Aral Balkan<p>Ooh, what’s this?… Look Over There!<br>(With apologies to Jaida Essence Hall)</p><p>So the little app I teased earlier is ready and deployed and I have our own instance running at:</p><p><a href="https://look-over-there.small-web.org" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">look-over-there.small-web.org</span><span class="invisible"></span></a></p><p>Look Over There! lets you forward multiple domains to different URLs with full HTTPS support.</p><p>Why?</p><p>We have a number of older sites that are becoming a chore/expensive to maintain and yet I don’t want to break the web. So I thought, hey, I’ll just use the “url forwarding” feature of my domain registrar to forward them to their archived versions on archive.org.</p><p>Ah, not so fast, young cricket… seems some domain registrars’ implementations of this feature do not work if the domain being forwarded is accessed via HTTPS (yes, in 2025).</p><p>So, given Kitten¹ uses Auto Encrypt² to automatically provision Let’s Encrypt certificates, I added a domain forwarding feature to it and created Look Over There! as a friendly/simple app that provides a visual interface to it.</p><p>To see it in action, hit <a href="https://cleanuptheweb.org" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">cleanuptheweb.org</span><span class="invisible"></span></a> and you should get forwarded to the archived version of it on archive.org. I’m going to be adding more of our sites to the list in the coming days as part of an effort to reduce my maintenance load and cut down our expenses at Small Technology Foundation.</p><p>Since it’s Small Web, this particular instance is just for us. However, you can run your own copy on a VPS (or even a little single-board computer at home, etc.) A link to the source code repository is on the site. Once Domain³ is ready for use (later this year 🤞), setting up your own instance of a Small Web app at your own server will take less than a minute.</p><p>I hope this little tool, along with the 404→307 (evergreen web) technique⁴, helps us to nurture an evergreen web and avoid link rot. (And the source code, as little as there is because Kitten does so much for you, is a good resource if you want to learn about Kitten’s new class-based component and page model which I haven’t yet had a chance to properly document.)</p><p>Enjoy!</p><p>:kitten:💕</p><p>¹ <a href="https://kitten.small-web.org" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">kitten.small-web.org</span><span class="invisible"></span></a><br>² <a href="https://codeberg.org/small-tech/auto-encrypt" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">codeberg.org/small-tech/auto-e</span><span class="invisible">ncrypt</span></a><br>³ <a href="https://codeberg.org/domain/app" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">codeberg.org/domain/app</span><span class="invisible"></span></a><br>⁴ <a href="https://4042307.org" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">4042307.org</span><span class="invisible"></span></a></p><p><a href="https://mastodon.ar.al/tags/LookOverThere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LookOverThere</span></a> <a href="https://mastodon.ar.al/tags/Kitten" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Kitten</span></a> <a href="https://mastodon.ar.al/tags/SmallWeb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SmallWeb</span></a> <a href="https://mastodon.ar.al/tags/SmallTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SmallTech</span></a> <a href="https://mastodon.ar.al/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://mastodon.ar.al/tags/archiving" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>archiving</span></a> <a href="https://mastodon.ar.al/tags/evergreenWeb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>evergreenWeb</span></a> <a href="https://mastodon.ar.al/tags/dontBreakTheWeb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>dontBreakTheWeb</span></a> <a href="https://mastodon.ar.al/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.ar.al/tags/https" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>https</span></a> <a href="https://mastodon.ar.al/tags/TLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TLS</span></a> <a href="https://mastodon.ar.al/tags/webForwarding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>webForwarding</span></a> <a href="https://mastodon.ar.al/tags/urlForwarding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>urlForwarding</span></a> <a href="https://mastodon.ar.al/tags/Domain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Domain</span></a></p>
Recent searches
No recent searches
Search options
Not available on radikal.social.
radikal.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
radikal.social was created by a group of activists to offer federated social media for the radical left in and around Denmark.
