InEnduringGrowStrong

@InEnduringGrowStrong@sh.itjust.works

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Something Bizarre Is Happening to People Who Use ChatGPT a Lot⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
An LLM is like taking to a rubber duck on drugs while also being on drugs.
⁨Comment⁩ on ⁨Musk 'Pressured' Reddit CEO to Silence DOGE Critics, Leaving Moderators Outraged: Report.⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
It’s kinda lemmy lore I guess.
Beans was a wave of shitposts from about 16 months ago where poeple kept posting a bunch of beans in various forms and the whole feed was mostly beans.

You’ll also stumble upon the “3 days no poop” thing where someone asked a question in asklemmy I think about how to avoid shitting for 3 days.
I think they later deleted their account, but they were very mysterious about why and people genuinely came with ideas for them and it snowballed into its own thing.

Unrelated, but similar to the poop knife, if only in the inside joke / lore kinda thing.
⁨Comment⁩ on ⁨Musk 'Pressured' Reddit CEO to Silence DOGE Critics, Leaving Moderators Outraged: Report.⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Grab some beans, make yourself at home.
⁨Comment⁩ on ⁨Anyone else getting Nicoled a lot lately?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Yep.
Sorry about that.
We’ve been banning them but it’s hard to determine whether a 10 day old account with no other activity will suddenly start sending PMs tomorrow.

I doubt anyone would go through the effort of typing the spammed URLs from a picture… but just in case: Don’t
They’re also probably harassing whoever’s pictures those really belong to, so donpt associate the person in the pictures with the actual spammer too much…

I’ve banned another one this morning, a 10 day old account that started spamming a few hours before.
Banning all lurkers doesn’t make sense and current lemmy tools are… lacking… to put it lightly.

I’ve been working on and off on different ways to address this, ideally without also poring through everyone’s PMs all the time.
Lemmy PMs are NOT private, nothing not End to end encrypted is. Still, I’d rather not go through everyone’s messages to spot those.
I won’t go into too much details because they’re likely to be reading this and other threads discussing methods to get rid of them.

My next step is something that needs admin access to the database, as opposed to something through the API, which makes it less convenient to setup through the bot, just a few extra steps.

FYI, we’re also currently locally removing all PMs from banned accounts, something that’s only been added to lemmy in 0.19.10, but we do have a workaround in place for that until we upgrade again.

In the meantime, reporting also works, even though I’d rather nip it in the bud a bit more.

Peace
⁨Comment⁩ on ⁨Why aren't there mass protests in the USA?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Well yes, media was one of the first pillars of democracy to be captured.
⁨Comment⁩ on ⁨Disposing of failed HDDs⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Warrantied drives still fail, they just happen to ship you a replacement.

Commercial drive trashing solutions are basically a smaller, fancier version of the mechanism in a log splitter.
You could probably rig a sketchy drive wedge/bending thing with a pump jack rather easily.
Wear PPE.

The odds of someone taking a failed drive and transplanting the platters to a working drive is pretty low to begin with.

Me? I don’t have tons of drives to destroy, so I just unscrew the thing, get the platters out and smash those.
⁨Comment⁩ on ⁨Can I try an alternate android version without nuking my phone?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Disclaimer;:My experience on this is from 10+ years ago on HTC’s Legend, Moto’s Droid 3, and Samsung’d S5.
Back in the day, I’d switch between custom ROMs and stock by simply booting into TWRP (or it’s predecessor which name’s I forgot, probably CWM or Philz) and restoring a backup.
Switching between backups was easy enough, unrooting/unhacking the locked bootloader not so much.
Obviously, anything you did inbetween said backups was gone for non cloud based apps.

I imagine if you have a phone with a proper bootloader unlock it’s likely easier than one which needed to bootstrap itself using kexec or other shenanigans.
⁨Comment⁩ on ⁨Opening Lemmy in the morning and seeing dozens of unread comments in your inbox makes you think: what the heck did I say yesterday?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
You might have received one but we usually delete them pretty quickly. We’re either doing an ok job at fighting spam, or I’m keeping her to myself.
⁨Comment⁩ on ⁨What information does SJW log from its users? For how long is the respective information kept?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Thanks for chiming in.
Yea, in itself that’s nice enough, but that means in some fringe cases, your IP info might be in the database longer than I thought, or worse more often than I thought.
In your case, you current login tokens are from forever ago, but there’s also very few of them, so the database has your IP address from 2 points in time in the last year.

In my case, I login multiple times a day (Firefox mobile cookie bug + sometimes testing things in private windows) and so the database had my phones IP info at several hundred points in time, which isn’t too great. (Until I changed my password)

Whatever IP you had a few months ago is mostly moot, whereas a detailed history of my IP over the last year is more info than I care for.

Ideally, I think it’s something users should have control over. Like some sites where you can see your other current logins and revoke them.
Or maybe have the option to set your max token age in your settings.
As far as I know, these aren’t implemented in lemmy.

As is, manually forcing the expiry on people without their consent isn’t too great because some apps might break until they log back in, which might not be handled gracefully in all apps, as well as be annoying to people like you.
In your case, since you’ve logged in so few times, I’d argue the token not expiring is maybe more private for you because your IP info is so out of date as to be mostly useless.
In my case, the tokens not expiring meant every new login painted a very detailed history.

I’ve yet to figure something that would make sense for everyone.
⁨Comment⁩ on ⁨What information does SJW log from its users? For how long is the respective information kept?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
So I’ve just tested something and it seems lemmy devs haven’t set a default expiry time for the login jwt tokens, or it’s something stupidly long.
Logging out clears the cookie from your browser, but not in the server database, which isn’t atypical and mostly fine, or at least would be fine if the server’s expired sooner than later.

