs and Gitea both host their source code on GitHub. 2021-09-28T21:29:25Z (#<5spns2q https://twtxt.net/search?tag=5spns2q>) You guys are doing a great job, I'm looking forward to the new interface. 2021-09-28T21:35:41Z (#) I use dark mode as well. I'd much rather use a dark theme for something like this than a light theme. 2021-09-28T21:40:41Z (#) +1 for NameCheap. I found a 2 letter domain (mc.cz) on GoDaddy for $17 one time and I tried to buy it. The money was sent, but the domain wasn't showing up on my account. Later, the money was refunded to me and mc.cz was listed for sale as a "Premium" domain for several thousand dollars. I'm not sure if it was entirely their fault but it left a bad taste in my mouth for GoDaddy's service. 2021-09-29T00:08:52Z (#) Oh yeah, definitely thinking about it. ![](https://twtxt.net/media/6SdnWQNdYKDEoEocAUWJ2D) 2021-09-29T00:33:55Z (#) @ Yes it was. It's not really a big deal, it just strikes me as a little strange. 2021-09-29T01:46:58Z (#) @ Good for you, man. Always glad to see less power in the hands of Microsoft. 2021-09-29T01:56:46Z (#) Man, that's scary stuff. If someone wants to have an NSA/Amazon robot in their house, I suppose that's their right. I just worry about this kind of thing in public areas. They're around in some places. I've personally seen [food delivery robots](https://www.kiwibot.com/) (with eyes for some reason) in Berkeley, California. There are also [police drones that were used to enforce COVID guidelines](https://www.usatoday.com/story/news/politics/2020/05/03/coronavirus-police-use-drones-enforcement-privacy-concerns/3059073001/). 2021-09-29T01:59:57Z (#) There's also, of course, the famous "[Police robot told woman to go away after she tried to report crime – then sang a song](https://metro.co.uk/2019/10/04/police-robot-told-woman-go-away-tried-report-crime-sang-song-10864648/)" 2021-09-29T02:15:52Z (#) ![Secure Beneath The Watchful Eyes](https://twtxt.net/media/Af2EvUbxNekxQojqH3o8Gd)
London bus stop, 2002. [Context](https://www.wired.com/2002/11/londons-privacy-falling-down/) 2021-09-29T02:36:35Z (#) We should keep SARS in the back of our minds before jumping into sp00ky COVID predictions. 2021-09-29T03:27:57Z (#) @ No, I mean SARS-CoV-1, the outbreak way back in 2003 that seems to have happened in a similar way. We don't need to end the conversation, I just want to point it out. 2021-09-29T18:58:09Z (#<4m23ecq https://twtxt.net/search?tag=4m23ecq>) @ Welcome to the party. Feels good, doesn't it? 2021-09-30T02:26:07Z (#<45duata https://twtxt.net/search?tag=45duata>) @ @ `$#` for number of arguments, never seen that before. That's POSIX shell? Fancy stuff. 2021-09-30T02:40:49Z (#<45duata https://twtxt.net/search?tag=45duata>) I just found it in the spec. I'll have to remember that. ![](https://twtxt.net/media/5iVyLHNgtLfdSS8prANpoM) 2021-09-30T02:51:29Z (#<45duata https://twtxt.net/search?tag=45duata>) The image is completely unreadable, here's the link to that section: https://pubs.opengroup.org/onlinepubs/9699919799.2018edition/utilities/V3_chap02.html#tag_18_05_02

I find the HTML version easy enough to reference. I use it a lot because it has all the man pages for the POSIX utilities. It's even available to [download](https://pubs.opengroup.org/onlinepubs/9699919799.2018edition/download/index.html) for offline viewing. 2021-09-30T03:05:37Z (#<45duata https://twtxt.net/search?tag=45duata>) @ Oh, definitely not on mobile. `iframe` based HTML pages don't work well with touchscreens. You can avoid the iframe madness by going to mindex.html or idx/fidx2.html relative to the base directory. 2021-09-30T05:43:24Z (#) Gotcha. Gemini is a neat idea, but I think it goes too far in the right direction. There must be a new set of standards, but they can't only be limited to basic documents. Only when there is a new set of standards that replaces the Web for a significant amount of uses can the problem be solved.
Until then, I say we should give WHATWG and the "living standard" the double barreled middle finger and create bloat-free, tracker-free,
tag filled websites that look like they were made in 2004. 2021-09-30T20:42:02Z (#) @ I don't know, but the answer is probably rclone. 2021-09-30T20:45:46Z (#<4m23ecq https://twtxt.net/search?tag=4m23ecq>) @ @ That wallet glows. I couldn't find the source code within 30 seconds of browsing the website. 2021-10-01T03:14:44Z (#<4m23ecq https://twtxt.net/search?tag=4m23ecq>) Why trust a bioluminescent, proprietary wallet when you can use a Free one? 2021-10-01T03:46:42Z (#<4m23ecq https://twtxt.net/search?tag=4m23ecq>) @ I've always just used the standard Monero GUI wallet but I've heard good things about [Feather](https://featherwallet.org/) ([Tor hidden service](http://featherdvtpi7ckdbkb2yxjfwx3oyvr3xjz3oo4rszylfzjdg6pbm3id.onion/))
Both pieces of software mentioned are under the 3-Clause BSD license and source code is available here:
https://github.com/monero-project/monero-gui
https://git.featherwallet.org/feather/feather 2021-10-02T03:46:19Z Do you guys keep bookmarks to various sites? If so, how do you manage them? 2021-10-02T03:51:15Z (#) Subscribed! 2021-10-02T04:33:57Z (#) @ Thanks for the response. Fixing my bookmark situation once and for all is the main project for this weekend. It's starting to get ridiculous. I have bookmarks in several browsers and multiple text files spread across a handful of different computers. I'll probably end up writing a blog post about it. 2021-10-02T17:31:48Z (#) Thanks for the input everyone! Saved.io and Golinks look interesting but I want something that has a few more features and stores the information locally. I get it @ but I find that it pays off when I'm trying to find something and it's right there in my bookmarks. 2021-10-02T17:37:05Z (#) @ I agree. You simply cannot use a device for general computing if it has not been made for general computing. 2021-10-02T17:45:47Z (#) @ I have no idea. My favorites are \#79 and \#57 2021-10-06T07:01:17Z I managed to make a template for `pp` that produces an HTML list of twts for a given twtxt file, similar to the way I have it on [my website](https://mckinley.cc/twtxt/2021-aug-dec.html). It even turns HTTP URLs into hyperlinks. It definitely needs some work, but I think I've reached the limit of POSIX sh. I don't know of any way to compare dates or change the format of a timestamp without GNU `date`. `rev` isn't a POSIX utility either so I can't have reverse chronological order without doing some `awk` sorcery or something. 2021-10-06T08:05:42Z (#) Heh. 2021-10-06T08:27:52Z (#) @ I realized I had more to say than I thought and, rather than make a chain of twts, I made a [blog post](https://mckinley.cc/blog/20211006.html) instead. Here's a screenshot what the template makes when it's fed my twtxt feed. I'm going to bed, man. ![](https://twtxt.net/media/H8dsTCLPgJYxPdyvicTGrj) 2021-10-06T16:44:16Z (#) @ Thank you, that looks to be almost exactly what I'm looking for. I'll take a closer look later. 2021-10-06T20:33:40Z (#) @ @ Right, `tac` is the one that reverses lines. Apologies, I always get the two mixed up. What I want to do is automate the HTMLized twtxt pages on my website. I'll need to remove comments, sort the feed chronologically which can definitely be done with `sort`, and then separate the feed into three month periods. Then I'll pass that three month chunk into `pp` which will use the template to generate HTML. I'll need dateutils or something similar to separate the feed into blocks as well as changing the date format to something more readable for the HTML. 2021-10-06T21:16:03Z (#) @ There is absolutely no question that this is not a job for a shell script. I've gone this far out of a want to use `pp` for something useful but now I don't think it's possible to properly escape backslashes in twts without the use of temporary files. I'm thinking this one might have to be put in the folder of purgatory with the rest. 2021-10-06T21:59:34Z (#) @ Yes, that's correct. 2021-10-06T22:09:18Z (#) @ Uh, yeah. Why? 2021-10-07T21:01:12Z (#) @ 
> I think I have a cold

Shhh, don't let the government know! ;) 2021-10-08T02:19:52Z (#) @ @ The suicide of Firefox continues... https://lunduke.substack.com/p/mozilla-firefox-now-shows-advertisements 2021-10-08T02:24:40Z (#) @ Librewolf is the answer, at least for now. 2021-10-08T05:20:45Z (#) @ Welcome to twtxt.net :)
There isn't much information on the home page and the links at the bottom go to pages that require far too much JavaScript to load. Is this just a personal wiki service that functions like a centralized [TiddlyWiki](https://tiddlywiki.com/) or is there something more? 2021-10-08T06:20:26Z (#) @ Yes, I've been using it for a little while now and it's served my needs very well. The only thing is that you only get one page of results. 99% of the time, though, the 20 or so results on that page are close enough to what I'm looking for.
The image search is very nice. The image resolution is printed right there on the image matrix. There are good search options available like a "Transparent" image type which I've only seen on DuckDuckGo before.
Searching for text is completely usable with JavaScript disabled but it needs to be enabled for image search. 2021-10-08T21:41:15Z (#) Yes they did. The command line options --help, --version, --extended-regexp, --traditional, --loose-exit-status, --restricted, and --verbose in GNU `ed` are not specified in the POSIX standard. Interestingly, GNU also added --longer-option-names for the standard -p and -s. https://www.gnu.org/software/ed/manual/ed_manual.html#Invoking-ed https://pubs.opengroup.org/onlinepubs/9699919799.2018edition/utilities/ed.html 2021-10-08T22:16:03Z (#) @ Impressive, I should learn awk at some point.
Funnily enough, GNU `tail` has no -r option: https://www.gnu.org/software/coreutils/manual/html_node/tail-invocation
> GNU tail can output any amount of data (some other versions of tail cannot). It also has no -r option (print in reverse), since reversing a file is really a different job from printing the end of a file; BSD tail (which is the one with -r) can only reverse files that are at most as large as its buffer, which is typically 32 KiB. A more reliable and versatile way to reverse files is the GNU tac command. 2021-10-09T00:51:58Z (#) @ I fully agree with their stance, but it's weird to see an extension present in BSD coreutils but not GNU. 2021-10-09T01:00:18Z This weekend, I'm setting up a private XMPP server for a small group of people. They will insist on connecting using tracking devices, so I'm looking for clients on both Android and iOS. [Conversations](https://conversations.im/) on Android and [SiskinIM](https://siskin.im/) on iOS seem like they would be a good fit. Both are under GPLv3, both support OMEMO, etc.
Do any of you gentlemen have experience with those clients? Please tell me what you think of them, or if I would be better off recommending something else. Thank you. 2021-10-09T17:20:36Z (#kc5haxq) Gotta love Tool. 2021-10-09T17:33:04Z (#xgsr4hq) You can re-enable persistent history and session data if you want, I know I've seen it in the settings somewhere. Kudos on forcing yourself to switch to a proper password manager. I don't think many people know that that their passwords are so insecure when stored in a browser. I believe even now, in the year of our lord 2021, the default behavior in both Duopoly browsers is an unencrypted database. Correct me if I'm wrong. 2021-10-09T18:32:39Z (#u4bhkvq) @ Thank you very much for your help, I'll take a look at it in a few minutes. 2021-10-09T19:31:45Z (#u4bhkvq) @ If I stuck with that shell script abomination I have no doubt I could have hacked something together but it was already taking half a second to process my feed and nearly a minute to process @'s feed, although that one completely broke the script and mangled the output. 2021-10-09T21:20:35Z (#u4bhkvq) @
> I assumed all lines start with a date

So did I in my attempt, but even after a quick `grep -v '^#'` it would still break everything.