Administered by:
Server stats:
153active users
radikal.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#LetsEncrypt
1 post · 1 participant · 0 posts today
Miguel Afonso Caetano<p>"When Let’s Encrypt, a free certificate authority, started issuing 90 day TLS certificates for websites, it was considered a bold move that helped push the ecosystem towards shorter certificate life times. Beforehand, certificate authorities normally issued certificate lifetimes lasting a year or more. With 4.0, Certbot is now supporting Let’s Encrypt’s new capability for six day certificates through ACME profiles and dynamic renewal at:</p><p> - 1/3rd of lifetime left<br> - 1/2 of lifetime left, if the lifetime is shorter than 10 days"</p><p><a href="https://www.eff.org/deeplinks/2025/04/certbot-40-long-live-short-lived-certs" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">eff.org/deeplinks/2025/04/cert</span><span class="invisible">bot-40-long-live-short-lived-certs</span></a></p><p><a href="https://tldr.nettime.org/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://tldr.nettime.org/tags/WebSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebSecurity</span></a> <a href="https://tldr.nettime.org/tags/TLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TLS</span></a> <a href="https://tldr.nettime.org/tags/Certbot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Certbot</span></a> <a href="https://tldr.nettime.org/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a></p>
Jill Veldhuis 💾<p>Random <a href="https://kind.social/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a> tip for any who might be interested:</p><p>If you use <a href="https://kind.social/tags/GetSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GetSSL</span></a> to get your <a href="https://kind.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> certs, you'll get four files:</p><p>* The key (example.com.key)<br>* The domain cert (example.com.crt)<br>* The CA cert (chain.crt)<br>* The "full chain" cert (fullchain.crt)</p><p>Make sure to use the full chain cert, *not* the domain cert, when setting up your server. Otherwise some services will give you "unknown authority" errors.</p>
Erik van Straten<p>Let's Encrypt</p><p>In <a href="https://infosec.exchange/@aral@mastodon.ar.al/114224524044750719" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@aral@mastodo</span><span class="invisible">n.ar.al/114224524044750719</span></a> <span class="h-card" translate="no"><a href="https://mastodon.ar.al/@aral" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>aral</span></a></span> wants us to pay taxes to keep Let's Encrypt "alive". Here's another reason NOT to do that.</p><p>Apparently the *.eu.org domain needed laundrying because it's reputation became too bad. So scammers create zillions of insane domain names and obtain *FREE* (for them) certificates for those sites. Usually such sites are not malicious; they're intended to have virusscanners remove detection, eventually for the sub-TLD ".eu.org".</p><p>To see this, you may consider opening<br> <a href="https://crt.sh?q=eu.org" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">crt.sh?q=eu.org</span><span class="invisible"></span></a><br>but that will fail because there are WAY too many results.</p><p>To restrict the amount of records, try a subdomain name and further restrict output by deduplicating and restricting to not expired, as follows:</p><p> <a href="https://crt.sh/?Identity=madaline.eu.org&exclude=expired&deduplicate=Y" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">crt.sh/?Identity=madaline.eu.o</span><span class="invisible">rg&exclude=expired&deduplicate=Y</span></a></p><p>The screenshot below gives an idea (they're all Let's Encrypt certs by the way, and I marked one with an insane domain name).</p><p>I wrote about this phenomenon before, e.g. in <a href="https://www.security.nl/posting/781057/Let%27s+Encrypt+git_git_git___" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">security.nl/posting/781057/Let</span><span class="invisible">%27s+Encrypt+git_git_git___</span></a> (at the time I did not understand why yet).</p><p>VirusTotal knows of 72.5K direct subdomains of *.eu.org:</p><p> "Subdomains (72.5 K)"</p><p>(open the RELATIONS tab in <a href="https://www.virustotal.com/gui/domain/eu.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">virustotal.com/gui/domain/eu.o</span><span class="invisible">rg/</span></a>).</p><p><span class="h-card" translate="no"><a href="https://mstdn.social/@TheDutchChief" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>TheDutchChief</span></a></span> <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span> </p><p><a href="https://infosec.exchange/tags/DV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DV</span></a> <a href="https://infosec.exchange/tags/DVcerts" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DVcerts</span></a> <a href="https://infosec.exchange/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a></p>
