Katherine Druckman @katherined@librem.one

I really like the green checkmark system in Mastodon, but when relying on them for trust it's important to keep in mind *what* you are trusting:

* The security of the remote site (hacked site could vouch for an attacker)
* The security of the Mastodon instance (same)
* The integrity of the Mastodon instance (a modified version could let the owner disable the remote check)

This is one reason why I like self-owned instances on the account owner's domain.
#security #trust #GreenCheckmark

I’ll say it again, because I broke my own rule and I’m reaping what I sowed:

Do not automate what you don’t know how to do manually.

Do. Not. Automate, what you don’t know how to do manually.

I am getting schooled by @shawnp0wers @katherined @kyle on @reality2cast about how to use Mastodon. Like, just learned that on searls.com I can put the rel="me" tag in a link back to my handle here. Unless I misunderstood, which happens.

We (the Ostrom Workshop at Indiana University, plus me and my wife, both visiting scholars there) are putting on this salon at the Computer History Museum in Mountain View, CA this coming Monday at 11am Pacific: https://events.iu.edu/ostromworkshop/event/644997-ostrom-workshop-beyond-the-web-salon-series-roger It's free, and online as well as in person. Registration is required for t he online side (it'll be zoomed). Sign up at that link. The speaker is Roger McNamee, former advisor to Mark Zuckerberg, and then the author of the bestseller, Zucked.

So this is when one starts Rabbits of Mastodon.

#rabbitsofmastodon

I’m John. I’ve fallen down the open source supply chain security rabbit hole. My current focus is around leveraging threat model and architecture information to facilitate automated context aware decentralized gamification / continuous improvement of the security lifecycle / posture of open source projects.

- https://gist.github.com/pdxjohnny/07b8c7b4a9e05579921aa3cc8aed4866
- https://github.com/intel/dffml/blob/alice/docs/tutorials/rolling_alice/0000_architecting_alice/README.md#rolling-alice-volume-0-introduction-and-context

https://mastodon.social/@pdxjohnny/109320563491316354

Many talks from this years #LinuxPlumbers conference are now up on #YouTube!

https://www.youtube.com/c/LinuxPlumbersConference/videos

The new "bluechecks will fix everything" system over on the other site seems to have, maybe, a few bugs that a competent trust & safety team might have been useful in working through...

Currently seeking guest speakers for our local #GirlsWhoCode club here at Michigan! Speakers are typically #WomenInSTEM who discuss their career paths and take questions from high school students. Presentations are about 10-15 minutes plus time for questions. Club is virtual so anyone can be our guest speaker! DM me if interested! #WomenInScience #Science #ScienceMigration

Gratuitous self-promotion - a Q&A I wrote with Patrick Ohly, highlighting his work on Kubernetes (#IAmIntel)
https://community.intel.com/t5/Blogs/Tech-Innovation/open-intel/Q-A-Patrick-Ohly-Talks-About-Chopping-Wood-and-Kubernetes-Logs/post/1426064

Apologies Salt-n-Pepa

(Hey yeah, I wanna toot, baby)
Ooh, how you doing, baby?
No, not you, you, the #federated one, yeah
What's your name?
Mastodon? That sounds sexy

Uh, here I go, here I go, here I go again
Geeks, what's my weakness? (FOSS!)
OK then, chillin, browsin, minding my business
Yo Musk, I looked around and I couldn't believe this
I swear, I stared, my tab my witness
The server had it going on with something kinda, uh
Federated, moderated,
I'm not shy, so I asked for the instance

Tech bro? No that don't make me
See what I want sign up to it swiftly
Felt it in my hips so I swiped back from the app of Twits
Then I tapped for the app, make me wanna do posts for it
Pin them like a intro post should be pinned
Came to my timeline then I found all my friends
Don't know how you do the voodoo that you do
Can post from a shell? Well, makes me wanna toot toot toot