I'm trying out the newer version now. Will report back. 2021-10-09T22:07:46Z (#u4bhkvq) I don't see much a difference between the new version and the old version. There are a couple of small bugs I've seen. "2021: January-April" is hard-coded into the twt page template as well as the date "27 April 2021 01:04" for each twt. The timestamps are also printed along with the twt because it just copies the line through. What is `smu` used for? 2021-10-09T22:13:25Z (#u4bhkvq) My template ([most recent copy](https://clbin.com/5g9kS)) attempts to solve the latter two problems, but I think it's another job for `awk` to avoid the dumpster fire below. 
```
timestamp=$(echo "$line" | grep -Eo '^[0-9]{4}-[01][0-9]-[0-3][0-9][Tt][0-2][0-9]:[0-5][0-9]:[0-5][0-9](\.[0-9]+)?([+-][0-2][0-9]:[0-5][0-9]|Zz)')
twt=$(echo "$line" | sed -e 's/"/\"/g; s/```/\`/g' | cut -f 2- -)
hyperlinked=$(echo "$twt" | sed 's|http://[^ ]*[^ ,.;:)>}!]|&|g; s|https://[^ ]*[^ ,.;:)>}!]|&|g')
``` 2021-10-09T22:19:06Z (#u4bhkvq) It looks like I just have no idea what I'm doing, and that's partially true, but those are the best solutions I was able to get while conforming to POSIX (without awk). I'll take the time at some point to learn more about awk and come up with a better solution for this. 2021-10-09T22:27:14Z (#dlpfxuq) @ Yes, I got `smu` installed to run the script and I figured that markdown was being generated somewhere but I don't know where that is or what purpose it serves. 2021-10-09T22:28:25Z (#dlpfxuq) @ Nevermind, I just found it. 
```printf "* [%s: %s](%s)\n", Y, tmrsl[trm], f```
Makes sense now. 2021-10-09T22:30:30Z (#dlpfxuq) @ Oops, I think we just hijacked another thread. Sorry about that @ and co. 2021-10-09T22:32:59Z (#u4bhkvq) @ I've seen a lot of [very impressive things](https://github.com/djanderson/aho) done with awk. 2021-10-10T00:27:31Z (#q64rzya) This is a much appreciated change, excellent work. 2021-10-11T02:26:58Z (#fsy7aja) @> Maybe they'll need to migrate it to a Chromium base

I'm sure it would be more profitable for them to do so. That just makes me wonder why they haven't done it already. I wonder if there's Google money involved (like the default search engine deal with Mozilla) so they can claim they aren't a monopoly. 2021-10-11T04:02:46Z @ (#tkf4e2q)
> Not only is it free to use, but I no longer have to worry about trust, because the operator of the technology is me.

Of course Amazon would never snoop on what you're doing with the service they provide to you for free. They wouldn't do that! They're a "reputable and widely trusted cloud provider" based in a Five Eyes country known for their data security!
Nobody told this guy about Mullvad or iVPN. Plus, if you're doing it right, you don't need that Netflix subscription. 2021-10-11T21:01:38Z (#7fec2fa) @ ? 2021-10-13T04:26:21Z (#5ossspa) I like the 4th. 2021-10-16T01:00:42Z (#7exlyga)
> Let’s just say, I’ve seen this happen with multiple products at work: Step 1, someone builds something which doesn’t support a “reply” feature at all. Step 2, the thing grows, now people want “reply”. Step 3, it gets confusing with all the linear replies and now people want “full threading”. 😁 That’s also basically what happened to twtxt/yarn. Maybe, over time, everything evolves into Usenet. 🤣

@ was right. 2021-10-16T01:10:33Z (#7exlyga) @ If the client isn't tweaked to accommodate "full threading" then the fork function shouldn't be used for replies. I've always treated it as an "off-topic response" button. 2021-10-16T01:20:11Z (#66uo3sa) @ Great addition, thank you. 2021-10-18T03:59:54Z (#wgqmrza) @ @
> The Times reports that Peter Brown, a professor at the University of Western Ontario, places the odds of a meteor crashing into someone's bed at 1 in 100 billion.

I would really like to hear Peter Brown tell us how he came to that conclusion. 2021-10-19T03:16:49Z (#tkbbmjq) Anyone with the name "Chetan Kunte" has to have a good sense of humor, no matter how it's supposed to be pronounced. 2021-10-21T03:19:03Z (#nqgqyqa) @ Isn't a Windows UA part of privacy.resistFingerprinting? 2021-10-25T03:16:31Z (#f3i6phq) I had to do the same a few weeks ago :/ 2021-10-25T05:15:11Z (#isobgnq) At least we aren't calling them "toots". 2021-10-27T21:43:31Z ​ 2021-10-27T21:45:02Z (#7ezffiq) https://twtxt.net/conv/tuhu7ra ![](https://twtxt.net/media/72snCtaMfKcqiXUsFKj2F6) 2021-10-31T03:25:02Z (#ba3fxtq) @ You're correct, but those are actually separate feeds. Green is /twtxt.txt, my "canonical" feed with all my posts. Blue is /twtxt-25.txt, the one with only the most recent 25 posts. I understand how this can create confusion. Does Yarn respect [url](https://dev.twtxt.net/doc/metadataextension.html#url) metadata entries as specified on dev.twtxt.net? 2021-10-31T03:29:19Z (#ba3fxtq) @ Ah, I finished editing my post after you already saw it.
> I understand how this can create confusion. Does Yarn respect [url](https://dev.twtxt.net/doc/metadataextension.html#url) metadata entries as specified on dev.twtxt.net? 2021-10-31T03:29:45Z (#ba3fxtq) @ Man, you're really killing me with these quick replies. 2021-10-31T03:32:36Z (#ba3fxtq) @ Yeah, isn't the idea to make sure twts from the same feed at different locations have the same hash by specifying a canonical feed url? That should solve the http:// https:// problem *and* the twtxt twtxt-25 problem if the standard is widely adopted. 2021-10-31T03:47:40Z (#ba3fxtq) Hold on. If the standard was implemented verbatim, couldn't anyone could hijack your feed by adding `# url = https://twtxt.net/user/prologic/twtxt.txt` to their feed? 2021-10-31T03:58:10Z (#ba3fxtq) How about this: The `url` field is replaced by a `canonical` field and an `alternate` field. If the location that the client has of Feed A doesn't match what it says in Feed A's `canonical` field, the client downloads the canonical feed, Feed B, once to make sure that the location of Feed A appears in Feed B's `alternate` tags. If so, the client will continue to follow Feed A but it will use the canonical URL for hashing.
As I'm typing it, though, it seems like an extremely complicated solution to a problem that isn't all that bad. 2021-10-31T04:00:17Z (#ba3fxtq) @ 
> Hijack it how?

Wouldn't they be able to make their own posts that would appear as having come from your account? 2021-10-31T04:02:17Z (#ba3fxtq)
> As I'm typing it, though, it seems like an extremely complicated solution to a problem that isn't all that bad.

Poor wording. Feedjacking would be a pretty bad problem. I meant that it might be best to keep things as they are without adding any crazy url switching. 2021-10-31T04:13:36Z (#ba3fxtq) @ My apologies. I didn't interpret the specification correctly. The feeds are supposed to be distinct, with the url field used for hashing and hashing only. I got carried away with separate feeds becoming one and whatnot. Ignore everything I've written to this point. Perhaps I should go to bed. 2021-11-02T02:39:58Z @ The landing page for loveprivacy.club is awesome, nice CSS border trick there for the banner. 2021-11-07T18:59:09Z (#yv5ccgq) @ No 2021-11-08T02:44:53Z (#57izhxa) @ Just about anything's better than WordPress. I'm all for it! 2021-11-11T05:48:13Z (#5w2ujnq) @ You should check out [Teddit](https://codeberg.org/teddit/teddit) or [Libreddit](https://github.com/spikecodes/libreddit). They're privacy and freedom respecting, self-hostable frontends for Reddit. 2021-11-11T19:08:07Z (#k3mizra) I agree with @ There could be some confusion if posts appear in people's clients that are not on the master feed. What if the client keeps retrying and keeps getting the dummy feed over the course of several hours? It would clutter people's clients very quickly. This is a perfect use for the standard HTTP status codes, there's no reason to reinvent the wheel. 2021-11-11T19:41:12Z (#3w62djq) @ Your pod thinks that your other feed is an external feed at http://0.0.0.0:8000/user/darch2/twtxt.txt, try adding `--base-url https://yarn.algorave.dk` to your [command line options](https://git.mills.io/yarnsocial/yarn#web-app) for `yarnd` 2021-11-11T20:40:12Z (#ojngxmq) @ What ended up fixing the problem? 2021-11-11T20:45:09Z (#te2mlfa) @ is sharing diffs and @ is writing 600 word blog posts... What's next? 2021-11-11T20:46:46Z (#ojngxmq) @ Got to love it when things work themselves out. I like the theme on your pod, by the way. 2021-11-11T21:58:13Z (#te2mlfa) @ Looking forward to it. I know there's at least one PGP signed feed out there: https://domgoergen.com/twtxt/mdom.txt 2021-11-12T02:59:34Z (#k3mizra) @ Good idea. 2021-11-12T19:28:32Z (#hwssqiq) @ I just can't find the motivation to work on it. I really appreciate your help, though. I'll definitely be using your script as a template. 2021-11-13T00:48:42Z (#jefhwua) That's not a bad idea, but I'm sure it would perpetuate the near-universal assumption that there is a favicon at /favicon.ico on any website. I wrote a whole blog post about it: [Browsers: Please stop requesting /favicon.ico automatically.](https://mckinley.cc/blog/20210824.html) 2021-11-14T04:08:33Z (#5pcnfsa) @ *Nine* containers?!? What the hell does it do with them? A *gigabyte* of RAM? I don't even think my web browser is using that much right now! 2021-11-14T17:50:59Z (#lrmnw3a) @ Whenever I have some pictures I need to share with a few others, I just put them on a web page somewhere that isn't linked anywhere else and has `` on for good measure. Nobody I'm sharing it with has to sign up for anything, no entity outside my control is compressing the images, screwing with the metadata, or facially recognizing anyone, and you can just right click > save as if you want to download them. 2021-11-14T17:59:13Z (#lrmnw3a) I think it would be a much harder sell to get people on a weird social media service they've never heard of and encrypted feeds (as well as signed feeds) would make clients much more complex. I always have the anti-feature view, though. Maybe there's something I'm not seeing. 2021-11-14T18:04:34Z (#nfogdjq) @ I just don't have a good idea for one. 2021-11-14T21:26:23Z (#lrmnw3a) Reading this thread, I see two things:
1. The example of image sharing can easily be solved by creating a private file hosting service that doesn't suck like @ said
2. We are getting close to the original purpose of Facebook here. A social media service based on identities rather than accounts and designed for people who know each other in meatspace to connect online. Facebook already does what we're talking about well; it has strong access controls to only show your content to people you choose. The only problem, of course, is that Facebook is evil. 2021-11-14T21:49:32Z (#lrmnw3a) "Social media" can take several forms.
