I will be starting the installation of Mastodon v4.1.1 for all Masto.host servers.

Each instance will go down for about 30 seconds during the upgrade installation.

v4.1.1 introduces some fixes and improvements. You can read the full log here github.com/mastodon/mastodon/r…

One of the improvements has a compatibility issue with OpenStack Swift and I will be doing a temporary work around, as I describe here: github.com/mastodon/mastodon/i…

Any questions, please let me know.

v4.1.1 archive download fails with OpenStack Swift object storage · Issue #24146 · mastodon/mastodon

Steps to reproduce the problem Using OpenStack Swift object storage, request an user archive and attempt to download it. Expected behaviour Download to happen Actual behaviour Something went wrong ...

^GitHub

Ihr nutzt ein solches Gerät?:
- Samsung Android der Serie S22, M33, M13, M12, A71, A53, A33, A21, A13, A12 und A04,
- Vivo-Smartphones der Reihen S16, S15, S6, X70, X60 und X30,
- Googles Pixel 6 und 7

Dann deaktiviert vorsichtshalber mal WLAN-Telefonie und VoLTE in den Einstellungen. Patches sind erst teilweise verfügbar.

Wir habe es hier mit einer "Internet-to-Baseband Remote Code Execution" (RCE) zu tun. Ausführung beliebigen Codes ohne dass der Nutzer das merkt. 👇

heise.de/news/Nicht-nur-Samsun…

Nicht nur Samsung-Smartphones: Exynos-Chips mit teils kritischen Zero-Day-Lücken

Googles Project Zero findet Sicherheitslücken in Samsungs Modemchips für Smartphones. Für die Ausführung externer Software wird nur die Telefonnummer benötigt.

^{Frank Schräer (heise online)}

#RIP Lance Reddick, TV star known for ‘The Wire’ and ‘Fringe,’ dies at age 60

latimes.com/entertainment-arts…

Lance Reddick dies: 'The Wire' and 'Fringe' star was 60

Lance Reddick, who graced TV screens as Cedric Daniels in 'The Wire,' has died of natural causes, a representative told The Times.

^{Alexandra Del Rosario (Los Angeles Times)}

Google's handling of the Samsung Exynos modem RCE vulnerability is frankly insane. Summary:

- Internet to baseband modem remote code execution, all that's required is knowing the target's phone number
- Fix has been published in March update, but this is not available on all affected phones
- Workaround is to disable VoLTE and Wifi Calling, but the ability to disable the former has itself been disabled

In other words, the only current defense is airplane mode.

9to5google.com/2023/03/16/goog…

Google: Turn off VoLTE, Wi-Fi calling due to Exynos vulnerability

Google found severe vulnerabilities with Exynos modems used on the Pixel 6 and Samsung phones that warrant disabling VoLTE & Wi-Fi calling...

^{Abner Li (9to5Google)}

Librsvg 2.56.0 is out! This is the first release in the new stable series, ready for GNOME 44.

gitlab.gnome.org/GNOME/librsvg…

2.56.0 - stable · GNOME / librsvg · GitLab

#942: Fix crash when XML...

^GitLab

A new issue of #ThisWeekInGNOME is now online!

#87 Editable Shortcuts
thisweek.gnome.org/posts/2023/…

#GNOME #TWIG

The end of Dendrite polylith (not the end of Dendrite!!), a major release for hookshot, and the rust sdk getting more features every day. That, and much more happened this week in Matrix!

matrix.org/blog/2023/03/17/thi…

This Week in Matrix 2023-03-17 | Matrix.org

^Matrix.org

Vous vous êtes toujours demander ce que vous auriez fait durant la montée du fascisme ?

Exactement ce que vous faites maintenant.

(image via @vincib)

L'outil #Mobilizon de l'association lyonnaise #Framasoft est une bonne alternative éthique aux événements #Facebook. Je suggère à celles et ceux qui voudraient organiser des mouvements de grève, des blocages et toutes sortes de manifestations contre la politique de notre gouvernement de s'en emparer sans attendre !

mobilizon.fr/

#logicielslibres #injustices
#reformedesretraites #liberté #egalite

#AndroidAppRain at apt.izzysoft.de/fdroid today with 14 updated and 2 new apps:

* Settings Database Provider: allow other apps to edit all parameters in android settings.db database
* Thumb-Key: A privacy-conscious keyboard made for your thumbs

Enjoy your #free #Android #apps with #FDroid and the #IzzySoftRepo

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with F-Droid. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github).

^{IzzyOnDroid App Repo}

We've just reached 400⭐ on Github and Castopod v1.2 is out 🚀

You can now host your podcast files on any S3 compatible storage!

+ download counts of episodes for better insight
+ health check route for monitoring

And bug fixes!

Grab your Castopod on castopod.org/

Castopod | Your Free & Open-source Podcast Host

Castopod is a free and open-source hosting platform made for podcasters. Engage and interact with your audience whilst keeping control over your content.

^castopod.org

Here is how the Purism team is improving the Chats app. We want it to be the everyday “1 to 1” and “small groups” messaging app for both SMS/MMS and the more private end to end encrypted IP conversations🎉

puri.sm/posts/toward-matrix-su…

Jdu s kůží na trh. Na nové doméně jsem spáchala nový web.

rodokmen.info

Vítám Vás! - RODOKMEN - GENEALOGICKÉ SLUŽBY

Jste-li na tomto webu, patříte zřejmě k těm, kteří chtějí poznat historii svého rodu. Jména rodičů, jejich sourozenců, prarodičů… tím to zpravidla končí. Jen málokdo zná jméno babičky za svobodna, o sourozencích prarodičů ani nemluvě.

