@thisismissem@hachyderm.io avatar

thisismissem

@thisismissem@hachyderm.io

Tech Princess 👸🏻 Feminist Politicker 💁🏻‍♀️ Fashionable Woman 💋 Tooling Witch 🛠
🚀 Founder of https://unobvious.technology
Pro-Unions 💪🏻 Trans & Queer 🏳️‍⚧️🏳️‍🌈

I currently work on Moderation and Trust & Safety tooling for the Fediverse.

Contributor to Mastodon & Pixelfed.
You've probably used code I’ve written.

Advisor to IFTAS (https://about.iftas.org)

This profile is from a federated server and may be incomplete. Browse more on the original instance.

thisismissem, to random
@thisismissem@hachyderm.io avatar

“The unfiltered internet is a sewer” – @oliphant not at all being wrong: https://wedistribute.org/podcast/oliphant-in-the-room/

thisismissem,
@thisismissem@hachyderm.io avatar

“What is THE answer? I want to speak to the manager of the Fediverse” – @oliphant

@damon gotta remember to reference this & relate back to FIRES

thisismissem,
@thisismissem@hachyderm.io avatar

Aww, shucks! Thanks for the shout out @oliphant!

I mean part of the answer is I poured €16,000 into funding myself to develop openly for the fediverse last year (profit of €11,500 pre taxes last year from sponsorship & fediverse client work)

In 2018, I had a freelance client who paid me handsomely, where the payment wasn't based on hours worked, so I could spend a tonne of time on Mastodon to make moderating switter.at easier.

thisismissem, (edited )
@thisismissem@hachyderm.io avatar

But all my work in the fediverse is only possible with sponsors & donations via https://support.thisismissem.social

And with people hiring me as a freelancer (e.g., IFTAS), and grants from say @nlnetlabs

I'm working to make Fediverse Trust & Safety my full-time job.

thisismissem,
@thisismissem@hachyderm.io avatar

If you're interested in hiring me, please do reach out!

I'm really needing contracts and letters of intent for business relationships at the moment, as I'm in a visa / immigration process that requires them.

thisismissem,
@thisismissem@hachyderm.io avatar

“I think FIRES is written in a way that you can have multiple labels & filters” – @oliphant

Yes, this is correct! It's a flexible data model designed around event sourcing, linked data, and replication in distributed systems

thisismissem,
@thisismissem@hachyderm.io avatar

”how do moderation efforts in the fediverse collaborate” — @damon / @deadsuperhero

I think I can add a bit more to that, basically: we can try, but everyone has to be interested in collaborating, which is easier said than done.

Everyone has the own priorities.

thisismissem, (edited ) to Pixelfed
@thisismissem@hachyderm.io avatar

I do really want to thank @nivenly (and especially @esk) for sponsoring the work to fix the critical security vulnerability found in @pixelfed earlier in February:

https://hachyderm.io/@thisismissem/112022457133862143

Nivenly stepped up, even though they don't have a stake in Pixelfed, they just wanted to see the Fediverse be safer, more secure and all that.

Without their support, I wouldn't have been able to dedicate the time to handling that (since I'm a freelancer)

See also: https://hachyderm.io/@esk/112023516859064066

#nivenly #pixelfed

thisismissem,
@thisismissem@hachyderm.io avatar

(edited to clarify I meant February 10th, not like.. March. I mean: time & months changing, what is this business 😂 )

thisismissem, to Pixelfed
@thisismissem@hachyderm.io avatar

Details of the @pixelfed security vulnerability from February 10th have now been published.

If you are still using a vulnerable version (39.5% of pixelfed instances as of today), then you should update immediately, otherwise someone may just be able to turn off federation for your instance.

https://github.com/pixelfed/pixelfed/security/advisories/GHSA-gccq-h3xj-jgvf

thisismissem,
@thisismissem@hachyderm.io avatar

This vulnerability in @pixelfed means any application with which you have signed in with your pixelfed account via OAuth Authentication has FULL access to your account, and if your account is an Admin account, full administrative access to your Pixelfed server.

thisismissem,
@thisismissem@hachyderm.io avatar

@devnull @pixelfed @nivenly They sponsored the fix (basically my time to document it more fully and write patches for Pixelfed to accept)

sarajw, to random
@sarajw@front-end.social avatar

Does anyone working in Germany as a normal employee take a little cash on the side (legally) for stuff like giving talks, reviewing books, writing articles or other comparable stuff?

I'm happy in my job and want to keep it, but some little opportunities may come up where I could earn something, currently I'm opting out or doing it for free because of the whole tax thing.

