@fabio@manganiello.social
@fabio@manganiello.social avatar

fabio

@fabio@manganiello.social

:platypush: Creator and #developer @ platypush.tech
:booking: Senior #software engineer @ booking.com
#Automation addict
🤖 #AI builder
:linux: #Linux user since 2001
🔓 #FOSS contributor
:arch: Prone to unsolicited "btw I use #Arch" statements
🏡 #SelfHost all #tech!
🔬 Open #science and open #data advocate
🎶 #Music geek
🎸 #Guitarist + occasional composer
🛹️ #Skater
🏄 #Surfer
👪 #Dad of a small geek
🇮🇹 ⇒ 🇳🇱

This profile is from a federated server and may be incomplete. Browse more on the original instance.

cory, (edited ) to music
@cory@social.lol avatar

📝: Improving my self-hosted scrobbling implementation https://coryd.dev/posts/2024/improving-my-self-hosted-scrobbling-implementation/

fabio,
@fabio@manganiello.social avatar

@cory the idea sounds similar to what I’ve done a while ago with + (and optionally Tidal). My implementation also uses the scrobbled tracks over a certain period and Last.fm’s API to automatically generate a “discover weekly” playlist.

I haven’t toyed with Plex in a while, but why did you have to run everything on Firebase/Supabase? If you have your Plex server running locally isn’t it more convenient to go for a fully local solution?

fabio, to Pixelfed
@fabio@manganiello.social avatar

@dansup not sure if it’s me or something else, but my new account on my new Pixelfed instance (@fabio) keeps showing 0 both on the number of followers and followed accounts and can’t be followed by either Mastodon and Pleroma accounts (all requests are stuck in Awaiting confirmation, but no follow notification is received on the Pixelfed side): https://github.com/pixelfed/pixelfed/issues/5081.

The profile is public and indexed, all show_profile_follow* settings are enabled, and federation is enabled too.

Any clue on what’s going on here?

fabio,
@fabio@manganiello.social avatar

@paul yeah it seems to work for me too now. I eventually went for the nuclear option - reset the db, encryption key, workdir and create everything anew.

Not sure if the problem was with some cached configuration parameter that wasn’t refreshed even after the container was destroyed, but at least things seem to work now…

@dansup

fabio, to random
@fabio@manganiello.social avatar

@adiz lol my bad - my tut client mixed up the threads.

The only alternative I see to Matrix right now is XMPP. I still run my own server. But it doesn’t come even close to compete with the number of available bridges (that’s actually the main thing I use Matrix for).

The only thing that can still compete with Matrix when it comes to bridges/integrations is still IRC+bitlbee. But that ecosystem is literally falling apart, it’s largely based on libpurple extensions that often haven’t been touched in years, and of course you can forget decent mobile-native clients.

Or maybe just run alternative servers to Synapse, but so far I’ve had a mixed experience with them - Conduit is definitely snappier, but I’ve had trouble to set up many of my bridges, which seem to be primarily designed for Synapse.

fabio,
@fabio@manganiello.social avatar

@Goffi integrations like Instagram, Telegram and WhatsApp mostly rely on libpurple plugins (like purple-gowhatsapp or purple-instagram) that are either poorly documented, more unstable or lack many features that are available on Matrix bridges.

By own admission of some of these developers, they usually don’t test their plugins against Spectrum2, and mileage may vary a lot. And usually when one of these plugins dies it takes the whole service down with it.

I’m in general a bit unimpressed with the state of libpurple - I feel like it’s becoming a very aged ecosystem maintained by a very limited number of developers that have to make those plugins work for a very wide range of clients. That’s also the reason why I left bitlbee.

Slidge seems to be promising, but I feel like it’s still at an immature stage.

jwildeboer, (edited ) to random
@jwildeboer@social.wildeboer.net avatar

Facebook/Meta starts talking about the "Extend" phase of Embrace, Extend, Extinguish as predicted:

"“You could imagine an extension to the protocol eventually — of saying like, ‘I want to support micropayments,’ or … like, ‘hey, feel free to show me ads, if that supports you.’ Kind of like a way for you to self-label or self-opt-in. That would be great,”

https://techcrunch.com/2024/04/25/why-meta-is-looking-to-the-fediverse-as-the-future-for-social-media/

fabio,
@fabio@manganiello.social avatar

@jwildeboer I’m honestly ok with some of the ideas outlined in that interview.

