rimu
@rimu@piefed.social
- Comment on UK firm's 98% efficient hybrid motor delivers record performance 11 hours ago:
a 1% reduction in fuel and power consumption
Slow clap
- Comment on I built a self-hosted period tracker because I couldn't find one worth using 2 days ago:
I recommend you set the Content-Security-Policy http header so that inline javascript (commonly used for XSS attacks) cannot be executed.
https://web.dev/articles/strict-csp
CSP being off is not exactly a security hole but it makes security holes much more likely. By using a strict CSP configuration you close off the possibility of a whole class of holes.
Also think about setting the
Access-Control-Allow-Originheader and enable CORS on your REST endpoints.https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Access-Control-Allow-Origin
Again, kind of a pain in the ass but gets rid of a bunch of potential problems before they start.
- Comment on I built a self-hosted period tracker because I couldn't find one worth using 2 days ago:
F-Droid has Drip, Bluemoon and Periodical.
- Comment on I built a self-hosted period tracker because I couldn't find one worth using 2 days ago:
Yeah there are other signs too. Look at those commit messages, all vague, all perfectly capitalized. All with a nice long description with bullet points.
No one does that in a project they’re building for themselves.
- Comment on I built a self-hosted period tracker because I couldn't find one worth using 2 days ago:
I was going to recommend this to someone I know but when I realised your readme.md is entirely AI-generated, I guess the whole project is probably vibe-coded. I can’t in good conscience recommend someone trust their health data to a vide-coded app because they tend to have security problems.
Also all ai-generated code is public domain so your AGPL license is kinda empty. Might as well use MIT.
- Comment on A Kurdish uprising in Iran is an uphill battle rife with strategic obstacles 3 days ago:
https://en.wikipedia.org/wiki/Iranian_Kurdistan
There’s a map of Kurdish areas at the above link. It’s really not much of the country.
- Comment on Google's AI Sent an Armed Man to Steal a Robot Body for It to Inhabit, Then Encouraged Him to Kill Himself, Lawsuit Alleges. Google said in response that "unfortunately AI models are not perfect." 3 days ago:
The sycopathy is because to make the chat bot (trained on Reddit posts, etc) to respond helpfully (instead of “well ackshually…") and in a prosocial manner they’ve skewed it. What we’re interacting with is a very small subset of the personalities it can exhibit because a lot of them are extremely nasty or just unhelpful. To reduce the chance of them popping up to an acceptable level they’ve had to skew the weights so much that they become like this.
There’s no easy way around that, afaik.
- Comment on [deleted] 4 days ago:
You’re absolutely right
- Comment on [deleted] 4 days ago:
Why would you write a GUI app to run a Mastodon bot? Shouldn’t that be a docker container or a server?
Also PowerShell is normally a cli tool, why would you build a gui with it when other better options exist?
Can we see your github?
- Comment on What is the current state of 'should degenerate' lists? 5 days ago:
PieFed has this in the admin area:
So admins don’t need to stay on top of the latest defederation drama, just choose who to outsource that work to. From that baseline you can add more defederations manually.
- Comment on Are users data protected on the fediverse? 6 days ago:
Good question!
PieFed sends delete requests to every known server, including defederated ones. I’ve seen a ton of delete requests from Mastodon too, for accounts that don’t exist on PieFed so it looks like Mastodon does that too. No idea about other fedi platforms.
- Comment on Are users data protected on the fediverse? 6 days ago:
It is a basic feature and it does work. Except in rare cases.
- Comment on Are users data protected on the fediverse? 6 days ago:
You are technically correct but the fact is that 99.9% of federated activities, including delete requests, are processed normally and in the expected way. That is not “impossible to delete” that is “will be deleted except in exceptional circumstances”.
- Comment on Datacenters in space are a terrible, horrible, no good idea. 1 week ago:
These are my thoughts https://distantprovince.by/posts/its-rude-to-show-ai-output-to-people/
- Comment on Apple brings age verification to UK users in iOS 26.4 beta - Users who don’t verify their age may not be able to download or purchase apps. 1 week ago:
2026, the year of the PWA.
- Comment on 'I had to RUN to my Mac mini like I was defusing a bomb': OpenClaw AI chose to 'speedrun' deleting Meta AI safety director's inbox due to a 'rookie error' 1 week ago:
They need to have some kind of AI safety team, as a fig leaf. But they don’t don’t want it to slow them down so they make sure it’s incompetent and ineffective.
Just a theory.
- Comment on 1 week ago:
Yep.
FediGroups works with all the popular server types – Mastodon, Misskey, Firefish, Iceshrimp, Sharkey, Catodon, Friendica
Weird exclusion of all threadiverse server types, there.
- Comment on An AI Thought Experiment on Substack Is Sending The Stock Market Spiraling 1 week ago:
Really? Looks like a normal day at the office to me:
- Comment on Car Wash Test on 53 leading AI models: "I want to wash my car. The car wash is 50 meters away. Should I walk or drive?" 1 week ago:
Very interesting that only 71% of humans got it right.
- Comment on How should Lemmy & Piefed handle voting activity from banned/deleted accounts? 2 weeks ago:
When banning someone there is the option to remove their content too. It makes sense to include votes in that.
- Comment on 2 weeks ago:
PieFed can subscribe to peertube channels as if they were communities. https://piefed.social/f/peertube shows some of them.
- Comment on Ethical Adult Websites 2 weeks ago:
That bug has been fixed.
- Comment on FR#154 – Search and Community 2 weeks ago:
Community members pointed out that the indexable flag is enabled by default on many instances, which means that a significant number of accounts with the flag set never made a deliberate choice to be indexed. The flag that’s supposed to signal “this person consents to being searchable” frequently signals “this person’s server admin didn’t change the default”, and on a protocol-level, there is no difference between these two options.
Maybe Mastodon could get the user to set this during onboarding. Then no one can say they didn’t choose.
- Comment on How does one go about contacting the admins of a Piefed instance? 2 weeks ago:
In the footer there is ‘About’. That page lists the admins.
- Comment on Tesla's New Sales Data Is Absolutely Brutal 2 weeks ago:
The Ford Edsel car is widely used as a case study in business schools as an example of a massive fuck up. But Ford sold way more of those cars (118k) than the Cybertruck (maybe 60k?) and USA had half as many people then (and lower car ownership rates).
- Comment on Jack Dorsey's New Company Falling Apart as It Forces Employees to Use AI 2 weeks ago:
Oops I mistread my source. Have updated my comment.
- Comment on Jack Dorsey's New Company Falling Apart as It Forces Employees to Use AI 2 weeks ago:
He also cofounded Nostr.
- Comment on Is there any limit to the amount of instances to federate with? 2 weeks ago:
Generally I think duplication isn’t great because it means people subscribe to all of them and cross-post in all of them. A lot of client apps don’t deal with this well, yet.
I mean just have a community for cats on instance 1 and a community for dogs on instance 2.
- Comment on Australia’s Social Media Ban Is Isolating Kids With Disabilities—Just Like Critics Warned 2 weeks ago:
In your original post you demonstrated an ability to collect a nice pile of links to support your argument. Use that skill to build the opposite argument and see what happens. If your original argument was a good one it should stand up. I’ve given you a starting point but I’m not going to try to change the mind of an angry person, that’s just stupid.
- Comment on Australia’s Social Media Ban Is Isolating Kids With Disabilities—Just Like Critics Warned 2 weeks ago:
I could have linked to them individually but I am not your research assistant and owe you nothing.