- A "Twitter style" open microblogging system that allows people to discard and create identities with little consequences
- A "Facebook style" closed-off system that is more focused on real people interacting with each other instead of their online personas
- An "Internet forum style" system that focuses on discussion above all else 2021-11-14T21:52:56Z (#lrmnw3a) Twtxt and Yarn are designed as "Twitter style" systems. Perhaps twtxt can be adapted to a Facebook style system with that kind of access control and end-to-end encryption. Perhaps the result would be incredible. I am skeptical, however, of the idea that it would mix well with the current twtxt/Yarn ecosystem built on openness. 2021-11-15T02:22:23Z (#k54moya) Heh. 2021-11-15T05:39:13Z They're all just data collection companies with an apparently legitimate service attached, but this one takes the cake. https://www.latimes.com/business/story/2021-11-09/column-trader-joes-parking-app 2021-11-17T23:34:21Z (#zqt2f5a) It's probably just a PR stunt like last time. 2021-11-18T22:19:40Z (#zqt2f5a) @ @ I'm talking about the independent repair program that @ mentioned. 2021-11-19T03:49:44Z RED ALERT: THE CAMPAIGN AGAINST MONERO HAS BEGUN
> And yes, you can argue that there are legal and moral reasons to use a privacy coin. But these coins are running up against the same problem as encryption and other technologies to protect privacy: They can’t allow for dissidents, activists, and people from marginalized communities to stay safe without also sheltering criminals and purveyors of hate.

https://slate.com/technology/2021/11/monero-privacy-coin-racists-cybercriminals.html
https://slate.com/technology/2021/11/monero-privacy-coin-racists-cybercriminals.html 2021-11-23T18:50:48Z New icons? I like them! 2021-12-01T06:48:07Z (#wt5j2xq) I am not familiar with the functionality of Telegram or Signal, but things I have heard about both make me skeptical of their entries in this document.
Signal requires a phone number to sign up, and I believe that you can connect it to your contact list on your phone to find other people using Signal. If this is the case, wouldn't they have to store at least a hash of your phone number? Hashed information is listed elsewhere in the document. 2021-12-01T06:48:15Z (#wt5j2xq) From what I've heard about Telegram, you have to explicitly enable end-to-end encryption with another person and you can't do that in group chats. Shouldn't that be listed in the document?
It's very likely that I'm wrong in all this, can anyone familiar with Signal or Telegram confirm? 2021-12-01T07:02:46Z (#hslaqhq) I'll dive into this some more tomorrow. It's 11 over here and my cognitive abilities are slipping. 2021-12-02T04:13:25Z (#qoqnqoq) @ Did you bypass the character limit? 2021-12-14T05:20:47Z [History of the browser user-agent string](https://webaim.org/blog/user-agent-string-history/) 2021-12-14T05:53:45Z (#nirzyka) @ It's the best thing I've read all week, hands down. 2021-12-20T22:59:42Z (#4zh3zgq) @ Terrific video! 2022-02-07T04:09:58Z Hello all, I haven't been here in a while. What's going on? 2022-02-07T04:33:04Z (#qsokywq) @ I've been well, thanks. Been spending a lot of time trying to airlift people off of centralized, proprietary communication services. It is not an easy task. I'm glad to see that Yarn is still growing, congratulations on getting on the Vultr Marketplace. How've you been? 2022-02-07T04:34:31Z (#a5rj62a) @ I knew their stock price was down, but I didn't know it was that sharp of a decline. Where's the champagne? 2022-02-07T05:12:42Z (#lr4nviq) @ Good for you, man. Are the mandates loosening up in your neck of the woods? 2022-02-07T08:13:53Z (#lr4nviq) @ Best of luck to you. I hope things continue to get better. 2022-02-08T20:34:27Z test 2022-02-08T20:36:13Z @ Watch out for websites reviewing VPNs because many of them are owned by the same companies that operate the VPN services. I use Mullvad and I've heard good things about iVPN. They're very similar. Both have Australian servers. Neither of them require any personal information. Both accept cryptocurrency. Both claim they don't keep logs. Both have GPLv3 official clients but support standard OpenVPN or Wireguard clients. Both also support port forwarding. Mullvad is a bit cheaper unless you pay for long-term service with iVPN's standard plan. 2022-02-08T20:38:15Z (#prnfq6a) I can't reply on # for some reason, sorry for splitting the thread like that. I don't know how the speeds compare between them, but I just tested 133Mbps down and 12.4 Mbps up without a VPN and 78.3/11.9 with a nearby Mullvad server. 2022-02-08T20:46:16Z (#prnfq6a) Correction: iVPN has Australian server. Singular. It's in Sydney. If that's an important factor for you, I would go with Mullvad. 2022-02-09T02:53:11Z (#qrkz47a) @ Owned by a 5 eyes-based company that is snapping up VPN services and review websites like Microsoft and video game studios. Proprietary client. Falsely frames what VPNs actually do. Don't fall for this. Subpoenas are mightier than hackers, anyway. 2022-02-09T18:58:35Z (#b5wanxa) @ @ Check out the [Ultimate Oldschool PC Font Pack](https://int10h.org/oldschool-pc-fonts/). Pixel-for-pixel recreations of any text mode PC font you can think of, and some of them include (custom) extra Unicode characters. The author [claims](https://int10h.org/oldschool-pc-fonts/readme/#legal_stuff) that his work is transformative since none of these fonts were ever originally distributed in modern font formats. They are all licensed under CC-BY-SA. 2022-02-14T21:39:11Z (#r5m3zxq) @ Joe is the alternative to corporate propaganda. His show is about having longform, genuine conversations with people and allowing the viewers to make their own decision, and there's a great deal of intellectual diversity in the guests. CNN brings a guest on for 30 seconds to agree with whatever the host just read off the teleprompter. 2022-02-14T22:40:55Z (#r5m3zxq) @ I didn't say that. Corporate media organizations on all sides are guilty of this. 2022-02-16T00:59:35Z Apparently Google is thinking about freezing their version number at 99 and putting the "real" 3 digit version in the minor version slot in their version numbering scheme. Why might they do this? You guessed it! User agent parsers! The [History of the browser user-agent string](https://webaim.org/blog/user-agent-string-history/) will definitely have to be updated if this ends up happening. 2022-02-16T03:19:43Z (#av3vtwa) @ This is the Mozilla blog post I heard about it from. I can't help but notice they spend more time talking about Chrome than Firefox here. https://hacks.mozilla.org/2022/02/version-100-in-chrome-and-firefox/
The Chrome hack is supposed to be a backup plan. I think it's more than likely they'll just tack the digit on like you'd expect. 2022-02-21T03:29:17Z (#djb7lbq) @ [Here](https://www.netsurf-browser.org/about/screenshots/)'s the screenshot gallery on their website demonstrating all the platforms it runs on. NetSurf is awesome! I'm surprised you haven't heard of it. It's a truly independent Web browser that uses its own custom rendering engine and focuses on portability and low resource usage. It supports most of HTML 4.1/CSS2 plus it has experimental JavaScript support. 2022-02-21T04:16:39Z (#7eain3a) @ The home page mentions OS X, maybe you need to compile it. 2022-02-21T04:22:18Z (#7eain3a) Fair enough. Its's not on Homebrew, but it is on MacPorts if you use that. https://ports.macports.org/port/NetSurf/ 2022-02-21T21:45:36Z Read 'em and weep.
🟩⬛⬛🟨🟨
🟩🟩🟩🟩🟩 2022-02-28T01:53:36Z (#wnb24da) The parent company of Antonov [made a statement](https://ukroboronprom.com.ua/news/rosiyani-znishhili-an-225-mriya-vona-bude-vidnovlena-za-kosti-okupanta) insinuating that they plan to finish the second AN-225 airframe. Even if Kyiv falls, I think it'll be finished anyway. There's a place for the AN-225 in the market, just not 2 of them. 2022-02-28T01:54:03Z (#wnb24da) > Russia has destroyed our "Dream", but the dream of a Ukraine free from the occupier cannot be destroyed. We will fight for our land and our home to a victorious end. And after the victory, you see, we will definitely finish our new "Dream", which has been waiting for this in a safe place for many years. Everything will be Ukraine!

I hope the second Myria will retain the yellow and blue stripes. 2022-02-28T02:12:18Z (#wnb24da) The Soviets started building a second one in the 80s for their space program but they lost the war and the Buran program was canceled before it was completed. The first was modified for cargo transport, and the second was kept in storage. There have been some attempts to finish it, but the demand isn't there. The first one only made about 20 trips per year and the Antonov CEO has [said](https://www.kyivpost.com/ukraine-politics/antonov-ceo-completing-one-more-mriya-aircraft-economically-untenable.html) it's just not economically viable to finish the other one. 2022-03-05T00:36:50Z (#mzccg4q) @ [It can](https://xmpp.org/extensions/xep-0206.html) :) 2022-03-05T00:47:00Z (#mzccg4q) @ It definitely has its problems, but I can't find a better alternative for my use case. I can give you a hand configuring Prosody if you'd like. 2022-03-06T20:21:39Z (#u65sl7a) @ I don't know how [far you want to go with the Web DE thing](https://98.js.org/) but you might find it simpler to use :target.
```

...
1 3 3
...
...
...