I'm trying to figure out whether I can do a Nebenjob freiberuflich, or something. The whole system terrifies me, haha! Help?

thisismissem,
@thisismissem@hachyderm.io avatar

@sarajw @angelikatyborska get yourself registered as a freelancer for that activity, get a kontist account, get accountable; and it's relatively easy to freelance:

  1. https://kontist.com/r/emeliaJH7
  2. https://www.accountable.de/en/r/?ref=mgy3zmy

(both referral links)

Also follow the German invoicing requirements for small businesses (unless you pass the VAT threshold)

thisismissem,
@thisismissem@hachyderm.io avatar
thisismissem,
@thisismissem@hachyderm.io avatar

@sarajw @angelikatyborska Also be sure to get your employer's consent.

jay_peper, to random
@jay_peper@chaos.social avatar

I've started seeing "FLINTA" being used in English and I'm confused. Is it a German import? Does it mean something different? Can't seem to find anything definitive.

(I mostly see it in an explicitly queer context, so a direct import seems most likely)

thisismissem,
@thisismissem@hachyderm.io avatar

@jay_peper I think it's the same? Didn't FLINTA come originally from the African American communities?

thisismissem,
@thisismissem@hachyderm.io avatar

@jay_peper no idea, I first saw it being use by Americans, and it still works in English

thisismissem, to random
@thisismissem@hachyderm.io avatar

Too good: A Closer Lick with Seth Meyers: https://youtube.com/watch?v=cqCZQJ-4lhY

jeffjarvis, to random
@jeffjarvis@mastodon.social avatar

Looking forward to subscribing to this. Interesting that newspapers place star reporters not only on cable news but also now podcasts....
Exclusive: WaPo tech columnist Taylor Lorenz launches video podcast with Vox Media https://www.axios.com/2024/02/29/washington-post-taylor-lorenz-video-podcast-vox

thisismissem,
@thisismissem@hachyderm.io avatar

@jeffjarvis mm, I'm hoping she's learned some lessons from her last foray into audiovisual media. Though I'm not sure that's the case.

thisismissem,
@thisismissem@hachyderm.io avatar

@Beeks @jeffjarvis she got played by a stochastic terrorist.

hrefna, to random
@hrefna@hachyderm.io avatar

I'm having a Day™, so let's take a look at the denylist (https://github.com/iftas-org/resources/tree/main/CARIAD), since that's a good way to distract myself.

First, IFTAS is doing a few things differently than others.

  1. They are sourcing from only larger instances' blocklists. For inclusion servers must have at least 2k monthly active users and have been around a year.
  2. They combine a manually sourced list (their DNI list) with their consensus list.
  3. They do provide a way to get off the list via email.

1/

thisismissem,
@thisismissem@hachyderm.io avatar

@hrefna yeah, that's fair, I think. I'll see if I can get to the bottom of why we don't publish sources (we certainly could)

thisismissem,
@thisismissem@hachyderm.io avatar

@hrefna ah, that document may be outdated, I'd have to look; but in CARIAD as implemented in FediCheck, domains are manually reviewed and approved for being considered for any of the percentage tiers (this was a fairly late addition based on feedback we received)

thisismissem,
@thisismissem@hachyderm.io avatar

@hrefna shared with the team, thanks. I've also on our list to add an audit log of actions we've attempted to perform on your server & changes to lists for FediCheck. This may also include information like when we failed to push due to a server outage or something

As currently we need to rely on Admins viewing their instance's audit log which can be a bit complex.

thisismissem,
@thisismissem@hachyderm.io avatar

@hrefna i've raised this with the team, hopefully we can rectify this shortly, because yes, there's absolutely a manual review process.

hrefna, to random
@hrefna@hachyderm.io avatar

Once again, for those who refuse to acknowledge consensus reality:

Nivenly is not supporting, does not control, never funded, and has no hand in TBS. It never has.

Unless he has joined since the last time this went around, which seems doubtful, Ro is not a member of Nivenly.

You can think what you like, but stop spreading misinformation.

thisismissem,
@thisismissem@hachyderm.io avatar

@hrefna yeah, I'd say you're correct on FSEP being abandoned for all intents and purposes — I do sometimes reference it as "prior art” because some ideas have roots in FSEP (e.g., user-level domain block suggestions)

  • All
  • Subscribed
  • Moderated
  • Favorites
  • bokunoheroacademia
  • rosin
  • osvaldo12
  • khanakhh
  • slotface
  • Youngstown
  • tacticalgear
  • kavyap
  • everett
  • Leos
  • DreamBathrooms
  • rhentai
  • InstantRegret
  • magazineikmin
  • relationshipadvice
  • thenastyranch
  • ethstaker
  • Durango
  • tester
  • cisconetworking
  • lostlight
  • GTA5RPClips
  • mdbf
  • modclub
  • normalnudes
  • HellsKitchen
  • cubers
  • sketchdaily
  • All magazines