Jan Wildeboer 😷:krulorange:<p>Instead of relying on the US, the <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span> could have spent the equivalent of one or two state dinners on creating an EU based alternative to <a href="https://social.wildeboer.net/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a>. They still can :) cc <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EC_DIGIT" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EC_DIGIT</span></a></span></p>
Steve Leach<p>Ok.. it actually is that simple: <a href="https://medium.com/@mariovanrooij/adding-https-to-fastapi-ad5e0f9e084e" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@mariovanrooij/addi</span><span class="invisible">ng-https-to-fastapi-ad5e0f9e084e</span></a></p><p>I don't know how many times I screwed that up in so many mysterious ways - mainly 'cause I was trying *somehow* to not have to run my script as root. It feels strange to run anything as root - you just don't do that, right?</p><p>But fine... <a href="https://sigmoid.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> is pretty easy and awesome. It solves my <a href="https://sigmoid.social/tags/Firefox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Firefox</span></a>'s fear of my little VM. I like to see machines getting along.</p>
Aral Balkan<p>So after listening to your feedback, I agree: let’s spend that money in the EU to create a publicly-owned, free and open ACME-compatible certificate authority.</p><p>See post quoted below, with links to Tom’s work as he’s already been thinking/working on this.</p><p><a href="https://mastodon.ar.al/tags/EU" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EU</span></a> <a href="https://mastodon.ar.al/tags/ACME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ACME</span></a> <a href="https://mastodon.ar.al/tags/TLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TLS</span></a> <a href="https://mastodon.ar.al/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://mastodon.ar.al/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.ar.al/tags/technologyCommons" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technologyCommons</span></a> <a href="https://mastodon.ar.al/tags/SmallTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SmallTech</span></a> <a href="https://mamot.fr/@tdelmas/114224564125819333" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mamot.fr/@tdelmas/114224564125</span><span class="invisible">819333</span></a></p>
#cryptohagen<p>The Open Technology Fund has filed a lawsuit against the Trump administration for cutting funding previously authorized by Congress</p><p>The organization is part of the United States Agency for Global Media and is a major sponsor for <a href="https://social.data.coop/tags/Tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tor</span></a>, <a href="https://social.data.coop/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>letsencrypt</span></a> <a href="https://social.data.coop/tags/OpenVPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenVPN</span></a>, and many anti-surveillance projects</p><p>The White House cut USAGM funding earlier this month through a presidential executive order<br><a href="https://news.bloomberglaw.com/federal-contracting/open-technology-fund-sues-global-media-agency-over-fund-freeze" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.bloomberglaw.com/federal-</span><span class="invisible">contracting/open-technology-fund-sues-global-media-agency-over-fund-freeze</span></a> (paywalled)</p>
Klaus Frank<p><span class="h-card" translate="no"><a href="https://mastodon.ar.al/@aral" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>aral</span></a></span> <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span> <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span> </p><p>We already have multiple European alternatives to <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> </p><p>We have ZeroSSL (Austria) and Buypass Go SSL (Norway).</p><p>So no problem here.<br><a href="https://chaos.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a></p>
utzer [Pleroma]Kann die <a class="hashtag" href="https://soc.utzer.de/tag/eu" rel="nofollow noopener noreferrer" target="_blank">#EU</a> oder wenigstens <a class="hashtag" href="https://soc.utzer.de/tag/deutschland" rel="nofollow noopener noreferrer" target="_blank">#Deutschland</a> bitte jetzt einspringen? Wenn der <a class="hashtag" href="https://soc.utzer.de/tag/otf" rel="nofollow noopener noreferrer" target="_blank">#OTF</a> (Open Technology Fund) in Schwierigkeiten ist, wird das für viele Menschen weltweit zum Problem.<br><br>• <a class="hashtag" href="https://soc.utzer.de/tag/tor" rel="nofollow noopener noreferrer" target="_blank">#Tor</a> ist essenziell für digitale <a class="hashtag" href="https://soc.utzer.de/tag/freiheit" rel="nofollow noopener noreferrer" target="_blank">#Freiheit</a> – für <a class="hashtag" href="https://soc.utzer.de/tag/journalistinnen" rel="nofollow noopener noreferrer" target="_blank">#Journalistinnen</a>, Aktivistinnen, Bewegungen für <a class="hashtag" href="https://soc.utzer.de/tag/demokratie" rel="nofollow noopener noreferrer" target="_blank">#Demokratie</a>, z. B. gerade wieder in der <a class="hashtag" href="https://soc.utzer.de/tag/türkei" rel="nofollow noopener noreferrer" target="_blank">#Türkei</a>.