``` 2022-03-07T03:26:05Z (#tp7pfda) @ What window manager is that? I like it a lot. 2022-03-07T20:55:17Z (#tp7pfda) @ That's awesome, I might need to give it a try. 2022-03-08T05:25:26Z (#g5p2pva) @ I love seeing Yarn.social improve. Great addition! 2022-03-08T19:57:40Z (#dsky3ra) @ What's the point of a powerful desktop chip in such a locked down device with nothing but a touch screen and an optional keyboard? At least my Panasonic Toughbook CF-19 has the terrible keyboard built in and lets me install whatever operating system I want. 2022-03-09T04:06:38Z (#35kn2ia) @ Schools, at least here in the States, don't bother teaching people anything about computers. I took a "Computer Tech" elective, the only computer-related class available, in high school and it was just a digital art class. I would go across the hall from my graphic design class and do the same thing for another hour. An absolute waste of my time. 2022-03-09T04:08:03Z (#35kn2ia) @ We absolutely need a mandatory class on what computers do, what the internet is, etc. 2022-03-10T05:22:47Z (#pbxizha) @ What is this? I've spent several minutes on CyberChef trying to figure it out and I haven't gotten anywhere. 2022-03-10T05:36:28Z (#pbxizha) My best guess is a base64 encoded encryption key of some kind. 2022-03-10T05:41:56Z (#pbxizha) @ So it was encrypted data. I was close, but context was on my side. No need to apologize, welcome to twtxt.net! 2022-03-10T05:44:52Z (#h4g746a) @ @ With this crowd, how can you post some seemingly random data and expect people *not* to get curious? :) 2022-03-10T07:28:54Z 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 2022-03-10T07:30:24Z (#kg2ghea) https://gchq.github.io/CyberChef/
Remember: The wizard can help you with his Magic. 2022-03-10T20:15:28Z (#kg2ghea) @ Think outside the comment box: 2022-03-10T20:21:51Z (#cl7vera) @ I don't use the Brave browser but I use Brave search and I like it a lot. I don't think it tracks clicks like DuckDuckGo does and the results are usually quite good. 2022-03-11T04:32:36Z (#ooxps7q) @ The existence of [XEP-0277](https://xmpp.org/extensions/xep-0277.html) doesn't make XMPP a good platform for microblogging. Likewise, I don't think twtxt will make a good chat system. What if `yarnd` and a separate federated chat server could (optionally) share account information so your Yarn account credentials are used for a Matrix or XMPP account on the same server? 2022-03-11T04:39:53Z (#2xsbljq) This is a very direct and understandable answer to the question, from both of you. At risk of irony, I think one of you should copy this thread and host it somewhere permanently so we can reference it later. I would, but I wasn't involved in the conversation. 2022-03-11T22:23:26Z (#4shjsfa) @ See https://dev.twtxt.net/doc/metadataextension.html 2022-03-12T01:23:11Z (#kg2ghea) Is anyone interested in the puzzle? Is it just too difficult? 2022-03-12T01:39:40Z (#3bwkpna) @ I didn't know the rotation was already implemented in `yarnd`. Is there a way to see the full history of a feed? I don't see a `prev` metadata tag on yours. 2022-03-12T01:55:59Z (#kg2ghea) @ CyberChef is a tool that does all kinds of file conversion and you can make "recipes" that perform several operations in a row on the input. That string in the root post, which is exactly the twt length limit of this pod, is a string of text that has gone through several reversible CyberChef text operations. If you want to give it a try, you need to use the hints I've given in this thread, the tools available in CyberChef, and any information you uncover along the way to deduce the original string. To get you started, the first format is base64. `:` 2022-03-12T01:59:04Z (#3bwkpna) @ No worries. It doesn't affect me much, I'm just curious. 2022-03-12T02:02:34Z (#lmpza6q) @ It was really cool clicking on the link to the netbros.com pod and seeing my 28 second old post on twtxt.net at the top of the feed. That WebSub thing is great! 2022-03-12T03:48:49Z (#wtbgvea) @ I'm sorry, I have no idea what you're talking about. 2022-03-12T05:58:51Z (#kg2ghea) Base64 hints if you want them
For @: `VGhlcmUgaXMgYSBwYXNzd29yZCwgYW5kIHRoZXJlIGlzIG9ubHkgb25lIGZpbGUgaW4gdGhlIGFyY2hpdmUu`
For @: `VGFrZSBhIGxvb2sgYXQgdGhlICJGb3JlbnNpY3MiIGNhdGVnb3J5Lg==`
I definitely made this one too hard. If you want to try some easier ones, take a look in the JavaScript console of CyberChef. There's a whole series of these challenges made by the developers. `:` 2022-03-12T19:05:39Z (#kg2ghea) @ It's not a weekly thing. I'm not experienced making these as you can see. I just thought it would be fun. `:` 2022-03-12T19:15:55Z (#kg2ghea) @ It's right under your nose. [:](https://en.wikipedia.org/wiki/UGJ5YmFfKGNoYXBnaG5ndmJhKSNIZm50cl92YV9SYXR5dmZ1) 2022-03-12T23:39:41Z (#wtbgvea) @ Ah, yes. Glad it made you smile. 2022-03-13T02:19:45Z (#ef4r53a) @ Oh, that's clean. Nice setup. 2022-03-13T06:31:34Z (#razpnla) @ As long as people's complete post history is stored in their twtxt file(s), anyone with a client that isn't `yarnd` can see old posts. They can even reconstruct old conversations. There is no plausible deniability there, unless you're proposing we remove the non-cached posts permanently. I'm definitely not a fan of that. 2022-03-13T06:41:06Z (#ttofg7a) @ That's definitely the best minifigure-scale model of a real car I've seen. I might have to go find one of those. 2022-03-14T01:11:32Z (#najpaha) @ 30 seconds is reasonable. Even a little more would be fine, I think. It's only really annoying when someone's time is set so far into the future that it's effectively a "sticky" post at the top of the Discover feed for a while. 2022-03-15T02:26:36Z (#2cdijnq) @ I'm glad you found my idea compelling. I agree that the broker and client specifications shouldn't be lumped together. I also think there should be a clear separation between client-to-server and server-to-server connections. The distinction between sending a message (`POST http://montague.example/api/base/v1/post`) and delivering a message (`POST http://capulet.example/api/base/v1/inbox`) should absolutely be enforced by the specification. I didn't see that last night, but it became clear after thinking about it. 2022-03-15T02:34:46Z (#2cdijnq) The server operator should be able to blacklist certain hosts as well as disable s2s connections entirely if they don't want federation. If a client can POST inboxes without a broker in the middle of the chain, it's too easy to automate and too hard to prevent spam. 2022-03-15T05:49:45Z @ Re: Chat system, What if the base specification included a system for per-user arbitrary JSON storage on the server? Kind of like [XEP-0049](https://xmpp.org/extensions/xep-0049.html), but expanded upon. Two kinds of objects: public and private. Public objects can be queried by anyone, private objects cannot and must be encrypted with the user's private key. Public keys could be stored there, as well as anything else defined by extensions. Roster, user block list, avatar, etc. 2022-03-15T19:54:25Z (#5nagu7q) @ Yes, but I was thinking more along the lines of auxiliary data like contact lists. Message history might be better off with its own system that provides more powerful query options and pagination.
Do you think it would be feasible to encrypt the private object names as well? 2022-03-15T20:25:49Z (#funiitq) @ Oh, this is neat. I definitely need to get one of these at some point. Normally I would avoid being on the bleeding edge of hardware like this, but the DevTerm is fully upgradeable. You can even buy a Risc-V DevTerm kit and swap in an ARM based core module later, which absolutely blows my mind. 2022-03-15T20:43:05Z (#fkl353q) @ (200ms read)

Agreed. 2022-03-16T01:13:04Z (#5nagu7q) @ The way I picture this, and I may be way off from where you are, the client needs to be able to make the following requests for messages:
1. All messages from and to all users sent after X date (when starting up)
2. All messages from and to a specific user sent before Y date (when viewing history)

All of this would need to utilize pagination so we aren't sending 500 messages to a client all at once.
These query options could be added to the JSON object store I'm proposing, but I don't see how they might be used outside of storing messages. 2022-03-16T02:01:05Z (#5nagu7q) @ Wait, I've been assuming that one account = one private key. Is that not your intention? If the same private key is used on all devices, a new client should be able to see old messages. That's not the model of XMPP+OMEMO, and it may be a challenge to use mobile devices as well as "real" computers with the same account, but it wouldn't be insurmountable. If one account = one private key it makes the private JSON store much less complicated. It would streamline group chats as well, which is a problem for XMPP+OMEMO. 2022-03-16T02:40:17Z (#5nagu7q) @ I do the same with SSH keys and share that exception. I would also prefer to have a separate IM account for work. The only advantages I can think of to a device key setup are as follows:
1. You can verify that a device key belongs to the person to whom you mean to send messages. If you verify the keys with someone in person and suddenly start receiving messages from their account with a different key, you'll know something's going on.
2. It's easier to register new clients, because you can just type in a username and a password. 2022-03-16T02:46:35Z (#5nagu7q) If a username and a private key is all that's needed to sign in and there is no username/password/TOFU then an impersonation attack like that would be equivalent to the attacker grabbing an OMEMO private key from a trusted device, is it not? Point #<1 https://twtxt.net/search?tag=1> would effectively become irrelevant, right? Plus, how many people are *really* meeting up in person to verify their OMEMO keys? 2022-03-16T02:54:33Z (#5nagu7q) I have a very weak understanding of cryptography, I'm sure there's something I'm missing. 2022-03-16T21:15:01Z There are too many threads going, I can't keep up. Can someone catch me up on what's been going on here since last night? 2022-03-17T00:43:36Z (#yo2bebq) @ I tried both views in Settings and still couldn't make much sense of it. I'll check them out later tonight. 2022-03-17T20:44:35Z Ah yes, [email protected], my favorite Salty user. What is the actual goal of Cloudflare MITMing everyone to censor websites? If the owner of a website chooses to publish an email address, why can't he? If it gets scraped by bots and the inbox gets ruined forever, that's on him. Is it just to get people used to this sort of "voluntary" MITM attack? I put "voluntary" in quotes because I, the victim of this MITM attack, didn't volunteer, the owner of the website did. 2022-03-17T22:29:34Z (#rvufjpa) @ Kick and scream all you want, but you can't take down my local degoogled copy of pre-NYT Wordle with the post-NYT word list. 2022-03-18T05:11:54Z (#2q7r4xa) @ I don't think a lot of people realize just how much power Cloudflare has over the Web. Even we probably can't imagine the extent of it. @, thank you for turning that off. It was even [email protecting] version numbers at the bottom of the page. 2022-03-18T05:20:18Z (#2q7r4xa) I'm still seeing [email protected] on docs.mills.io, it's making it confusing to read the Salty specification. 2022-03-18T06:25:46Z (#kvnawmq) @ I'm having a hard time understanding this. If I wanted to create the ID `mckinley@mckinley.cc`, would I have to run an instance of the broker *on* mckinley.cc or could I use any broker server? If the latter is true, it's a little misleading to say I'm mckinley *at* mckinley.cc. 2022-03-18T06:53:39Z (#kvnawmq) @ It's misleading because my communications aren't coming from the server that the domain mckinley.cc points to. Here, I'm mckinley@twtxt.net because my twtxt feed is on twtxt.net. I wouldn't really be McKinley *at* mckinley.cc using Salty. I would be McKinley, somewhere else. All it would signify is that I am somehow affiliated with the domain. That isn't necessarily a bad thing, it's just strange to me and I've never seen a service do that. 2022-03-18T06:57:00Z (#kvnawmq) @ I'm sorry. At the moment, I'm set up for neither videos nor calls. I'm going to bed in a few minutes, anyway. 2022-03-18T21:28:59Z Glad you're here @, welcome to Yarn.social! 2022-03-20T00:56:11Z Hello from NomadBSD. I'm very impressed with this system. It's much more polished than I would ever expect a BSD to be. It has a huge library of software preinstalled, covering just about everything I do personally. It even has programs you wouldn't expect to be there by default like mpv, KeePassXC, mupdf, and qpdf. Firefox even comes with uBlock Origin preinstalled! 2022-03-20T02:22:16Z (#cgyalua) Deleted reply twts, I decided halfway through that I'm better off writing a blog post instead. 2022-03-20T04:01:58Z (#5chf2va) @ [Plan 9 from User Space](https://9fans.github.io/plan9port/) runs on just about anything POSIX-ish and includes Acme. 2022-03-20T05:29:47Z (#cgyalua) A blog post, as promised: [Thoughts on NomadBSD](https://mckinley.cc/blog/20220319.html) 2022-03-21T19:03:40Z (#32afhja) @ Thank you! 2022-03-22T01:23:45Z (#dl2zqpa) @ You guys are making incredible progress on this thing. I'll give it a try as soon as I can. 2022-03-22T01:33:03Z Hey @, are you still self-hosting your Git repositories? My repository archival script has been unable to pull from git.andrewjvpowell.com for some time and https://git.andrewjvpowell.com/ shows an nginx 502 error. 2022-03-22T05:46:06Z @ I think you changed a pod setting so external links would change to /linkVerify. I should be able to stop this with the "Link Verification" option in Settings, right? I even tried clearing cookies and logging back in and the option is definitely disabled for my account but the links are still changed. 2022-03-22T06:02:40Z (#lmypwla) @ @ I don't know what is and is not logged by default, but this makes it easy for a pod admin to track what his users click on. I stopped using DuckDuckGo when I learned that they do this. 2022-03-22T06:10:03Z (#lmypwla) Here is a regex rule for the [Redirector](https://github.com/einaregilsson/Redirector) browser extension that bypasses /linkVerify on any domain, not just twtxt.net. False positives are possible but extremely unlikely. https://ttm.sh/iaR.json 2022-03-22T06:21:07Z (#6z3uata) I know I tried removing the character limit in the inspector but I thought it didn't work and the server truncated my post. 1024 is a nice, round number. It probably shouldn't be much higher than that because at a certain point it goes from a "microblog" to just a "blog". 2022-03-22T06:36:11Z (#lmypwla) @ I trust you a lot more than the people who run DuckDuckGo. I see where you guys are coming from, I'm just very skeptical of the efficacy of this kind of system. People will get in the habit of clicking the big blue button immediately and then it's just an annoyance, offering no protection whatsoever. Not to mention it's a unique URL for each link that can easily be tracked by a pod admin. 2022-03-22T08:02:16Z (#lmypwla) @ I don't think you're being argumentative. I hope I'm not coming off as such either. I didn't consider mobile users, and something like this makes a lot more sense on a device that doesn't just let you hover over the link to see where it goes.
