**Forget Me Not: How Broken Logout Functionality Let Me Ride Sessions Forever **
Hey there!😁
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/forget-me-not-how-broken-logout-function … ⌘ Read more
Cracking the Dave & Buster’s anomaly
Let’s dive into a peculiar bug in iOS. And by that I mean, let’s follow along as Guilherme Rambo dives into a peculiar bug in iOS. The bug is that, if you try to send an audio message using the Messages app to someone who’s also using the Messages app, and that message happens to include the name “Dave and Buster’s”, the message will never be received. ↫ Guilherme Rambo As I read this first description of the bug, I had no idea what could possibly be causing th … ⌘ Read more
↳
In-reply-to
»
last night my timeline randomly reset to only show my own recent twts and i restarted my instance a few times and pulled from main and shit and it didn't change but it seems fine now lol?!
⤋ Read More
@prologic@twtxt.net haven’t noticed anything weird in the logs! i’ll let you know if it happens again and monitor more closely though. it was def weird!
Hidden HackerOne & Bugcrowd Programs: How to Get Private Invites
“Private programs are where the real gold lies… but no one tells you how to get there. Let me break it down for you — with secrets most…
[Continue reading on In … ⌘ Read more
↳
In-reply-to
»
My main domain name turned 24 years old today. That feels weird.
⤋ Read More
@bender@twtxt.net How do you explain mine then? Unless it was registered before me, then let go of and I re-registered it later? 🤔
Top 10 Ways Hackers Exploit Web Applications (and How to Prevent Them)
Hackers don’t wait for big websites. They look for easy mistakes. Let’s fix them before they find yours.
[Continue reading on InfoSec Write- … ⌘ Read more
$100 Bounty: How a Spoofed Email Could Change Any Username on HackerOne
A simple email spoofing trick could let anyone hijack your HackerOne username and profile link
[Continue reading on InfoSec Write-ups »] … ⌘ Read more
50% Off Monthly, Yearly, & Lifetime Subscriptions (Through Friday, May 9th)
Let’s make Big Tech grumpy. ⌘ Read more
50% off Monthly, Yearly Subscriptions! Lifetime Subs for $100! Let’s get everyone subscribing to The Lunduke Journal!
The number of free subscribers to The Lunduke Journal has absolutely exploded — across a bunch of platforms — which is truly amazing. ⌘ Read more
Bug Hunting for Real: Tools, Tactics, and Truths No One Talks About
Let’s Skip the “Sign Up on HackerOne” Talk
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/bug-hunting-for-real-tools-tactics-and-truths-no … ⌘ Read more
Let me see whose black cat has a white background ⌘ Read more
So, the “AI” bots have reached my website. Looks like they’re just slowly crawling everything at the moment – no DDoS-like attack yet. I wonder if that has something to do with my website being 100% static HTML. There are no GET parameters they can tweak and, at the end of the day, there’s not that much data on my server anyway … And maybe they have no idea what stagit is, so it doesn’t trigger “standard behavior”, like “this is a Gitea instance, let’s crawl this like crazy!”?
Let’s Encrypt: Why You should (and Shouldn’t) use free SSL certificates
Free, fast, and secure — but is Let’s Encrypt the right SSL solution for your website?
[Continue reading on InfoSec Write-ups »](https://infosecwriteup … ⌘ Read more
DragonFlyBSD 6.4.1 released
It has been well over two years since the last release of DragonFlyBSD, version 6.4.0, and today the project pushed out a small update, DragonFlyBSD 6.4.1. It fixes a few small, longstanding issues, but as the version number suggests, don’t expect any groundbreaking changes here. The legacy IDE/NATA driver had a memory leak fixed, the ca_root_nss package has been updated to support newer Let’s Encrypt certificates, the package update command will no longer delete an importa … ⌘ Read more
The AI-Powered DevOps revolution: Redefining developer collaboration
Collaboration is crucial to successful software delivery. Let’s dive into how AI can help your development teams decrease their time to delivery, and foster better communication and collaboration using GitHub Copilot.
The post [The AI-Powered DevOps revolution: Redefining developer collaboration](https://github.blog/ai-and-ml/github-copilot/the-ai-powered-devops-revolution-redefining-de … ⌘ Read more
LOL Amazon displaying tariff prices “hostile and political,” White House say is this the kettle calling the pot black? 🤣 Trump, pfft, what a fucking idiot. No clue how economies work, let alone countries.