Content monetization is a topic that has been floating around on implementations long before Zuck’s helpers considered playing with it.

@dansup already toyed with the idea a year ago.

@Techaltar recently also brought up the topic in his series of Fediverse interviews.

And creators like @thelinuxEXP have mentioned multiple times that the lack of financial incentives to post their content on e.g. PeerTube vs. YouTube acts as a deterrent for many.

And the Fediverse community in general has already a strong sense of “reward-based” ethics - many already make LibrePay/Patreon donations to their instance admins and favourite content creators, so why not embed such ability in the protocol itself and bypass the middlemen?

Allowing micropayments in ActivityPub (per-post, one-off, recurrent etc.) would actually attract many creators who are currently stuck against their will on proprietary platforms, are at the mercy of YouTube’s mercurial monetization algorithms, don’t have much freedom in deciding how they want to get paid, and have to give back a non-negligible share of their revenue to the platform itself.

Imagine instead a world where micropayments are handled at protocol level itself, a piece of content or a profile that requires the user to make a payment would transparently respond with an HTTP 402, the money would move from the donor’s account to the contributor’s without any middlemen to shave off profits, no external algorithms are in charge of what can be monetized and how, and creators don’t even have to worry about posting the same content across multiple different platforms because ActivityPub would take care of the whole distribution problem. I can’t think of a better silver bullet to get content creators to do the jump.

The thing is that if we don’t implement this right on the protocol level because we oppose commercialization on ideological grounds, then Threads may implement it anyway on their version of ActivityPub (and then yes, it’d really be E-E-E), and content creators who do content creation as a job have one more reason to avoid the Fediverse.

I’ve got a bit more of a mixed feeling about ads instead. There’s sensitivity on the Fediverse about donations and micropayments, but almost everyone here hates the ad-based business model to the core. If the payments idea and implementation works right, then I don’t think we need to pollute our walls with such low-quality littering. I’m happy to leave that to Threads if they want to implement it, because I really don’t see much of added value in it and I don’t see why anybody out there would like that idea.

fabio,
@fabio@manganiello.social avatar

@Chocobozzz @thelinuxEXP @Techaltar @dansup @jwildeboer I would add that any implementation of a payment subsystem should probably be done at protocol level, so individual implementations of #ActivityPub don’t have to reinvent the wheel - doing #payments right is a hard problem, and it doesn’t make sense to fragment the efforts by solving the same problem multiple times on Mastodon/WriteFreely/PeerTube/Pixelfed etc.

The payments subsystem should be better integrated in the ActivityPub ecosystem compared to a “Donate here” link that redirects to a 3rd-party provider. This is probably the right chance of giving the HTTP 402 code the implementation it deserves.

I left the payments industry a few years ago so I’m not sure of what open solutions and protocols are in the market that could be already leveraged, but maybe something like OpenPayments could be a good starting point - there are many efforts on the open banking standards lately, with different degree of maturity, and IMHO a good implementation of payments over ActivityPub could be a great driver for adoption.

I’ve got the feeling that if we don’t do this right then Threads could scoop up this chance for an “embrace” to “extend” pivot.

fabio, to random
@fabio@manganiello.social avatar

Like with all the commodities with increasingly scarce supply and high demand, the time has come for addresses to also become a speculative asset.

Not the kind of thing that you'd buy to run your little server, but the kind of thing to hoard on and use as the aluminum foil to wrap and back your corporate bonds.

Just when you think that the enshittification of our industry can't get any worse, here you go with news of somebody creating money out of thin air backed by IP addresses.

https://tech.slashdot.org/story/24/05/04/2122251/multinational-isp-offers-206m-in-secured-notes-backed-by-ipv4-addresses#

fabio, to Jewish
@fabio@manganiello.social avatar

My solidarity goes to those / students who genuinely feel unsafe, threatened or subject to prejudice. Nobody deserves it.