Sure, a pod owner could modify `yarnd` to track users, but this is has always been a very privacy focused service by default. Privacy focused to the point that it only stores a hash of the user's email address so it's impossible for a pod owner to see it unless the user attempts to recover his account. 2022-03-22T08:03:38Z (#lmypwla) @ On the desktop, at least, it seems like there is very little benefit. Anyone concerned with clicking on a malicious link will hover over it and check the bottom corner before clicking. Those who aren't concerned, even though they should be, will just click the big blue button no matter what. At best, it's an annoyance. At worst, it's allowing the pod owner to play Zuckerberg with his users. 2022-03-22T08:13:32Z (#lmypwla) @
> Thank you for your feedback and hopefully these features won’t be a deterrent from using Yarn.social.

You don't need to talk to me like a customer, let's just have a regular conversation. Your words won't make me leave or stay, and it will take more than a link verification prompt to get me to leave. I like Yarn a lot and I believe in the project. :) 2022-03-22T18:29:50Z (#u6vw7uq) @ @ Thank you. It's hugely appreciated. 2022-03-22T18:38:03Z (#3kwlwda) @ That's a good idea. If it's done in JavaScript, mobile devices can be detected using `navigator.userAgent`. Depending on how far you're willing to go with it, the entire prompt can be constructed locally, so the URL is never revealed to anyone else. 2022-03-23T04:58:10Z Does anyone know of some kind of plaintext file format to store metadata on a collection of other files? My documents folder has outgrown the directory hierarchy and I would like to eliminate the hierarchy entirely, storing metadata on everything in one human and machine readable file. 2022-03-23T07:55:08Z (#nsgxtsa) @ I've been toying with the idea of creating my own format for a couple of days. In my head it's always been an application of XML, but I just realized that, since I want the ability to add multiple tags to an entry, I might be better off using a GNU Recfile or a Plan 9 `ndb` file for more powerful query options. 2022-03-23T19:42:02Z (#p5u3t2q) @ You should be able to disable it in your account settings 2022-03-23T19:42:43Z (#hnoihra) @ And so it begins. Congratulations @, you've created a real social network! 2022-03-23T19:44:42Z (#nsgxtsa) @ That's an interesting concept, but I need to store other information like online sources, original filenames, date retrieved, etc. 2022-03-26T02:23:29Z My good trackball will only scroll in one direction. Took it apart, blasted it with air, nothing. There was some corrosion on a few components near the scroll sensor, I must have spilled some water on it at some point. I'm trying to get used to a regular mouse again. I think I'm worse with my old Logitech G502 now than I was with my trackball when I first got it.

What are the odds I can get Kensington support to send me a new logic board? 2022-03-26T02:31:40Z (#ftrg2fq) @ @ Thank you very much, this solution is the best of both worlds. I turned it on just to try it out, and the pop up is really well done. It feels very natural. 2022-03-26T02:48:10Z (#bi4fnva) @ Interesting read. The phone system is fascinating to me because it's a bunch of different standards that have been duct taped together for decades and the pile just keeps growing. It's amazing it works as well as it does. 2022-03-28T01:24:47Z (#mmshy2q) @ I use Arch Linux almost exclusively. I like to do periodic reinstalls on my main machine, though, and I've already decided I'm moving to Artix next time. For now, even with Systemd, it's a pretty minimal system. No display manager, OpenDoas instead of Sudo, etc.
@ Do it, you won't regret it. 2022-03-28T01:30:06Z (#mmshy2q) My VPSes run Ubuntu. Once I get a home server set up, I'll probably install Artix on that too. 2022-03-28T19:29:10Z (#zfpe5qa) @ It is inexcusable to force people to link the computer that they paid for with a cloud service. Even if there are [super hacky ways to avoid it](https://www.askvg.com/tip-how-to-install-windows-11-with-local-user-account/) people should not stand for it. That goes for Chrome OS too, which is arguably worse because it's Google spying on you and not Microsoft. Although, a Chrome OS machine is much less useful than a Windows machine, so I guess it balances itself out. 2022-03-28T19:33:38Z (#zfpe5qa) I'll bet, if polled, a vast majority of Windows users either are neutral or actively dislike that they have to connect their OS to their Microsoft account. Nobody actually likes it, except Microsoft. What legitimate features does that bring, anyway? 2022-03-29T21:52:12Z (#fowh3ua) I'm getting better at using GIMP :) ![Future of Ubuntu's logo](https://twtxt.net/media/ucBpmo8DxHLxQ2HC8tyx9R.png) 2022-04-01T20:03:46Z @ It pains me to see a beautiful free software project like this collaborate using Google Meet. I can't attend the meeting, but would you like to use my Mumble server? There's no video, but there is high quality, low latency audio. 2022-04-01T20:15:29Z (#hfvas7a) @ This one got me for a second. I saw it on a forum just after midnight, so I didn't register what day it was just yet. https://rockylinux.org/news/future-is-rocky-gnu-hurd/ 2022-04-02T01:32:23Z (#xl3ygta) @ 
> There was another Browser-based (no server) Web RTC thingy

I remember seeing that too. You are welcome to use my Mumble server, it's been sitting idle for weeks. I've had success with it talking to people all over the world. The server is located in the eastern part of the US and it has plenty of bandwidth. I don't keep logs either.
You don't have to register to the server or anything. Just join with any nickname and it will prompt you for the server password.
Address: liberty.mck.cx
Port: 64738 (Default)
Password: yarn.social 2022-04-02T18:42:25Z (#xl3ygta) @ Teamspeak is proprietary and you're required to pay for the software if you want more than 32 users or multiple virtual hosts. Mumble has none of those limits, and it's BSD licensed. 2022-04-02T20:18:06Z (#mq56zra) @ @ I had to manually write an external feed URL for him :) 2022-04-03T18:29:31Z (#wexnrrq) @ This doesn't seem that bad. It's impossible to make a free-to-use video hosting service profitable, but they're giving it a try. Odysee, in my opinion, is better than YouTube and no worse than Rumble. What makes it a scam, in your view? The weird useless cryptocurrency? 2022-04-03T18:34:04Z (#4qa4yhq) @ Bookmarked! Shame it's written in JavaScript, though. 2022-04-17T00:35:33Z (#npmef2a) @ Congratulations! 2022-04-17T01:09:02Z (#nv7jn7q) A landline phone, or even a mobile phone that never leaves the house, mitigates this kind of tracking almost entirely. I haven't carried my cell phone regularly for years. It just stays at home. Anyone with the means to track me this way already knows where I live. Besides, I don't give anyone my phone number unless I intend to talk to them and I've avoided two factor authentication pretty well. When I decide to start using a service that requires two factor authentication over SMS, I'll use one of those anonymous services that take Monero. 2022-04-17T01:40:28Z (#nv7jn7q) @ That's admirable and a good point. My phone is really only used for calls and the occasional text message, and I don't even connect it to my home network. 2022-04-17T03:33:04Z I keep getting Cloudflared when connecting via Tor. :/ Creating a new circuit fixes it for a while, though. 2022-04-17T04:28:54Z Test message 2022-04-17T04:30:52Z (#lmyjfma) I can make my own post, but whenever I try to reply to #<3p5hajq https://twtxt.net/search?tag=3p5hajq> Cloudflare blocks me. Weird. 2022-04-17T04:33:15Z (#lmyjfma) Okay, it must be keyword based. I lost the reply text and I had to remake it to post it here and Cloudflare blocked me. 2022-04-17T04:36:57Z (#3p5hajq) @ I appreciate that but it's not necessary. I'm using *the amnesic incognito live system* anyway, so it would be a chore to enable the admin *secret text* and edit *the hosts file* on every boot. Most *orange cloud*-enabled *common net* sites I try to use over *the onion router* give me a lot more trouble. 2022-04-17T04:38:30Z (#3p5hajq) Last thing I changed was "password". Can I say it in a twt on its own? 2022-04-17T04:39:54Z (#3p5hajq) Okay, I cannot write the location of the hosts file on Unix-like systems in a twt or else Cloudflare gets angry at me. That is very, very strange. 2022-04-17T04:47:12Z (#3p5hajq) /etc/ 2022-04-17T04:47:26Z (#3p5hajq) /etc/asdf 2022-04-17T04:52:16Z (#3p5hajq) Alright, I don't want to spam anymore. I could reference /etc/ and a meaningless file in /etc/, but I was unable to reference the passwd file. Just another Cloudflare MITM job. 2022-04-18T22:57:37Z (#3p5hajq) @ I tried several different Tor circuits before I logged in and didn't get a captcha once. Let's see if I can talk about /etc/hosts now. 2022-04-18T22:57:50Z (#3p5hajq) @ Success! 2022-04-20T01:26:02Z (#bjiz2ta) Could someone please do me a favor and copy the list of affected models and upload it somewhere more accessible? Lenovo.com blocks Tor traffic, it's not archived on archive.today, and even if I use an open web proxy the page seems to require JavaScript to load the content. 2022-04-20T03:41:44Z (#zf5dtfq) @ @ The best Web browser is NetSurf, but it's not a practical daily driver yet. ;) My problem with Webkit based browsers like Otter Browser or Surf is a lack of powerful extension support. Some of them come with an integrated content blocker but I use extensions for more than that. Once one of them has an equivalent to uBlock Origin and uMatrix and lets me make regex redirect rules (like `^https?://([A-Za-z0-9\-]+\.)?medium\.com/(.+)$` -> https://$1scribe.rip/$2) then I'll consider using it daily.
Until then, I think Librewolf and ungoogled-chromium (with the Chromium Web Store extension) are the least worst. 2022-04-20T22:12:36Z (#zf5dtfq) @ It's worth mentioning that Brave and Waterfox Classic are spyware according to Spyware Watchdog:
https://spyware.neocities.org/articles/brave.html
https://spyware.neocities.org/articles/waterfox_classic.html
Both have a spyware level of "High". For Waterfox Classic, the article is titled "Waterfox Classic" but it frequently mentions "Waterfox". It's unclear to me which browser is being tested for the article, but if one is spyware, the other probably is too.
ungoogled-chromium is Not Spyware, and Librewolf barely has a spyware level of "Low" because it makes a request to the Mozilla safe browsing service and tries to auto-update uBlock Origin. Those requests can be disabled.
https://spyware.neocities.org/articles/ungoogled_chromium.html
https://spyware.neocities.org/articles/librewolf.html 2022-04-20T22:14:17Z (#zf5dtfq) Apologies for the formatting issues there, I can't delete or edit the post without enabling JavaScript. 2022-04-20T22:25:11Z (#bjiz2ta) @ Appreciate it. 2022-04-21T02:13:51Z (#q7asy7q) @ Cloudflare strikes again! 2022-04-21T22:26:35Z (#gzqvmdq) @ Hear, hear! 2022-04-22T22:56:31Z (#bjiz2ta) @ Sorry, I didn't. What about them? 2022-04-23T03:13:42Z (#bjiz2ta) @ Nice! Have fun with them, man. 2022-04-23T04:18:43Z (#cvfefxq) @ Sure. I'll sit in on the meeting, but I would rather not enable a microphone or camera at the moment. Can I participate in a text chat or IRC? 2022-04-23T21:03:36Z (#cvfefxq) @ That's about it. It was a good conversation, I'm looking forward to the next one. 2022-04-24T03:03:04Z [Making the jump from Xorg to Wayland - mckinley.cc](https://mckinley.cc/blog/20220423.html) 2022-04-24T04:03:18Z (#wdfcqqa) @ What do you mean? 2022-04-24T04:53:47Z What news aggregators do you all use? I am looking for one that has no integrated web engine and an easy way to open an entry in a Web browser or in mpv. I don't want to have to choose one or the other. 2022-04-26T01:42:44Z (#rynwiqq) @ In fairness, Discord does include features that are unavailable on IRC and the barrier to entry in mitigating that, like setting up a bouncer, is much higher than signing into Discord. @ is right, though. Discord is a privacy eroding centralized pile of crap. There isn't a single worthwhile, libre alternative to Discord, but a Mumble server combined with an XMPP server comes close. 2022-04-26T03:44:03Z (#rynwiqq) @ Discord has a highly efficient core design. IRC-like text channels and Mumble-like voice channels (+video/screen sharing), all in one hierarchy, with a good permissions system tying it all together. There's also a DM system and you can add people to a simple group chat. All of that technology was available before Discord, but I think they were the first to stitch it all together in a coherent, intuitive manner.

