reminder to please uspol your shit

yes, still, and especially nowadays

Sensitive content Click to open/close

[0/190]

So I have now gotten most of the appliances from the cheap amount of money the jobcom provided (this includes kettle, microwave, scale and vacuum)

But I still need a tiny bit more and sadly they decide to not provide a lot of money due to a mistake my Gesetzliche Betreuerin made.

I now need 200€ or even better i a little more to get everything else I need like a cabinett for clothes and etc.

Boosts are apperciated as always friends and things ​​
paypal.me/mar0xyko-fi.com/maroxyrevolut.me/maroxywise.com/pay/me/mariep1472
#mutualaid #furniture #appliances #movingfund

Revolut.Me

Pay or get paid easily with payment links! Use any card to pay or any bank account to get paid.

^Revolut.Me

Norwegen Throwback. Auf 590m Höhe über Svolvær, auf dem Bergrücken des Fløya, werden Schafe zu unserer fluffigen Gesellschaft. Eine der Sehnsuchtsexpeditionen der Reise. Link zu unseren Reiseskizzen nach Lofoten in der Bio.

#umhergeschweift #travel #midnightsun #arctic #norway #lofoten

gup.pe groups are officially dead: github.com/immers-space/guppe/…

We already have @maskup @pandemicene @askazero @thezeroes, but if there are any other covid-related ones you'd like created, please PM me

Guppe is dead?

Hey @wmurphyrd 👋 I notice as of September 2025, the domains gup.pe and immers.space seem to have expired and a.gup.pe has been replaced with a WordPress installation full of SEO-targeted content ab...

^{mattcoxonline (GitHub)}

$137 🇺🇸 👀

Honeywell North Primair PA700 PAPR Kit fishersci.com/shop/products/pa…

@maskup

Sensitive content Click to open/close

with permission to boost anonymously

I have created the perfect JavaScript data type: a value that is both an object, a function, and a promise. All at the same time!

#JavaScript

Ships

#mamiya #mediumformat #filmphotography #analogphotography #film #streetphotography #believeinfilm

Lonely

#nature #naturephotography #balticsea #view #lighthouse #lonely

Sensitive content Click to open/close

The domain freaky.university has been suspended (defederated) from Enby.Life for pedophilia (MAPs) and zoophilia. The admin Felix is also admin of cutiepaws.org, another known MAP instance. As usual for pedi instances, this one runs Pawkey (pediverse fork of Sharkey).

As Pawkey's frontend is locked down by default, you will need to view the user through another federated instance to verify receipts. (though I don't recommend that, personally...)

#FediBlock #BlockRecommendation #DomainBlock #DomainBlocks #Moderation

Sensitive content Click to open/close

Sensitive content Click to open/close

The domain doll.salon has been suspended (defederated) from Enby.Life for pedophilia (MAPs and lolicon/shotacon).

As usual for pedi instances, this one runs Pawkey (pediverse fork of Sharkey). Pawkey's frontend is locked down by default, so you'll need to view the users through another federated instance to verify receipts. (though I don't recommend that, personally.)

Sorry for the lack of alt text, I'm just getting tired of looking at these awful profiles. 3rd screenshot contains a lolicon banner depicting violent assault of a child, please be careful and don't look unless you need to. I censored it but it's still extremely awful.

#FediBlock #BlockRecommendation #DomainBlock #DomainBlocks #Moderation #Pedophilia

Sensitive content Click to open/close

The domain feral.bond has been suspended (defederated) from Enby.Life for pedophilia (pro-contact MAPs) and zoophilia. At least one user has an alt on another pediverse instance, cunny.beauty.

The instance frontend is locked down, so you'll need to view a user through another federated instance to verify receipts.

#FediBlock #BlockRecommendation #DomainBlock #DomainBlocks #Moderation

Concept for discussion: Replacing HTTP Signatures with Bearer Tokens for ActivityPub Federation
Curious what other people think about this idea. What if federation security was re-worked to use target-assigned bearer tokens to authenticate GET/POST requests? This would remove the need for complicated signing schemes and reduce system load under heavy traffic bursts (as no cryptography is required).

A basic implementation could look like this:1. When instance A (a.example.com) first attempts to federate with instance B (b.example.com), a POST request is made to a dedicated registration endpoint. (for discussion, we'll say it's https://b.example.com/activity-pub/register-instance). This request includes fields necessary for verification, including the source domain name, target domain name, and a securely-generated verification token. Other metadata could be included to allow instance B to selectively allow/prohibit federation based on other criteria, but this is optional.
2. Instance B makes a POST request back to a dedicated verification endpoint on instance A (for discussion, we'll say it's https://a.example.com/activity-pub/verify-registration). This request must include the target domain name and verification token provided in step 2.
3. Instance A checks the verification token (and verify that it matches the target domain name) and return a successful value. The verification code must be invalidated after this call!4. Instance B, after verifying instance A's request, returns a securely-generated federation key back to instance A. This federation key is a bearer token used to authenticate all requests from instance A to instance B. This key must be unique to instance A!5. Instance A completes the original request with the Authorization header set to Bearer {federation_key}.
6. Instance B receives the request, detects the federation key, and checks it against the list of registered instances.
7. If the key does not exist or A has been defederated, then a 403 Forbidden error is returned.
8. If the key is expired or revoked, then 401 Unauthorized error is returned. Upon receiving a 401 error, instance A should start over from step 1 to re-authenticate and complete the request with a new token. This process should not be repeated for recursive failures!9. If the key is approved, then a 200 OK response or 202 Accepted response is returned, and A can consider the request as successful.