But I couldn't care less about those who just feel uncomfortable because the protests are about something bad that their country is doing.

When Putin started his unforgivable war in Ukraine, and protests sprawled around the world, there wasn't much talk about shutting down the protests because they would make Russians abroad feel uncomfortable. So why do we have to treat Israelis and Jewish as exceptional snowflakes? Just because they keep stubbornly playing the antisemitism card whenever you criticize them?

and aren't the same thing. People have an inalienable right to feel safe and not subject to prejudice. But their ideas and dogmas don't have the same rights. They aren't people. I shouldn't refrain from protesting against ideas and acts that I perceive as wrong just because my protest may make somebody else feel uncomfortable. Pulling people out of their comfort zone and creating awareness is the whole point of a protest, after all.

And universities are exactly meant to be those factories of ideas where different sensibilities meet and come up with a better view of the world, without fear of retaliation.

If you don't feel comfortable about it, if you feel like criticism against your ideology is criticism against you as a person, then probably you just don't belong to a university in the first place.

And if you keep calling out as an antisemitic anyone who criticizes the acts of 's government, thus advancing the fascist theory that the ideology of a government is part of the identity of the nation, and thus political criticism is personal criticism against all of its the citizens, then you're just an idiot, or someone who benefits from this simplification.

https://www.theguardian.com/us-news/article/2024/may/03/college-gaza-protests-antisemitism

koen, to Amsterdam
@koen@procolix.social avatar

Dear European based LGBTIQ+ people.. (so basically everybody).

Today I attended an event in organized by @waag @DeGroene @gemeenteamsterdam and the Amsterdam public library called

Featured speaker this time was Euro Member of Parliament @kimvsparrentak who passionately spoke on the need for a more free Internet detached from and more focussed on and real interaction.

When confronted with her presence on X and Insta, and the lack of active presence here on the we promised to help her.

Please help us get a decent follower-base here and follow her account right now, before she even gets a chance to get more active. A follower base of more than a 1000 people will surely help her convince her party members to spend time and money on a real presence here.

I used a cut out of the image posted by @sicco in this post: https://todon.nl/@sicco/112372340250592627 thank you for that Sicco.

fabio,
@fabio@manganiello.social avatar

@koen @waag @DeGroene @gemeenteamsterdam @kimvsparrentak @sicco I’m definitely onboard with such initiatives, but IMHO the chicken-and-egg problem should be solved on both ends.

Many politicians agree with us that centralization is bad. Yet their primary presence is on Meta/X in most of the cases. When asked “then why are you not on the Fedi?”, many respond with “because there aren’t enough people for me to justify the jump/investment”.

And that in turn feeds the other feedback loop - “why do you still have an account on X?” - “because most of the politicians/public figures are there”.

Building presence in the social infrastructure one actually believes in, even if that requires extra effort, shouldn’t be something contingent to the probabilities of getting thousands or followers on that platform.

fabio,
@fabio@manganiello.social avatar

@amerika @kimvsparrentak @koen @gemeenteamsterdam @DeGroene @sicco @waag to be fair, recent European laws are as anti-monopolistic as they can get. The DMA is a good piece of legislation that, if implemented right, can really lower many of those barriers erected by those monopolies - from hostile approach towards 3rd-party integrations to the tyranny of the app stores.

IMHO you don’t have to explicitly encode incentive structures when you are dismantling existing barriers. The goal of dismantling barriers arbitrarily created by someone else (e.g. by E-E-E of open protocols like RSS/XMPP, by takeover of potential competitors, by hindering inter-operability, by opposing alternative clients/stores etc.) is to re-establish the level-playing field.

Once the level-playing field is restored, competitors have a fair access to the market again, and have market incentives to create e.g. alternative clients for Facebook, alternative app stores, social platforms that support cross-posting across walled gardens, experiment with alternative business models without having to compete with the established stalk-and-throw-ads monster, etc.

There’s demand for these things (the number of screenshots posted on walled gardens about stuff that happens on other walled gardens are a sad manifestation of such demand), there’s potentially supply to fullfil those demands too, the only thing that stands in between is a handful of monopolies who have no incentives in opening up.