My boyfriends “feral” 20 year old cat that won’t let anyone touch him… ⌘ Read more
I have a little time today, so if you don’t mind, let me draw your cats! ⌘ Read more
10 Surprising Legal Gaps That Let Chaos Ensue
We tend to assume that there’s a law on the books for every situation. But legal systems often lag behind reality, leaving major gaps at the worst possible moments. Whether it was due to technological change, moral blind spots, or pure legislative oversight, these are moments when people turned to the law—and the law shrugged. […]
The post [10 Surprising Legal Gaps That Let Chaos Ensue](https://listverse.com/2025/04/27/10-surprising-legal-g … ⌘ Read more
Today I added support for Let’s Encrypt to eris via DNS-01 challenge. Updated the gcore libdns package I wrote for Caddy, Maddy and now Eris. Add support for yarn’s cache to support # type = bot and optionally # retention = N so that feeds like @tiktok@feeds.twtxt.net work like they did before, and… Updated some internal metrics in yarnd to be IMO “better”, with queue depth, queue time and last processing time for feeds.
@aelaraji@aelaraji.com let me reply before going to sleep. 😂😂😂
@test_dont_fetch@aelaraji.com Let’s raise another from the dead! “Facio, Voco, Ferre” 🧝 🪄 #ForScience
**Burp, Bounce, and Break: How Web Cache Poisoning Let Me Control the App **
Hey there!😁
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/burp-bounce-and-break-how-web-cache-poisoning-let-me-con … ⌘ Read more
↳
In-reply-to
»
My pod
⤋ Read More
twtxt.net feels very clear of late hmmm 🧐 This is good right? 😅
@prologic@twtxt.net don’t jinx it, comrade. Let’s keep a low profile, and be happy. Also, it should have been: “my pod feels…”, or “my pod twtxt.net feels…”. Come on, mon, you are killing me! 😅
Testing mentions, immediately followed by commas. Let’s see: @prologic@twtxt.net, this one is local, it might not break. Now, this one @ isn’t local. Nor this @ one. Will they break. Let’s find out!
↳
In-reply-to
»
Responded to a bunch of Twtxt open issues across multiple repositories today 👌
⤋ Read More
@prologic@twtxt.net why not blanket closing everything older than, say, 3 months? Yarnd is quite a different beast today, right? Let’s start over!
Agri tourism on the go at one Coal River Valley Vineyard
Let’s head to the Coal River valley where a new vineyard operation is pushing forward with an agritourism venture after recently opening a cellar door ⌘ Read more
Let’s give PRO/VENIX a barely adequate, pre-C89 TCP/IP stack (featuring Slirp-CK)
Only a few weeks ago, I linked to Cameron Kaiser’s excellent deep dive into the DEC Professional 380 running PRO/VENIX, and now we have a follow-up. Fortunately, today we have AI we have many more excellent and comprehensive documents on the subject, and more importantly, we’ve recently brought back up an oddball platform that doesn’t have networking either: our DEC Profess … ⌘ Read more
So, the Pope died. From my non-religious stand point, I think he has been the best Pope in a generation. Let’s see how the upcoming one does.
↳
In-reply-to
»
@bender Not copy/paste 🤣 Hand on heart! ❤️ However it was a pretty nice article 😅
⤋ Read More
@prologic@twtxt.net really? Then we have a problem with bulleted lists. Let me see:
- This is one.
- This is two.
- This is three, and final.
↳
In-reply-to
»
@movq i tried ngircd but couldn't figure it out T__T i left it at the web client and bouncer for now but i might toy with an IRC server another time!
⤋ Read More
@kat@yarn.girlonthemoon.xyz At the core, you need an ngircd.conf like this:
[Global]
Name = your.irc.server.com
Password = yourfancypassword
Listen = 0.0.0.0
Ports = 6667
AdminInfo1 = Well, me.
AdminInfo2 = Over here!
AdminEMail = forget.it@example.invalid
[Options]
Ident = no
PAM = no
[SSL]
CertFile = /etc/ssl/acme/your.irc.server.com.fullchain.pem
KeyFile = /etc/ssl/acme/private/your.irc.server.com.key
DHFile = /etc/ngircd/dhparam.pem
Ports = 6669
Start it and then you can connect on port 6667. (The SSL cert/key must be managed by an external tool, probably something like certbot or acme-client.)
I’m assuming OpenBSD here. Haven’t tried it on Linux lately, let alone Docker. 😅
↳
In-reply-to
»
guys i may be stupid. i confused IRC bouncer with IRC server
⤋ Read More
@kat@yarn.girlonthemoon.xyz you can let Caddy do it, and reuse the same certificates for Ergo (just enter the certificate/key path on Ergo). Once set Caddy will keep them current.