Advantages versus HTTP Signatures:- No cryptography requirements.
- Simple logic, no edge cases around HTTP query parameters or header order.
- Equally effective for all request types.
- Keys can be easily revoked or rotated.
- Supports authorized fetch and defederation use cases "by default".

Disadvantages versus HTTP Signatures:- Breaks the actor model - instances are required as a first-class concept. (but really, the actor model is basically dead already. you can't even federate reliably without a WebFinger server, at minimum.)
- Requires multi-request "handshake" before communication. (but this is already required in practice, since a signature can't be validated without first requesting the signing actor.)
- Out-of-band protocol - communication can't happen over ActivityPub / ActivityStreams because this is a prerequisite to authenticate any request. (but again, we already require WebFinger and some software requires NodeInfo for full support.)

So, what are your thoughts? Good idea? Bad idea? Did I miss something? Please let me know, I welcome replies here!

#ActivityPub #AP #Federation

HTTP authentication - HTTP | MDN

HTTP provides a general framework for access control and authentication. This page is an introduction to the HTTP framework for authentication, and shows how to restrict access to your server using the HTTP "Basic" scheme.

^{MDN Web Docs}

Sensitive content Click to open/close

🔗 Performance study of microplastic inhalation risk posed by wearing masks (2020) pmc.ncbi.nlm.nih.gov/articles/…

Wearing an N95 mask reduces the inhalation risk of spherical-type microplastics by 25.5 times compared with not wearing a mask.

Wearing low-quality masks for longer than 4 h can pose higher fiber-like microplastic inhalation risk than not wearing a mask. When the masks are reused for a long time, only N95 respirators pose less fiber-like microplastic inhalation risk compared with not wearing a mask.

@maskup

🔗 Wearing a mask while exercising indoors improves lung function -- masks not only help protect wearers from virus transmission, but improve the exercise experience in both dry and cold conditions ualberta.ca/en/folio/2025/02/w…

@maskup

Wearing a mask while exercising indoors improves lung function

Face masks not only help protect wearers from virus transmission — they can also help ease the workload on the lungs during exercise in both dry and cold conditions, a U of A study shows.

^{Michael Brown (Folio - University of Alberta)}

Sensitive content Click to open/close

Edit: @ABScientist shared ccnse.ca/sites/default/files/F… !

hey Covid-Competent, well-informed folks! I have a favour to ask!

has anyone bookmarked a good reference for what % of SARS-CoV-2 cases are due to fomite transmission?

the US CDC was at one point saying:

each contact with a contaminated surface has less than a 1 in 10,000 chance of causing an infection [1]

but that's not a % of infections, it's per contact with contaminated surface. That's supported a few ways, eg. by a sampling that included counting touchpoints:

The estimated risk of infection from touching a contaminated surface was low (less than 5 in 10,000) by quantitative microbial risk assessment [2]

but that study didn't actually culture virus, they checked RNA levels and counted touches (and again, is per contaminated touch, not per case)

Try as I might, I can't actually find a grounded estimate of how many actual infections have been fomite-driven at any point in the SARS-CoV-2 pandemic.

[1] archive.cdc.gov/www_cdc_gov/co…
[2] pmc.ncbi.nlm.nih.gov/articles/…

@askazero

#SARSCoV2 #COVID #COVID19 #COVIDIsAirborne #CovidIsNotOver #CovidCompetent #AirborneAware

🇺🇸 🧑‍⚖️

Does anyone have recommendations for a USian called for jury duty if they're prevented from masking up?

@askazero @maskup

#MaskUp #CovidIsNotOver #StillMasking #CovidIsAirborne

i havent gotten a mutual aid donation in almost two weeks. fuck these bots, i need rent, you know im real because my reputation precedes me.

$366/2500

venmo.com/u/rachaelspooky

#mutualaid #transcrowdfund

Sensitive content Click to open/close

🔗 “I pretty much haven't worked since 2020”: How the effects of Long COVID have harmed professional musicians and DJs musicradar.com/music-industry/…

@pandemicene

#longCovid

“I pretty much haven't worked since 2020”: How the effects of Long COVID have harmed professional musicians and DJs

Though the 2020 COVID pandemic had many negative effects on the music industry, an underreported aspect is how Long COVID has left some professional musicians unable to continue with their careers

^{Adam Douglas (MusicRadar)}

FTtP's gSheet of quantitative fit test results, protocols, suggested test sequence, etc

mstdn.science/@FitTestThePlane…

@FitTestThePlanet @fittestmyplanet @maskup

#YallMasking #MaskUp #WearARespirator #BringBackMasks

“One thing that can make a significant difference in reducing illness is masking,”

“While it received mixed reactions...one of the greatest missed opportunities in public health...has been acknowledging the effectiveness of masks at reducing spread of airborne illness.”

stuff.co.nz/nz-news/360735673/…

@maskup

Sensitive content Click to open/close

PSA: there's a new spam campaign hitting fedi, this one claims to be raising money for insulin and usually has a banner saying "black lives matter" or another progressive slogan.

You can recognize it in the usual ways:
1. Brand-new accounts doing nothing but ask for money.
2. Cold-messaging strangers with personal requests for a boost or donation.
3. Identical or near-identical accounts appearing all over fedi, primarily on open-registration instances.

If you see these accounts or get pinged by them, don't panic! Just report the profile and let your moderators handle it. The image below is an example of what to look out for.

#PSA #Spam #Scam #FediSpam #MastoSpam #FediAdmins #MastoAdmins