You don’t need to give those monopolies incentives to stop monopolizing and implementing rent-seeking behaviour. You just need to hit them hard where it hurts them the most, because they will perceive any change from the status quo as a net loss and will oppose it with all the means they have.

The retreat of a monopoly is already a great incentive structure for competitors to fill in the gaps. The only additional incentives should probably be directed towards businesses and entities that instead embrace openness (sticking to the “pick the willing, not the winners” principle). And this is probably an area where the EU could do more (e.g. through direct investing into companies like Nextcloud or Fairphone, or funding to medium-sized Fediverse server admins), so they have a better chance of standing against multibillion companies and build credible alternatives.

fabio, to philosophy
@fabio@manganiello.social avatar

I often get criticized for ideological inconsistency by mixing and socialist values in my posts.

I often cite , , and other fathers of the liberal movement when it comes to civic rights, freedom of speech and expression, and defense against conservatism, totalitarism and dogma.

And I often use the language of , and Rosa Luxemburg when I talk about inequality and class struggle, capitalism, common resources, common access to the means of production and workers alienation.

But the more I think about it, the more I start to actually see them as complementary sides of the same coin.

It actually makes perfectly sense to me to be strongly liberal when it comes to individual freedoms, and strongly socialist when it comes to regulating the market.

You can’t have individual freedoms and universal rights in an economic system that is prone to unregulated exploitation and formation of oligopolies that no longer obey to the rules of an open and competitive market.

And you can’t have a fair and sustainable economic system without freedom of expression, freedom of growth and enterprise and equal opportunities.

Liberalism without a socialist core is the post-1970s neoliberal degeneration advocated by Friedman, Reagan and Thatcher. It’s cynical capitalism on steroids/cocaine, it’s assured enshittification and establishment of rent-seeking behaviour perpetrated by an unaccountable handful of oligopolies who only respond to their shareholders.

And socialism without a liberal core is the Soviet-like degeneration that the world has experienced throughout the 20th century.

And I wish that such a liberal/socialist doctrine had more political representation out there, instead of being embodied by political forces that are often in mutual exclusion with one another.

@philosophy @politicalscience

fabio, to bitwarden
@fabio@manganiello.social avatar

Just migrated from to .

Same API, same features, same UI, and support for other DBs than MSSQL.

One single stand-alone application vs. Bitwarden’s 10 Docker containers. 70MB of RAM vs. 2GB. 3MB of db storage vs. 300MB.

Why was a password manager supposed to take so many resources in the first place? Just because it runs on a Microsoft-only stack and on .NET’s inefficient VM? Just because somebody thought that it was a good idea to separate everything into different containers (even icons and 2fa are modeled as separate services in Bitwarden)?

It reminds me of my recent migration from Mastodon to Akkoma. I got more features, 5GB of RAM freed up and 300GB of storage freed up almost overnight.

Writing and running inefficient software that pointlessly consumes all the resources available on a machine should be a crime in a world with limited resources.

It makes me think of how much shitty bloated software like @bitwarden, probably based on awfully inefficient languages and frameworks like Java, Ruby on Rails and .NET, is running out there, pointlessly sucking up resources for doing simple jobs that could easily be done with 99% less resources.

Today’s developers, spoiled by IDEs, powerful machines, docker-compose and shortsighted “just throw more RAM at the problem” approaches, have forgotten how to write efficient software. Time for them to learn how to write good efficient software again. Software doesn’t eat the world. Only shitty software built on shitty framework does.

fabio,
@fabio@manganiello.social avatar

@davidculley my experience with Ruby on Rails application mostly involves running both Mastodon and Gitlab on my servers.

In both the cases, what I’ve noticed is that it’s not the language itself that is slow and heavy (Ruby’s weight is comparable to that of e.g. Python), but Sidekiq.

Sidekiq is the standard framework used by Ruby on Rails application to schedule and run asynchronous jobs (processes, threads…), kind of akin to what php-fpm does for PHP.

