<p>&quot;Stay down, Miller.&quot;</p><p>Amos just gave Miller the crazy eye after laying him down on his ass in the staff break room.</p>

looks like shitposter world is still counted as a "new instance", so some fedi instances which have anti-spam MRFs that block new accounts still refuse to communicate with it

<p>She doesn&#39;t use sex as a weapon. She uses weapons as weapons.</p>

<p>Bobbie just beat a robot at arm wrestling.</p>

<p><span class="h-card" translate="no"><a href="https://mastodon.online/@danirabbit" class="u-url mention">@<span>danirabbit</span></a></span></p><p>You have the most expressive face.</p><p>It&#39;s never &quot;just&quot; a selfie; always a &quot;what just happened a moment before she took the pic?&quot;</p><p>In case I&#39;m not being clear, BTDub, that&#39;s a good thing.</p>

<p>Chrisjen&#39;s secret service codename is Archangel for some reason.</p>

The fine folks at akkoma released a security update that fixes some things with the diverse ways of putting stuff on your domain (uploads, stolen emoji, mediaproxy). Some of those patches will make it into Pleroma too, but for now: RUN UPLOADS AND MEDIA PROXY ON A DIFFERENT SUBDOMAIN. That prevents any impersonation issues. We will drop any support for same-domain setups in the near future, it's just not worth the risk. Check out the information provided by akkoma for details and more fine grained mitigation steps: https://meta.akkoma.dev/t/akkoma-stable-2024-03-securer-i-barely-know-her/681

<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@skinnylatte" class="u-url mention">@<span>skinnylatte</span></a></span> <span class="h-card" translate="no"><a href="https://alpha.polymaths.social/@amin" class="u-url mention">@<span>amin</span></a></span> yeah; I&#39;ve looked into it and my conclusion was that basically all options were completely impractical</p>