↳
In-reply-to
»
guys i may be stupid. i confused IRC bouncer with IRC server
⤋ Read More
@bender@twtxt.net also an interesting option! i think i’m most worried about the cert stuff because i just let caddy handle that for me so i’m not sure how to get files from certbot for that (i had issues with that yesterday) but i can look into it and just toy around with it
I would let my cat do my taxes… ⌘ Read more
Unique grape variety at a new Tasmanian vineyard
Let’s head out behind Ulverstone on Tasmania’s North-West Coast to Spalford. ⌘ Read more
@iiogama@iiogama.0x212.com Let me guess, it has got an AI sticker on it.. right? xD
↳
In-reply-to
»
@prologic in this case it isn't vendor lock-in. I believe they do it because the carrier "eats" the costs (the interest part of the instalments). The phones are fully unlocked.
⤋ Read More
“Move to iOS” app continuously refused to run as intended and expected, so couldn’t migrate mum’s Android based phone data. Most of her stuff is on a Google account, but not the SMS/MMS/RCS messages. Haven’t found a way to export, then import those into iOS.
She isn’t too happy having to keep the old phone just for the messages. Need to find a way to go through them, export multimedia attachments, and import them into iOS. I don’t think it’s going to happen, but I am not letting her know yet. 😅
Windows Recall returns, and its companion feature does not keep data on-device
Remember Windows Recall, the Windows feature that would take a screenshot of your desktop every three seconds, stored them in a database, and then let you search through them at later dates? The feature has been hobbled by implementation problems, security issues, and privacy troubles, and has been released in preview and pulled since its original unveiling. Well, it’s back in … ⌘ Read more
@bender@twtxt.neteapl.me let’s see how this mention comes out. I noticed that @kat@yarn.girlonthemoon.xyz’s pod doesn’t have this problem. That is, their mention to you works fine.
↳
In-reply-to
»
@prologic sweet! Is it going to be your new all-around desktop, or the hobbyist server, or all of the above?
⤋ Read More
@bender@twtxt.net Let’s just optimize/fix those annoyances later on once I’ve finished pagination. Then I’ll merge this branch into main.
↳
In-reply-to
»
@prologic sweet! Is it going to be your new all-around desktop, or the hobbyist server, or all of the above?
⤋ Read More
@prologic@twtxt.net me neither! Let’s put it on the “Greatest Mysteries of Yarn” list, and move on. 😅
just been told i abuse my cat, for not letting him outside when i live on a busy main road. ⌘ Read more
guys omg the people behind pico.sh are so nice ;_; one of the people running it emailed me to let me know i had what was likely a malfunctioning (or well, not working as intended) script that was spawning the same SSH tunnel over and over and they wanted to give me a heads up.
and i felt SO BAD because i worried i was straining their service or something so i disabled my 4 tunnels (they were serving little SSH games and services) and got back to them.
but i just woke up to THE NICEST EMAIL EVER reassuring me that i was actually using it as intended, it was just my script that was having problems, and they even said that if it was intended to work that way it was fine and they just wanted to let me know!
so i restarted the tunnels but have since added lockfiles as safeguards so that when the script is run it’ll check if it’s already running :D
↳
In-reply-to
»
@thecanine I mean I can restore whatever anyone likes, the problem is the last backup I took was 4 months ago 😭 So I decided to start over (from scratch). Just let me know what you want and I'll do it! I used the 4-month old backup to restore your account (by hand) and avatar at least 🤣
⤋ Read More
@prologic@twtxt.net “Indiana, let it go” 😂
@kate@yarn.girlonthemoon.xyz @eldersnake@we.loveprivacy.club @abucci@anthony.buc.ci – I’ve already spoken to @xuu@txt.sour.is on IRC about this, but the new SqliteCache backend I’m working on here, what are your thoughts regarding mgirations from old MemoryCache (which is now gone in the codebase in this branch). Do you care to migrate at all, or just let the pod re-fetch all feeds? 🤔
↳
In-reply-to
»
@prologic it's fine, I never expected my yeets, to be preserved for future generations. Any art I posted here, can be found through my (now almost entirely HTML 5 complient) website.
⤋ Read More
@thecanine@twtxt.net I mean I can restore whatever anyone likes, the problem is the last backup I took was 4 months ago 😭 So I decided to start over (from scratch). Just let me know what you want and I’ll do it! I used the 4-month old backup to restore your account (by hand) and avatar at least 🤣
Got a cat that looks absolutely ridiculous? I’m doodling the funniest one—let’s see those photos! ⌘ Read more