In my experience, it’s hard to configure properly, and when not configured properly it ends up with endless pools of active jobs doing all kind of things and sucking up all resources you give to them.

fabio, to random
@fabio@manganiello.social avatar

> The mayors argue that while criticism of the Israeli government is not anti-Semitism in itself, holding Jewish people responsible for the actions of that government just because they are Jewish is.

I have absolutely nothing against the Jews who openly condemn their fascist government.

But I have a lot against the Jews who don't. And I have a lot against the Jews who kicked Palestinian families out of their houses and still occupy them.

And that's not anti-semitism.

Just like criticizing the Palestinians who support Hamas isn't an attack against all Muslims.

Just like criticizing the Americans who support Trump isn't an attack against all Americans.

Just like criticizing the Germans who supported Hitler wasn't a hate crime against all Germans.

Just like shooting at the Italians who supported Mussolini's social republic and plunged the country into civil war wasn't a crime against all Italians.

We need to call people accountable for the governments that they elect and support just like we call those governments accountable for their actions.

https://www.dutchnews.nl/2024/04/respect-the-may-4-traditions-mayors-say-in-open-letter/

fabio, to wordpress
@fabio@manganiello.social avatar

It’s 2024, and paid plugins still have trivial SQL injection vulnerabilities like it’s 2004.

I hope that by 2034 PHP developers will learn how to use prepared statements and sanitize SQL inputs.

https://arstechnica.com/security/2024/04/hackers-make-millions-of-attempts-to-exploit-wordpress-plugin-vulnerability/#p3

fabio, to random
@fabio@manganiello.social avatar

How can you call yourself a civilized country when you can’t even keep guns outside of schools, and your solution to gun violence in schools is either to have armed guards at the entrance or give teachers guns as well?

Is it a civilized Western country or is it the fucking far west?

How come most of the other countries around the world have figured out long ago how to send kids to school without fears of them being shot, and the richest country in the world can’t figure out how to solve such a simple problem yet?

https://www.dw.com/en/tennessee-passes-bill-to-let-teachers-carry-guns-at-school/a-68903939

fabio,
@fabio@manganiello.social avatar

@chillanarchist01 the insularism of Americans with no exposure to the outside world never ceases to amuse me.

You guys are the ones who are likely to elect again a malignant narcissist who buddies up with people who wave Confederate flags and Swastikas, and you think that it’s others who are slipping into totalitarianism.

You guys are the ones who have by far the highest number of shootings in the Western world, and yet you still fail to acknowledge that guns are the problem rather than the solution.

A parent who would send their kid to learn about society and civilization to a place with armed guards, armed teachers and armed pupils rather than give up their distorted idea of “self-defense” (as if it’s your supermarket guns who would defend you from modern warfare) is the best definition of evolutionary failure.

fabio,
@fabio@manganiello.social avatar

@chillanarchist01 @Bernard or maybe just make sure that deranged people can’t easily get hold of a gun at the nearest mall?

How come such talks only exist in the US? How come nobody in the civilized world would think of arming the teachers? How come a shooting in Europe is such a serious event that people talk about it for months and years, and in the US shootings have become a weekly routine? Is it so hard to understand that the ease of getting your hands of a gun is the only problem?

fabio,
@fabio@manganiello.social avatar

@chillanarchist01 @Bernard well there are people with degrees in psychology whose job is exactly to assess whether someone is mentally fit to hold a tool for murder. I’d trust their experience. Most if not all the other Western countries have tight background checks when it comes to gun licenses, and nobody seems to complain.

Is the right for a nutcase to buy a gun worth more than the right of a kid to grow up in a safe school environment without exposure to violence or tools of violence?

fabio,
@fabio@manganiello.social avatar

@chillanarchist01 @Bernard you see, there’s no right of self-defense in Europe that needs to be enforced by individuals owning their own guns because institutions here actually work.

Because I can call the police if something goes wrong and they would usually do a good job protecting people.

Are institutions so rotten in the US that you can’t trust the police nor the government and you have to resort to people owning their own tools of murder? Then the problem is probably with your country and the mindset of its citizens.

fabio,
@fabio@manganiello.social avatar

@chillanarchist01 @Bernard you’re completely disregarding the foundations of modern civilization.

