well it wasn't a rabbit hole after all, just had one piece missing to see the whole picture
TruthSocial, Fediblock, pol adjacent
As you may have seen in the news today, Trump's media team has set up their own social network "Truth Social".
What they aren't admitting is it's actually just a Mastodon instance with all the Mastodon branding removed, including all of the messages acknowledging that it is FOSS, as required by the software's free open source licence. This is breaking the terms of the licence, and is essentially stealing the software from the volunteer community which made it.
This kind of behaviour cannot be accepted by anyone who believes in FOSS. Keeping to the requirements of a FOSS licence is fundamental to building software together. If powerful people get away with stealing FOSS, people may be reluctant to build FOSS in the first place.
Hopefully someone will take legal action, but in the meantime we can block these instances in case they try to federate:
Remember this vulnerable sushi delivery site? XSS wasn’t a real issue. They use sms for authentication. And guess what. You have unlimited number of attempts to guess 4 digits numerical password
Reported this bug to support, I really hope it will be fixed soon. Can’t believe you can find such a stupid vulnerabilities in a wild
Just found stored #XSS on my favorite sushi delivery website. Should I report to support right away or try to get it executed by the admin? Wish they would have a bug bounty program
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!