^{menya (RODOKMEN - GENEALOGICKÉ SLUŽBY)}

Say what you want about Firefox, but this is the kind of good surprise after an update that comfort me in my opinion that Firefox is the greatest mainstream browser.

The translations quality is understandably not on par with Deepl or Google Translate, but it doesn't leak what I'm reading to a third party.

And most importantly: it also works for people who are not experts with computers.

One more reason to recommend it to friends & family.

Stick a fork in it, it's done. My network is finally rebuilt to a single physical server hosting a pile of VMs. After 2 days File History finally did its thing. I'll still almost certainly switch away, but at least I'm backing up to a remote ZFS volume in the meantime. Next up, probably in a week or two, is automating off-site backups to rsync.net using zfs send.

Proxmox's web UI is a pile of inaccessible, but I'm super pleased with the command line so far. Yesterday I spun up a small virtual server for Audiobookshelf, and had the whole thing up and running in my network and integrated with backups in about 10 minutes. Next I need a couple small Windows VMs for CI which, well, at least I'll only have to set those up once and clone them, so there's that silver lining.

Two things going on that may be related:

1) Mastodon new user count is up to about 1000 per hour for the last day. This is way up from the recent low hundreds.

2) Reddit r/Twitter is full of complaints that Twitter feeds are now not showing followed accounts, replaced by right wing politics and even porn.

Getting tweets... from people that i dont follow and dont know at all >>> reddit.com/r/Twitter/comments/…

Did twitter change its algorithm completely? >>> reddit.com/r/Twitter/comments/…

#twittermigration

!!! UPDATE YOUR PHONE NOW !!!

RCE exploit

Samsung Galaxy phones including those in the S22, M33, M13, M12, A71, A53, A33, A21, A13, A12, and A04 series
Vivo phones including those in the S16, S15, S6, X70, X60, and X30 series
Google Pixel 6 and 6 Pro, Pixel 6a, Pixel 7 and 7 Pro
Any wearables that use the Exynos W920 chipset
Any vehicles that use the Exynos Auto T5123 chipset

Project Zero reported 18 vulnerabilities in Exynos modems in late 2022 and early 2023. Four of the vulnerabilities, including CVE-2023-24033, involve internet-to-baseband remote code execution
Tests conducted by Project Zero confirm that those four vulnerabilities allow an attacker to remotely compromise a phone at the baseband level with no user interaction, and require only that the attacker know the victim’s phone number. With limited additional research and development, we believe that skilled attackers would be able to quickly create an operational exploit to compromise affected devices silently and remotely.

Project Zero is making a “policy exception to delay disclosure for the four vulnerabilities that allow for internet-to-baseband remote code execution.” This is “due to a very rare combination of level of access these vulnerabilities provide and the speed with which we believe a reliable operational exploit could be crafted.”

9to5google.com/2023/03/16/goog…

Google: Turn off VoLTE, Wi-Fi calling due to Exynos vulnerability

Google found severe vulnerabilities with Exynos modems used on the Pixel 6 and Samsung phones that warrant disabling VoLTE & Wi-Fi calling...

^{Abner Li (9to5Google)}

"Peter Thiel started the bank run. All of his companies got their money out. Most of their competitors did not get their money out. Many of those competitors might not have survived the week of the FDIC hadn’t stepped in. ...

"I’m not saying he nefariously intended to bring the bank down in order to gain an advantage over his competitors. ... But the practical outcome would have been a massive, literal bank error in Peter Thiel’s favor."

davekarpf.substack.com/p/three…

Three thoughts on Silicon Valley Bank

This was almost a literal bank-error-in-Peter-Thiel's-favor

^{Dave Karpf (The Future, Now and Then)}

Hey all, if you have a Google Pixel 6/7 or a Samsung phone: Disable VoLTE and Wi-Fi calling until this issue is patched: 9to5google.com/2023/03/16/goog…

tl;dr: Tests conducted by Project Zero confirm that those four vulnerabilities allow an attacker to remotely compromise a phone at the baseband level with no user interaction, and require only that the attacker know the victim’s phone number. With limited additional research and development, we believe that skilled attackers would be able to quickly create an operational exploit to compromise affected devices silently and remotely.

Google's Project Zero usually makes vulnerability reports public after 90 days. This is an exception because it goes directly from internet to baseband-level (tl;dr: the second OS inside your phone that powers the LTE/5G modem) remote code execution. This is morally equivalent to getting code running on your WiFi card.

Here is a list of the most likely affected devices:

• Samsung Galaxy phones including those in the S22, M33, M13, M12, A71, A53, A33, A21, A13, A12, and A04 series
• Vivo phones including those in the S16, S15, S6, X70, X60, and X30 series
• Google Pixel 6 and 6 Pro, Pixel 6a, Pixel 7 and 7 Pro
• Any wearables that use the Exynos W920 chipset
• Any vehicles that use the Exynos Auto T5123 chipset

Helpfully, the baseband is a binary blob of uninspectable firmware that users can't inspect or prove hasn't been tampered with.

Google: Turn off VoLTE, Wi-Fi calling due to Exynos vulnerability

Google found severe vulnerabilities with Exynos modems used on the Pixel 6 and Samsung phones that warrant disabling VoLTE & Wi-Fi calling...

^{Abner Li (9to5Google)}

@Tutanota ich vermisse den Vergleich zwischen #Tutanota und #Mailfence

tutanota.com/email-comparison

Best email provider: A comparison

Create a new email address after checking out alternatives in this best email comparison.

^Tutanota

Koukám, že na TikToku je už i české Uloz.to.

tiktok.com/@uloz.to