Defense from crime and abuse is a task undertaken by governments in basically all civilized countries.

You have laws that set clear boundaries on what’s allowed, courts whose job is to enforce those laws, and a police force that is trained to use weapons if needed in order to protect other citizens from law abusers.

Civilized societies are shaped around such separations of concerns and accountability - something that you don’t have if every citizen feels that they have the right to pull the trigger whenever they like.

This is how things have been working at least since the times of the Greek polis and the Roman empire.

If you mistrust institutions, elected governments and police forces to the point that you feel that you have the right to take care of yourself however you please, then either you have a problem with rotten institutions, or a mindset problem. Either way, your idea of advanced civilization was already outdated 2500 years ago.

And you can’t see that if you’re the only country following these principles, and you’re the only country with a major gun violence problem, then probably the problem is with your country, not with everyone else.

fabio, to random
@fabio@manganiello.social avatar

Annual recurring revenue, rent-seeking behaviour and everything-as-a-subscription will one day permeate so much of our economic system that even drinking water from a public tap will require you to download an app and activate a subscription.

That day is today.

This degeneration of capitalism with zero added value for the customer must be ended at all costs.

RE: https://toot.lgbt/users/FuchsiaShock/statuses/112314285197633042

fabio, to twitter
@fabio@manganiello.social avatar

The cesspit formerly known as has reached such a point of no return that journalists can be kicked out of it for criticizing its sociopath owner, but the sociopath owner will fight with all of his power to ensure that the live stream of a murder won’t be taken down because “freedom of speech”.

https://www.theregister.com/2024/04/23/australia_x_terror_video_takedown/

fabio, to random
@fabio@manganiello.social avatar

I’ve decided to go full-in with my own mail server. The bridge over SSH+VPN tunnel is no substitute for a proper mail server - plus it’s awfully slow when used as a full IMAP server and it breaks the IMAP implementation in a lot of ways.

I’ve created my new domain, gone through the configuration of DKIM/DMARC/SPF like a good postmaster, just to get immediately blacklisted by @spamhaus on my first outbound email.

I’ve been through this before, but in my previous experiences a blacklist removal ticket would be either resolved automatically or within a couple of hours at most.

In this case, nearly 24h and three tickets later and nothing is moving. Not even some directions on how to get removed or an ETA. The mailboxes have already been all migrated with forwarding configured on the old addresses, but outbound email is still broken because being blacklisted by a single company means being unable to communicate with nearly any mail servers out there.

Does anyone have any tips on how a blacklist removal process can be sped up?

fabio,
@fabio@manganiello.social avatar

@djsumdog yup, indeed mail-tester.com gives a 10/10 to my new mail domain (it’s not the first time I set up one), but only a couple of hours ago @spamhaus removed it from their blacklist.

And I still get quarantine reports from noreply-dmarc-support@google.com when I send emails to GMail addresses informing me that the email has been quarantined (although the report clearly states that all the checks are green).

I’m trying to imagine how the WWW would like if in order to run my own website I first needed the approval of an external company whose blacklist is used by 90% of the browsers out there, if by default every new website is blacklisted, if removal from that blacklist involved opening a ticket to that company, and if even after removal arbitrary major browser producers out there would still arbitrarily refuse to connect to your website (using very opaque acceptance criteria).

I understand that the potential for spam/scam is higher with email than with HTTP, but if my domain checks all the boxes (SPF/DMARC/DKIM/RDNS/TLS) then a “you can send email to everyone, and if something is wrong for too long we blacklist you” policy should apply.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • kavyap
  • everett
  • thenastyranch
  • magazineikmin
  • ngwrru68w68
  • DreamBathrooms
  • modclub
  • Youngstown
  • slotface
  • PowerRangers
  • osvaldo12
  • InstantRegret
  • rosin
  • Leos
  • hgfsjryuu7
  • Durango
  • vwfavf
  • khanakhh
  • tester
  • GTA5RPClips
  • ethstaker
  • mdbf
  • cubers
  • tacticalgear
  • normalnudes
  • cisconetworking
  • provamag3
  • All magazines
    •