Just to be sure, I just tested that a password change does indeed purge those from the database, so that works at least.

I’ll try and see what we can implement locally (hopefully without breaking everything) to purge these more frequently.
Removing these faster also means forcing people to re-enter their credentials more frequently.
I can’t find anywhere to configure that, neither in the instance settings nor in user settings, which probably means it’s whatever lemmy devs set as default.

Anyway, thanks for the question, because it’s dumber than I thought.
⁨Comment⁩ on ⁨What information does SJW log from its users? For how long is the respective information kept?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Most of it should be covered in here:
sh.itjust.works/legal

Most of the content is public by nature, things like posts, comments, modlog, etc. are kept basically forever. Your settings and stuff in your profile is also stored, obviously.
Anyway, I’d imagine you wanna know about the stuff other than content and its federation.

There would be mostly 2 things: server logs and the login tokens database table.
Lemmy logs are a bit verbose and our current config limits the size of the files rather than its age.
The legal page mentions 30 days, but with the current config it’s functionally much less than that. ie: Right now that file last wrapped less than a day ago.
If we were troubleshooting something specific, we might increase that slightly, but otherwise there is little point in keeping those, let alone a month.

The logins table contains your login tokens, which need to be kept until you log out or they expire (although TBH, I haven’t checked what the lemmy devs have set for default expiry of these).
They’re also purged if you delete your account or you get site banned, and, hopefully, when you reset your password (which I’ll be testing after this comment just to make sure lol).
The same table also holds the timestamp at which you logged in, your IP at the time of login (which might not be your current IP), and your browser’s user agent at the time of login.
These aren’t easily accessible and require database access, which currently means only either TheDude or me.

PS: We have so far not received any law enforcement request for user info, logs or whatnot.
⁨Comment⁩ on ⁨Opening Lemmy in the morning and seeing dozens of unread comments in your inbox makes you think: what the heck did I say yesterday?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
And then all of them are “Nicole”.
⁨Comment⁩ on ⁨A central tool to monitor multiple solutions via their own API⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Your examples seem vaguely related to home automation, so maybe they’re already in Home Assistant.
www.home-assistant.io/integrations/

It has a bunch of sensors and media related integrations. You can also add custom REST API queries.
⁨Comment⁩ on ⁨Jellyfin is not just good... but *better* than Plex now?!⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
For me, Plex would often end up having audio drift lag and it was annoying as fuck. It’d start fine, then the lag would gradually increase until you changed encoding back and forth, then gradually increase again.
Jellyfin just works.
That was enough to get me to switch and not look back. I’m also rid of the bullshit plex login that I never cared for, and also of their push for whatever “recommended” stuff is supposed to be about.
⁨Comment⁩ on ⁨Need Support: DMZ at home with nginx proxy to LAN⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Make sure you test this from outside your network and not simply by using the public IP, but from inside your LAN. Odds are your ISP modem doesn’t support NAT loopback (also known as NAT hairpin).
⁨Comment⁩ on ⁨JD Vance to Young Men: Don't Let Them Turn You Into 'Androgynous Idiots'⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
“Be a standard issue idiot instead”
⁨Comment⁩ on ⁨Reddit plans to lock some content behind a paywall this year, CEO says | Reddit executives also discussed how they might introduce more ads into the social media platform⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Not only do I see your comment, it’s not yet buried even 5 days after you’ve made it.
⁨Comment⁩ on ⁨USA | Trump administration tries to bring back fired nuclear weapons workers in DOGE reversal⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Move fast, break (nuclear) things.
⁨Comment⁩ on ⁨Progress towards implementing automatic image compression?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Hey, basically, I’d need to test this in a test instance first rather than testing live to avoid breaking everything.
I don’t have an ETA on that, sorry, I know it’s been a while now.
⁨Comment⁩ on ⁨The 2025 SJW Update: Donations, costs and other points⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
No money required.
I can techincally add blocks to your account using a wildcard.
You can still see them and remove them yourself if you ever want to in your profile page.
⁨Comment⁩ on ⁨The 2025 SJW Update: Donations, costs and other points⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Yup this one works
⁨Comment⁩ on ⁨Weekly Recommendations Thread: What are you playing?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Updating my journal
⁨Comment⁩ on ⁨FCC chair helps ISPs and landlords make deals that renters can’t escape⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Image
⁨Comment⁩ on ⁨More than 6,700 people bought the false N95 face mask from Razer - and now they're getting refunds⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
About on-par with the rest of their hardware.
Expensive, fancy-looking, form over function garbage.
⁨Comment⁩ on ⁨What's next after Pentiment?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

Also, looots and looots of reading similar to Pentiment

I haven’t played Pentiment but y’all might enjoy Planescape: Torment
⁨Comment⁩ on ⁨Switching notifications off?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
You could zap just the number of you wanted.

Image

This way you still have the bell icon to go to sh.itjust.works/inbox, but no number next to it.
When visiting the inbox, DMs, replies and mentions have their own filter that your can use to browse more easily.
⁨Comment⁩ on ⁨Switching notifications off?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Yea I don’t think you can turn these off.

There is a “mark all as read” button in there which can get rid of those, but it applies to everything, including DMs and whatnot.
I guess you could also just zap that element with ublock origin or something and you’d stop seeing those altogether.

This way you can technically still go there if you need to look but zap just the number.
⁨Comment⁩ on ⁨Switching notifications off?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Do you mean just the bell icon at the top of the website page?
Or like an actual desktop notification pop-up?
⁨Comment⁩ on ⁨Broadcom reverses controversial plan in effort to cull VMware migrations⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
When you telegraph your planned rug pull too much in advance.
⁨Comment⁩ on ⁨Assassin's Creed Shadows to Feature Denuvo & Mandatory Ubisoft Account Linking⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
No thanks.