I used Discord for several years, but I finally broke away from it entirely about a year ago. The only Free alternative other than Matrix that comes close, at least that I know of, is Revolt. I have several gripes about the project, though, that I won't dive into right now. There won't be federation, for one. 2022-04-27T06:57:11Z (#rynwiqq) @ For people like us, they are. But, in order to create alternatives for the general public and lift them out of the walled garden, we need to understand why so many people chose Discord in the first place. 2022-04-27T06:58:50Z (#j3v736q) @ I forgot about Fosscord. They've made quite a bit of progress since I last looked into the project. Maybe I should give it a try. 2022-04-28T04:37:15Z (#qhzlyaq) @ Absolutely. Many people will admit that Discord isn't a good thing to use but they use it anyway because their friends are on there. I've seen many such cases. 2022-04-28T05:15:03Z (#ntdlo7q) @ I would argue that the good outweighs the bad when it comes to viable cryptocurrencies like Monero. The ability to anonymously send real money in any amount to any person on the planet within an hour, all the while completely bypassing fiat currencies and the global financial system, is a good thing for society.
I like [Goldbacks](https://goldback.com/) too for a similar reason. :) 2022-04-28T05:55:12Z (#l3fhzqq) Thank you all for the suggestions. I settled on Newsboat. You can set a macro to make mpv the browser, open the selected item in the browser, and change it back. It's a bit of a hack, but it works. In ~/.newsboat/config:
```
macro m set browser "mpv --no-terminal %u &" ; open-in-browser ; set browser "xdg-open %u" -- "Open in MPV"
```
It even appears in the help menu with a helpful description.

@ @ @ I hope you gentlemen don't follow my RSS feed then. It has no content because I write it by hand. :) 2022-04-28T06:39:50Z (#vqofyyq) :) 2022-05-01T00:06:34Z (#36pvy3q) @ Aw man, did I duck out before it got interesting? 2022-05-01T02:00:59Z (#kpmv52a) Funny, I just installed a Vim keys extension for my web browser. No turning back now! 2022-05-01T02:15:11Z (#kpmv52a) @ Extension support. I use them, well, extensively.

@ I see lots of things with vi keybindings, but I can't recall seeing a program advertise "emacs keybindings". Emacs does have keybindings, though. Lots of them. 2022-05-01T02:18:58Z (#kpmv52a) Man, I keep trying to use vim keys in the text box. It's hurting my brain! 2022-05-01T02:42:07Z (#btcevjq) @ Everything I can find is either for Firefox versions <57 or it literally opens Vim to edit text inputs. The extension I'm using, Tridactyl, literally opens Vim if you install the "native client" which is a separate piece of helper software that goes with the browser extension. Tridactyl is Firefox only, though, and you seem like a Chromium man to me. 2022-05-01T03:13:16Z (#btcevjq) @ I meant to say "native messenger". That's what Tridactyl calls the helper program, and it's written in Nim. It's needed for certain features that can't be implemented in a standalone browser extension. https://github.com/tridactyl/native_messenger 2022-05-01T05:25:02Z (#kpmv52a) @ Vimperator is for versions <57 only. I am using [Tridactyl](https://github.com/tridactyl/tridactyl) on Librewolf and it works well. 2022-05-02T03:26:59Z (#kpmv52a) @ Librewolf has very good defaults in my opinion, and they have [excellent](https://librewolf.net/docs/faq) [user documentation](https://librewolf.net/docs/features) detailing what is different from upstream Firefox. It has a spyware rating of [low](https://spyware.neocities.org/articles/librewolf.html) from Spyware Watchdog because of a few benign outgoing connections, and the FAQ is [honest](https://librewolf.net/docs/faq/#does-librewolf-make-any-outgoing-connections=) about what those connections are and why they're made.

Sure, I could use Firefox and spend hours of my time disabling all the garbage they put in, testing it with mitmproxy, and keeping up with changes that need to be made every update. I've done it before, but I would rather use something that is reasonably secure by default and isn't trying to get me to sign up for a VPN or donate money to some political cause. 2022-05-02T03:28:17Z (#kpmv52a) Wow, I've completely hijacked this thread. Sorry @! 2022-05-02T21:19:00Z @ Re: Odysee; I found a self-hosted frontend for Odysee that doesn't track you. It's like Invidious, but for Odysee instead. https://codeberg.org/librarian/librarian 2022-05-02T21:46:49Z (#ahy5owa) @ Don't even need to read the privacy policy. ![](https://twtxt.net/media/AqSFnHUDNXHZ5wJPFsvwYT.png) 2022-05-03T02:07:45Z (#3fxfygq) @ LBRY is supposed to be some kind of decentralized media sharing thing, and Odysee is the web front end. It all uses a crappy crypto coin for some reason, and the whole thing is effectively centralized like every other "decentralized *x* using blockchain" project. Plus, Odysee tracks you. Just about anything's better than hosting on YouTube, though. 2022-05-03T02:11:54Z (#rmv337a) @ ? 2022-05-04T00:38:36Z (#2rdfxha) You had me scared there. I thought you were using Electron but then I checked the repo. It looks really nice. 2022-05-04T00:45:00Z (#3fxfygq) @ Tell that to the people making the videos. It doesn't make much of a difference to me, anyway. I watch everything in mpv with yt-dlp. 2022-05-04T01:35:15Z @, I think it's about time I try out Salty. I followed from the instructions on the website, and it [didn't go too well](https://clbin.com/DV5Ja). I suspect it's because the local path from my JSON file (`/01G268YYHWGNYT9M1M9760KP83`) on mckinley.cc doesn't return anything because I don't have a broker set up there.

I seem to have registered mckinley@mills.io when experimenting with it, but I didn't know until recently because of [a very confusing output](https://clbin.com/xMDKz). That account does exist, though, because it shows up when using `salty-chat lookup`.

TL;DR: I want to try Salty. I'm very confused. Would you mind if I use your broker for now? Is there a way to do that and still be mckinley@mckinley.cc? If not, could you delete mckinley@mills.io so I can register it again? That private key is long gone. 2022-05-04T02:53:10Z (#5535xyq) Thank you for the thorough reply. It looks like I set my SRV records correctly and registered on your server with my domain, but I get the [same error](https://clbin.com/pE8ND) when I try to send you a message.

How can I completely remove salty-chat and its dependencies and start over from scratch? 2022-05-04T03:18:20Z (#5535xyq) > I assume you created the Well-Known JSON config file on your web server at the top-level of your domain?

Yes, it was there for previous attempts, created exactly as `salty-chat make-user` told me to each time. I have since deleted that file from my web server, hoping it would fix the crash on the current attempt, but no dice. 2022-05-04T03:42:36Z (#5535xyq) @ No need to apologize, and take your time. I know Salty is still in its early stages, and this is a project you're doing for free in your spare time. I wish I could help out with the code. If there's any more information I can give you that would be useful, let me know. 2022-05-04T05:07:03Z (#5535xyq) @ I've gotten that far already, no? I'll play with it some more tomorrow and report back.
```
[mckinley@t430 ~]$ salty-chat lookup mckinley@mckinley.cc
{"Addr":"mckinley@mckinley.cc","User":"mckinley","Domain":"mckinley.cc","Key":"kex1npfcevm7f5u9uhtswa804ph9lp2t6h9ettl3us4jmzk500ylja5snm55en","Endpoint":"https://salty.mills.io/inbox/01G26EQ0WPA6CDCFAVQ5HEJBH3","Avatar":"https://salty.mills.io/avatar/cb89306651329866dccaeca35b54355b284c2be2bbed9b9d473f1d73ba747dcd"}
``` 2022-05-05T02:07:12Z (#rmv337a) @ [#3fxfygq](/conv/3fxfygq)? 2022-05-05T02:15:45Z (#5535xyq) @ I removed my JSON file from my web server because I'm not running a broker on that domain. I'm using @'s broker at https://salty.mills.io/ and I have my SRV records set to point there. https://clbin.com/pE8ND 2022-05-05T02:22:30Z (#5535xyq) @ already has an issue made. We can move discussion over there. https://git.mills.io/saltyim/saltyim/issues/169 2022-05-05T02:31:37Z (#5535xyq) @ I'm not seeing any SRV records for your domain. Are you running a broker at eapl.mx? 
```
[mckinley@t430 ~]$ dig srv _salty._tcp.eapl.mx +short
[mckinley@t430 ~]$ dig srv _avatars._tcp.eapl.mx +short
[mckinley@t430 ~]$ salty-chat lookup me@eapl.mx
{"Addr":"me@eapl.mx","User":"me","Domain":"eapl.mx","Key":"kex1gj5gxswkp6dl7p5whydx7hx98kunllgrzmf4s2zydnnud7k79epsk5dxag","Endpoint":"/01G25MCTZ4WMFF6B36CGDKDX4T","Avatar":""}
``` 2022-05-06T19:12:21Z (#vgkap2a) @ I should write a blog post about this 2022-05-07T00:29:35Z (#77b5iaa) > blocking wikipedia

[Wikiless](https://codeberg.org/orenom/wikiless) has it covered. :) 2022-05-07T00:33:09Z (#5535xyq) @ Awesome, I'll update and re-test soon. 2022-05-07T00:33:47Z (#vgkap2a) @ Sounds very interesting, I'd love to hear more about it. 2022-05-07T00:44:51Z (#tiw3dgq) @ It just so happens I've been writing a [blog post](https://mckinley.cc/blog/20220506.html) about this very topic. What's your setup like? Let's compare notes. :) 2022-05-07T00:45:47Z Watching Online Videos Like a Pro Using Free Software: https://mckinley.cc/blog/20220506.html 2022-05-07T01:02:20Z (#c6c5msq) @ We're talking about watching online videos in MPV. Check the root of the root of this thread. Sorry for the confusion. 2022-05-07T01:18:52Z (#wnizuga) @ Yes, it's just a proxy. There are a [few projects](https://en.wikipedia.org/wiki/Wikipedia:Database_download#Dynamic_HTML_generation_from_a_local_XML_database_dump) that do something similar to what you're talking about, but nothing I know of is actually designed to "self-host Wikipedia" from a downloaded database dump. 2022-05-07T01:20:25Z (#c6c5msq) @ In fairness, you forked the thread the second time. ;) 2022-05-07T01:52:34Z (#77b5iaa) @ Fair enough. 2022-05-07T03:45:58Z (#wp6qgva) @ @ It wouldn't be so useful for e-mail, but Tor hidden services (.onion services) punch through NAT and don't require any open ports to run. You don't need anything to run a Tor hidden service except for a machine to run it on. The only downsides are speed, ping, and the relative difficulty for others to use the service.

