For Facebook tracking Brave white-lists
According to Brave developers, it's white-listed due to causing Facebook login to break if blocked.
See issue #1108 on Github
The fediverse is a public forum.
Your posts are only as secure as the admins of every instance that your home server federates with, in terms of private and followers-only messages.
If you're going to talk about sensitive information, keep it to Signal or other secure 1-on-1 channels.
Assume that everything you post to the fediverse, is being scooped up by multiple gov agencies around the world.
The Milan scrape was only notable because they made their findings public.
If a university scraping feeds did it, it's safe to assume other, bigger organizations have been doing it for much longer.
A happy ending to the Better Blocker saga
TL; DR: Apple have been in touch and offered us a way to migrate to our new not-for-profit without impacting the experience of existing Better Blocker (@better) customers.
All went well, my backups are working 😅
Re: actix-web maintainership crisis
I have two simple mantras which establish my philosophy here:
1. YOU are responsible for your dependencies.
2. Open source participants are volunteers and owe you nothing.
It was never Nikolay's job to vet actix-web for you, nor did it become his job when the library became popular, nor does invoking "security" change anything in the slightest. Your dependencies are your responsibility. Responding with vitrol, anger, or hate when failing to uphold this responsibility bites you in the ass is just being a jerk.
User entitlement is totally unjustified and will burn out maintainers faster than almost anything else. I don't stand for it. If any other maintainers out there are struggling with this, please send me an email: email@example.com. I'm sympathetic to your cause and I can likely lend some pertinent advice.
So, SourceHut is not hosted in anyone's cloud. I own all of the hardware outright and colocate most of it in a local datacenter.
I just built a new server for git.sr.ht, and boy is she a beat. It cost me about $5.5K as a one-time upfront cost, and now I just pay for power, bandwidth, and space, which runs about $650/mo for *all* of my servers (10+).
Ran back of the napkin numbers with AWS's price estimator for a server of equivalent specs, and without even considering bandwidth usage it'd cost me almost TEN GRAND PER MONTH to host JUST that server alone on AWS.
AWS is how techbro startups pile up and BURN their investor money.