No matter what, if you're going to self-host on your home network, take proper security precautions. Look into isolating the server on a VLAN so it can't talk to the other devices on your local network, minimize bloat, enable a firewall, and keep your software updated to start. 2022-05-07T06:13:22Z (#2creh2a) @ That IKEA manual made me chuckle. 2022-05-07T20:33:39Z (#nsmsvfq) @ @ [Nitter](https://github.com/zedeus/nitter) instances provide RSS feeds for twitter accounts: https://nitter.42l.fr/elonmusk/rss 2022-05-07T20:40:18Z (#womrxga) @ You should follow your self hosted feed at [/feeds](/feeds) so this pod becomes aware of that feed. That should make it so new posts are displayed on the global [Discover](/discover) feed. 2022-05-07T20:46:05Z (#tiw3dgq) @ What makes it better? Does it support Twitch? I don't see it in the [Supported Sites section](https://github.com/soimort/you-get#supported-sites=) 2022-05-07T20:47:46Z (#beiy3sq) @ No, I don't do anything on mobile. Sorry. 2022-05-07T20:48:52Z (#zitnbvq) @ I hope you get paid by the hour... 2022-05-07T20:55:56Z (#q5upftq) @ You should read my main feed, @ :)

I tested it out for a few minutes. It seems about the same to me, but with a few small UI changes. The big thing I was hoping for was a current version of OnionShare. I learned later that it's not a Tails problem, the newer versions just haven't been packaged for Debian: https://gitlab.tails.boum.org/tails/tails/-/issues/18466 2022-05-08T00:32:35Z (#q5upftq) @ Yeah, I think it's unlikely that the Tails maintainers will do it on their own. They have enough on their plate already. 2022-05-08T00:53:56Z (#vp2aicq) In my view, it's a discoverability thing that will only really expose itself when the network grows in size. Right now, it's still feasible to read every new post from just about every feed in the world. When the network grows and it gets impossible to keep up, we'll have to learn about new feeds organically. Reposting can help with that. It's at least something to think about. 2022-05-08T01:05:03Z Cross-Browser Deviation Annoyance of the Day: https://mckinley.cc/blog/20220507.html

Just a short one today. I was going to add it on to yesterday's but I didn't want to make it longer. cc @ 2022-05-08T01:07:32Z (#clv7woa) cc @ @ 2022-05-08T21:49:41Z (#clv7woa) @ It is not automated, but it isn't too hard to do it by hand. It would be much harder if I wasn't using an efficient text editor.

@, @ is right, it's linked on the blog index page. https://mckinley.cc/blog/rss.xml

I'll get `` tags on each of the posts soon, I just haven't gotten around to it. 2022-05-08T22:10:06Z (#5wk62iq) @ Glad I could help :) 2022-05-09T04:32:04Z (#dq4wraq) @ That's a good question. I updated the blog post with the answer. :) 2022-05-09T04:42:28Z (#tevsyxq) @ Did you see this twt? I think it could spur an interesting conversation. 2022-05-09T18:03:36Z (#dq4wraq) @ Yes, I looked into that yesterday but I want to gather some more information first. 2022-05-10T01:06:32Z (#hjjsl3q) @ cc @; Both changes are *long* overdue. 2022-05-10T02:22:42Z (#hjjsl3q) Yarnd changed my twt! I said ` tags`, not just `tags`. 2022-05-10T03:48:30Z (#selbsga) @ They're pushing the mobile version which is written in C++. 2022-05-10T08:32:11Z Just encountered feeds.twtxt.net when looking at [random sites on Marginalia Search](https://search.marginalia.nu/explore/random). 2022-05-10T09:23:51Z (#zpbvgrq) @ It's a search engine that favors text heavy websites, those that don't have megabytes of JavaScript and CSS. https://memex.marginalia.nu/projects/edge/about.gmi 2022-05-10T23:44:34Z (#wicjamq) @ I am able to load it using yt-dlp/mpv. Not sure about the Web UI. 2022-05-12T22:26:16Z Posting from WebPositive 1.2-alpha on Haiku R1/beta3 2022-05-12T22:27:56Z Posting from Otter Browser 1.0.02 on Haiku 2022-05-12T22:30:11Z Posting from NetSurf 3.10 on Haiku 2022-05-12T22:48:10Z (#5hr6s3q) @ I'm glad. I got a Haiku VM set up, so I decided to see what the best option was for Yarn. Web+ works wonderfully, even features requiring JavaScript work well. The only problem I've run into is that icons don't load.

Otter Browser doesn't respect the user's theme properly and all the text is serifed, NetSurf supports just enough CSS to make it almost unusable, and Falkon won't launch. 2022-05-12T22:58:36Z (#5hr6s3q) The little numbers that show you how many posts are in a thread are also misaligned. Here's a screenshot. ![Screenshot of the previous post viewed in WebPositive on Haiku](https://twtxt.net/media/5oCEPpfeyBMRZgafBrGjph.png) 2022-05-12T23:05:55Z (#5hr6s3q) @ Fair enough. That's why I didn't open an issue about it. Web+ is based on WebKit, but there aren't sufficient dev tools so it's annoying to troubleshoot on. Maybe later I'll try a nightly image of Haiku and see if the situation improves. 2022-05-13T05:00:52Z (#me6v34q) @ Another spam bot! 2022-05-13T19:10:39Z (#me6v34q) It's either a test, a honeypot, or both. Maybe it has something to do with #? This twt used an `` tag instead of Markdown to create a hyperlink. Is that intended @? 2022-05-13T19:15:06Z (#fm7xdga) @ @ Obligatory link to https://www.gnu.org/fun/jokes/ed-msg.html 2022-05-13T19:19:09Z (#ej6bbpq) @ I get this occasionally on twtxt.net. I don't know why it happens. 2022-05-13T21:11:05Z (#me6v34q) @ Sure, but I mean is it intended for yarnd? Test Bold text? 2022-05-13T23:40:25Z (#me6v34q) @ Interesting. Good to know. 2022-05-14T02:36:42Z (#fm7xdga) @ It's not my blog post, I just thought it was an interesting read. 2022-05-14T02:56:55Z (#fm7xdga) I do enjoy using `ed` sometimes. It forces me to keep lines short and markup concise. 2022-05-14T04:56:35Z (#obnz45a) @ Awesome, excellent job as always @ and crew! 2022-05-14T04:58:33Z (#obnz45a) @ Thanks @! 2022-05-14T06:05:31Z (#vfeciea) @ [Whoogle](https://github.com/benbusby/whoogle-search) :) 2022-05-14T07:10:37Z Great chat today on the weekly video call. We stayed mostly on topic, too!

Some things we talked about, for anyone who missed it. I hope nobody minds that I'm sharing.

* Spoiler/NSFW tags in Markdown
* Ideas for a potential browser extension [951](https://git.mills.io/yarnsocial/yarn/issues/951)
* A strange bug in the web client regarding open ended HTML tags [952](https://git.mills.io/yarnsocial/yarn/issues/952)
* What encrypted feeds might look like
* Privacy respecting multi-factor authentication 2022-05-14T07:12:30Z (#nhsmfgq) @ I *think* it just searches Google on your behalf and scrapes the page for results. 2022-05-14T07:43:13Z (#nhsmfgq) @ That's covered in the fine print. You could route it through a remote server, but even if you don't you still get the other benefits like no AMP links and DDG-style !bangs.
> \- No tracking/linking of your personal IP address\*\*\*

> ...

> \*\*\*If deployed to a remote server, or configured to send requests through a VPN, Tor, proxy, etc. 2022-05-14T07:51:00Z (#d6tq4aq) @ It currently starts at 10 PM on Friday in the Pacific time zone. If it's at all possible, I would prefer it not be any later. 2022-05-14T19:15:37Z (#ca5g52a) @
> Don't attempt searching for me - it is completely useless. Cryptocurrency transactions always remain anonymous.

Yeah, I guarantee you that this guy isn't taking the proper precautions to deal in Bitcoin anonymously. Especially knowing he's [been using the same wallet for at least a week](https://www.bitcoinabuse.com/reports/18RcoKZDfxhWYFKBHEPB2ynGv1tVmCu3Kj). Luckily, there [haven't been any takers](https://blockstream.info/nojs/address/18RcoKZDfxhWYFKBHEPB2ynGv1tVmCu3Kj) so far. 2022-05-16T04:20:18Z (#h3ku6mq) @ What about a flex box or two? 2022-05-19T02:21:38Z (#j2hiwdq) @ It's [AOSC OS/Retro](https://wiki.aosc.io/aosc-os/retro/intro/); a modern Linux distribution for old hardware. 2022-05-20T21:50:06Z It's been a slow couple of days here in Yarnspace. What's everyone up to? 2022-05-21T01:06:24Z (#lz6e7ra) @ Best of luck to you. I'm in XSLT land, myself. 2022-05-21T01:54:45Z (#bw5c54a) @ I bet my site would look fine :) 2022-05-21T02:11:31Z (#kuu4t7q) @ I'll be there! 2022-05-21T02:52:39Z (#bw5c54a) @ As a matter of fact, I do. http://mckinley.cc/ 2022-05-21T06:35:20Z Good call tonight, touched on some interesting topics.
* Use cases for encrypted feeds ([#770](https://git.mills.io/yarnsocial/yarn/issues/770))
* Trying to reproduce "Bad Request" when replying to a twt ([#ej6bbpq](/conv/ej6bbpq))
* Categorization of feeds (Lists) ([#937](https://git.mills.io/yarnsocial/yarn/issues/937))
* Media uploads using `yarnc`
* Handling NSFW content ([#944](https://git.mills.io/yarnsocial/yarn/issues/944)) 2022-05-26T06:44:36Z (#mxvnwca) @ If you're using an instance of `yarnd` and you want to know what I'm talking about, I guess you'll have to check [my website](https://mckinley.cc/twtxt/2022-may-aug.html). :) 2022-05-28T02:32:42Z (#3y63eoa) @ Nothing unfortunate about that. Have fun, man! I'll "host" if anyone else wants to chat. Same bat-time, same bat-peer-calls-instance. 5 AM UTC, https://meet.mills.io/call/Yarn.social 2022-05-28T05:45:58Z (#3y63eoa) @ Nobody's shown up, unfortunately. I'm going to call it. See you gentlemen next week. 2022-05-29T02:13:11Z (#tw6w4jq) @ PSA: Don't use Spotify. https://stallman.org/spotify.html 2022-05-30T00:55:24Z (#xi7nivq) @ That's a great idea, and I don't think you're overengineering too badly. There's already a [Gitea issue](https://git.mills.io/yarnsocial/yarn/issues/951) with ideas for a potential browser extension. I put the idea in that thread. Feel free to comment on it if you have something to add. 2022-05-30T03:33:44Z ![Excerpt from the UNIX-HATERS Handbook: Sex, Drugs, and Unix](https://twtxt.net/media/P9Es4aaCNoxxU4H2gKa9Fd.png) 2022-05-30T03:53:57Z (#4ab7fcq) @ It's from the [UNIX-HATERS Handbook](https://en.wikipedia.org/wiki/The_UNIX-HATERS_Handbook) ([pdf](https://web.mit.edu/~simsong/www/ugh.pdf)). It's a hilarious read, I can't recommend it enough. 2022-05-30T04:03:03Z @ @ I was in the [#4ab7fcq](/conv/4ab7fcq) conversation sending that reply to you and I got the "Bad Request" error we were talking about.

I pressed the back button on my browser, because I was at https://twtxt.net/post instead of the conversation page. My message was still in the reply box. I copied the text to the clipboard, pressed Ctrl+Shift+R (to reload with a clear cache), and tried to send the message again. Same error. I went to my timeline at the root of the pod, clicked "Reply" on your twt, pasted the message in, and it worked as normal. I'm using LibreWolf 100.0.2, which should be analogous to Firefox 100.0.2 2022-05-30T05:52:02Z (#eql45zq) I tried to upload an image from that thread's /conv/ page and I got an `alert()`: `An error occurred uploading your media: 400 Bad Request`. The error persisted after a hard reload. Could be related.

I also couldn't post this twt from this conversation's /conv/ page. I had to go back to the timeline. 2022-05-30T05:53:29Z (#4ab7fcq) ![Excerpt from the UNIX-Haters Handbook: Sendmail Mangled Headers](https://twtxt.net/media/Ts7KrF8wo4kUoiC8oj8HRa.png) 2022-05-30T05:56:16Z (#eql45zq) I was able to upload the image from the timeline. I seem to be stuck in the `Bad Request` state. I'm unable to post from /conv/ pages, but I can post from the timeline and from Discover. Is there anything I can do while I'm in this state that might help squash this bug? @ 2022-05-30T06:10:46Z (#eql45zq) Test post from [/twt/tbw5boq](/twt/tbw5boq) 2022-05-30T06:11:44Z (#eql45zq) It seems to be isolated to the /conv/ page. 2022-05-30T07:16:32Z (#eql45zq) @ Here's my full bug report. I hope it can be of use. https://git.mills.io/yarnsocial/yarn/issues/957 2022-06-02T00:27:54Z (#hr4b4tq) @ [Scribe](https://sr.ht/~edwardloveall/scribe/) bypasses this BS and all the tracking and spyware as well. The official instance is [scribe.rip](https://scribe.rip/). 2022-06-02T06:36:02Z (#hr4b4tq) @ I dug around in the code and it looks like Medium has a GraphQL API that is used by Scribe. See [/src/clients/medium_client.cr](https://git.sr.ht/~edwardloveall/scribe/tree/main/item/src/clients/medium_client.cr). Scribe takes the JSON returned by the API and turns it into HTML.

[/src/clients/local_client.cr](https://git.sr.ht/~edwardloveall/scribe/tree/main/item/src/clients/local_client.cr) includes a cURL command that queries the API in a similar way to Scribe. The ID is the unique looking alphanumeric string in the URL. For this post, it's `aad7095d70a`. 2022-06-03T02:49:26Z An Acceptable Use for JavaScript: https://mckinley.cc/blog/20220602.html 2022-06-03T03:09:35Z (#pkbh5oq) This one isn't as technical as some of my posts can be. I hope this will be the opener of a series about bookmarklets. I have at least 2 more post ideas for it. 2022-06-06T05:25:16Z (#3s2cdqq) @ An Android phone is just a computer, and any computer can get malware. The damage that can be caused depends entirely on the level of access that the malware has. It is not all created equal.

Windows' S Mode is an attempt by Microsoft to condition their users into thinking that the manufacturer of their operating system should control what software they are and are not allowed to run. Like Apple and iOS.

If you must use Windows, it is always worth it in my opinion, S Mode or not, to obliterate the default install (and the PC manufacturer's partition containing all *their* spyware) and install the real version from scratch. With Windows 10, the embedded license key for S Mode was valid for the real OS too. I'm not sure if the same is true for 11. 2022-06-07T06:56:56Z (#3r5tkwa) @ That's an interesting effect. It could be made usable on modern graphical browsers with a few CSS tweaks. I don't know if it could be done without adding a bunch of irrelevant garbage at the bottom of the page for simpler browsers, though. 2022-06-07T07:12:38Z (#wh5ryka) @ Monitors and TVs, especially CRTs, can show a ghost image of an object if it was left on the screen too long. [Here](https://en.wikipedia.org/wiki/Screen_burn-in#/media/File:Emerson-McDonalds_CNN_Burn-In.jpg)'s an example. The CNN logo is partially visible in the corner of a TV that constantly played CNN, even during a commercial. Burn-in isn't as much of a problem on modern LCDs, though.

@'s website shows a man page and some source code, partially transparent, behind the main text, like those were burned in to the display. 2022-06-07T07:29:13Z (#3s2cdqq) @ Android has a lot of abstraction and security features to prevent access to certain things, but there's always an exploit to get around some of it.

Switching to a Linux based operating system like Ubuntu is not a guarantee that you won't get malware. The only security advantage you get is the fact that you're using a very uncommon system. Security through obscurity isn't real security. That said, it is more profitable to target systems that are used by more people.

The most difficult thing about switching to GNU/Linux is finding replacements for the software you use on Windows. If you want to look into it further, I would recommend Linux Mint instead of Ubuntu. The default user interface would be more familiar to you as a Windows user, and the parent company behind Ubuntu has introduced "features" that spied on their users in the past. https://www.gnu.org/philosophy/ubuntu-spyware.en.html 2022-06-07T07:33:30Z (#3s2cdqq) If you choose to switch, you will run into bugs and other problems. But, if you're willing to seek them out, the fixes are likely available online. The best advice I can give you is to keep backups of your important files. 2022-06-08T17:59:28Z (#3htkduq) @ I believe there is a domain whitelist for inline images that is set on a per-pod basis. Welcome to Yarn, by the way. 2022-06-08T18:11:17Z (#fabjnoq) @ I've only used recent versions for a short time, and it's pretty terrible. The right click menu in the file browser is what really got me. It has been reduced to just a few options. Most of the things you would actually want to do have been moved to tiny, hard to understand icons with no labels that are hard to differentiate from one another because they use the same few colors. The rest of the menu is an extra click away, like you're not supposed to do anything more complicated. The Windows file manager is now worse than Finder, in my opinion. At least Finder has labels for the right click functions. 2022-06-10T03:44:22Z (#fabjnoq) @ I would recommend staying on 10 for as long as possible. 11 feels more like a toy operating system in which you're not supposed to do anything more complicated than web browsing. It's a pattern that's been going on since Windows 8. 2022-06-10T03:45:32Z Is the weekly video call on for tomorrow? I missed it last week. 2022-06-11T04:51:25Z (#2g63vtq) LibreWolf all the way.

Obligatory links to Spyware Watchdog for all the browsers mentioned so far:
- Brave: [High](https://spyware.neocities.org/articles/brave.html)
- Opera: [EXTREMELY HIGH](https://spyware.neocities.org/articles/opera.html)
- Chrome: [EXTREMELY HIGH](https://spyware.neocities.org/articles/chrome.html)
- Edge: Unrated (but come on, what do you expect it to be?)
- Firefox: [High](https://spyware.neocities.org/articles/firefox.html)
- LibreWolf: [Low](https://spyware.neocities.org/articles/librewolf.html) but the documentation is [honest](https://librewolf.net/docs/faq/#does-librewolf-make-any-outgoing-connections=) about what the connections are and why they are made 2022-06-11T06:25:51Z A great chat after a couple of weeks off tonight with @, @, and @. Some things we talked about:
* Making Goryon available on F-Droid [yarnsocial/app #132](https://git.mills.io/yarnsocial/app/issues/132)
* COVID measures, including working from home
* The garbage being churned out by the software industry
* Domain name choices ;)
* The state of Salty IM, specifically the app 2022-06-11T18:52:38Z (#abmjeva) @ Oh no! I wasn't subscribed to your Atom feed! I'll fix the problem now. 2022-06-11T19:22:44Z (#weiy6wq) @ That's a great point. I remember [this](https://interconnected.org/home/feed) RSS feed that uses an XSLT stylesheet to make it presentable to newcomers. It links to https://aboutfeeds.com/, which is okay but I personally disagree with some of the wording and software choices. It also uses some unnecessary JavaScript served from Cloudflare's CDN.

If I agreed with that website a little more, I might add a link to it on my blog's index page next to the RSS feed. Perhaps I'll write something similar myself.

> Do they do that in the first place or do they just consume what someone else posted on Twitter?

For a lot of folks, it's 100% social media. If they don't see it there, they don't see it. They only see what their preferred social media services want them to see. 2022-06-11T19:24:41Z (#ixsqiza) @ I would argue that it went to email newsletters, *then* social media. I don't think many people read email newsletters anymore. 2022-06-12T04:17:33Z Defining a Favicon for a Bookmarklet: https://mckinley.cc/blog/20220611.html 2022-06-12T23:38:57Z (#ji42lkq) @ They can be more secure or not. It depends on how long it is, just like a string of random characters. You can also add some random special characters into the passphrase to throw off an attacker.

The main benefit of a passphrase is the relative ease at which it is memorized. A good, long passphrase with a couple of special characters thrown in is quite secure. The list of words that you made your passphrase out of might be public, but the attacker probably doesn't know which one you used unless you tell him. 2022-06-12T23:39:08Z (#4nbgc4a) @ I like it! 2022-06-12T23:41:42Z (#6rnoowa) @ I like that ASCII art at the root of your gopherhole. :) 2022-06-14T21:28:14Z ![Context Menu Hell: A lesson on how not to design user interfaces with Microsoft](https://ttm.sh/wdp.png) 2022-06-18T04:28:18Z (#b6537wq) @ I'll be there. 2022-06-18T06:47:28Z Meeting notes for tonight. Definitely an interesting talk tonight with @ and @. I think Yarn.social might have come up once or twice. :)
* ISP shenanigans, including
 * Port restrictions
 * IPv6 adoption
 * Reliability
* [Sandstorm](https://sandstorm.io/), the self-hosting system @ is working on
* Consuming social media via e-mail
* Programming languages as an indicator of program quality
* Pine{Time,Phone}
* "Sideloading" 2022-06-18T06:54:14Z (#vyeupqa) @
>These items will expire on 2022-06-25 07:23:16 +0200.

Interesting. A simple, expiring, JavaScript-free image hosting system. Did you make it? Is the source available? 2022-06-18T07:40:41Z (#vyeupqa) @ Bookmarked! I thought the page layout looked familiar. 2022-06-18T20:26:11Z I think this is the first time I've seen Yarn.social mentioned in the wild. https://news.ycombinator.com/item?id=31789501 2022-06-21T07:08:25Z Aw man, Cloudflare's back up. 2022-06-21T07:29:26Z (#mk5vznq) @ Heh. Cloudflare was down too. https://news.ycombinator.com/item?id=31820635 2022-06-21T07:31:44Z (#mk5vznq) @ Oh, that's refreshing. From your reply, I was thinking it was both. 2022-06-22T22:24:43Z Sounds familiar... https://farside.link/nitter/TwitterWrite/status/1539640956915290112 2022-06-23T05:20:39Z (#ix5mbfa) @ How long does the battery last? I'm skeptical of electric yard equipment like that. I had to borrow an electric string trimmer a few weeks ago. Piece of garbage! It struggled to cut through anything, and the battery died in less than 20 minutes. I don't think it was a real inexpensive one, either.

I'll have my real gas one (that would cut your leg off) running by the time the weeds come back. 2022-06-24T22:01:02Z @ Hey, long time no see. How've you been? 2022-06-25T03:33:09Z (#vzwh5ba) @ Count me in! 2022-06-25T03:33:59Z (#cy4gccq) @ uLinux? 2022-06-25T03:44:27Z (#vzwh5ba) @ No worries. I'll host if anyone is interested. https://meet.mills.io/call/Yarn.social, 5 AM UTC 2022-06-25T03:49:50Z (#6bwqvpq) @ No, I haven't. mckinley.cc points to a web host that wouldn't let me host a broker. I've got a VPS and some other domains, I just haven't done it.

I couldn't figure out the client, anyway. I couldn't see my messages, and when I run `salty-chat read` I only got one message at a time. I haven't touched it in a long time, though, so maybe things improved. 2022-06-25T03:50:17Z (#cy4gccq) @ Interesting... 2022-06-25T06:18:52Z Great conversation with @ tonight. Some things we talked about:
* Goryon being taken off the Google Play Store
* The woes of uppercase ls and Iowercase Ls
* De-Googling Android
* The Google Glass and how it forced you into the walled garden
* iOS and privacy
* Privacy legislation and the extent to which people know about the spying
* Creepy Amazon stores
* The new issue of Lab6 (https://lab6.com/3) 2022-06-25T06:55:56Z (#cwdgedq) @ I usually take notes during the call, but today I just went back and skimmed my messages after you hung up. 2022-06-25T19:45:54Z (#cwdgedq) @ We used the meet.mills.io Peer Calls instance, and I didn't run into any problems. I used Ungoogled Chromium. How was it for you @? 2022-07-02T05:56:35Z (#n6h4lfa) @ Sorry, it totally slipped my mind. I'll be there next week.