<br>• <a class="hashtag" href="https://soc.utzer.de/tag/signal" rel="nofollow noopener noreferrer" target="_blank">#Signal</a> wurde (mit)gefördert.<br>• <a class="hashtag" href="https://soc.utzer.de/tag/letsencrypt" rel="nofollow noopener noreferrer" target="_blank">#LetsEncrypt</a> ist aus dem sicheren <a class="hashtag" href="https://soc.utzer.de/tag/internet" rel="nofollow noopener noreferrer" target="_blank">#Internet</a> nicht mehr wegzudenken.<br>• <a class="hashtag" href="https://soc.utzer.de/tag/fdroid" rel="nofollow noopener noreferrer" target="_blank">#FDroid</a>, <a class="hashtag" href="https://soc.utzer.de/tag/vpn" rel="nofollow noopener noreferrer" target="_blank">#VPN</a>-Dienste und viele weitere freie Tools hängen da mit dran.<br><br>Stellt euch vor, all das wird wegen ein paar lumpiger Dollar kaputtgespart – aus ideologischer Laune heraus.<br><br>Wir sollten jetzt handeln:<br>• Diese Projekte fördern.<br>• <a class="hashtag" href="https://soc.utzer.de/tag/otf" rel="nofollow noopener noreferrer" target="_blank">#OTF</a> retten.<br>• Und fordern, dass zentrale Dienste, Entwicklung und Infrastruktur verstärkt in die <a class="hashtag" href="https://soc.utzer.de/tag/eu" rel="nofollow noopener noreferrer" target="_blank">#EU</a> verlagert werden – so wie sie bisher oft in den <a class="hashtag" href="https://soc.utzer.de/tag/usa" rel="nofollow noopener noreferrer" target="_blank">#USA</a> konzentriert waren.<br><br>Zeigen wir ihnen, wie sich <a class="hashtag" href="https://soc.utzer.de/tag/trump" rel="nofollow noopener noreferrer" target="_blank">#Trump</a> gerade selbst rücklings ins Knie schießt.<br><br><a href="https://www.heise.de/news/Nach-Trump-Dekret-Kampf-um-US-Foerdermittel-fuer-Tor-F-Droid-und-Let-s-Encrypt-10328226.html" rel="nofollow noopener noreferrer" target="_blank">https://www.heise.de/news/Nach-Trump-Dekret-Kampf-um-US-Foerdermittel-fuer-Tor-F-Droid-und-Let-s-Encrypt-10328226.html</a>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.ar.al/@aral" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>aral</span></a></span> <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span> <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span> call me weird but the developments of <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> vs. <span class="h-card" translate="no"><a href="https://mastodon.social/@cacert" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cacert</span></a></span> shows everything wrong with the way <a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a> works.</p><p>We would've had a superior alternative to <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> if <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GAFAMs</span></a> weren't able or even allowed to cockblock <a href="https://infosec.space/tags/CACert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CACert</span></a> by refusing to import it's <em>ROOT-CA</em>, whilst every commercial <a href="https://infosec.space/tags/CA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CA</span></a> gets their keys imported, no matter how shit they are or that they are essentially a hostile state actor!</p>
Aral Balkan<p>🚨 Let’s Encrypt at risk from Trump cuts to OTF: “Let’s Encrypt received around $800,000 in funding from the OTF”</p><p>Dear <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span>, get your heads out of your arses and let’s find <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> €1M/year (a rounding error in EU finances) and have them move to the EU.</p><p>If Let’s Encrypt is fucked, the web is fucked, and the Small Web is fucked too. So how about we don’t let that happen, yeah?</p><p>(In the meanwhile, if the Let’s Encrypt folks want to make a point about how essential they are, it might be an idea to refuse certificates to republican politicians. See how they like their donation systems breaking in real time…)</p><p>CC <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span> @NGIZero@mastodon.xyz </p><p><a href="https://mastodon.ar.al/tags/USA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>USA</span></a> <a href="https://mastodon.ar.al/tags/fascism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fascism</span></a> <a href="https://mastodon.ar.al/tags/OpenTechFund" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenTechFund</span></a> <a href="https://mastodon.ar.al/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.ar.al/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a> <a href="https://mastodon.ar.al/tags/TLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TLS</span></a> <a href="https://mastodon.ar.al/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> <a href="https://mastodon.ar.al/tags/EU" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EU</span></a> <a href="https://mastodon.ar.al/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://mastodon.ar.al/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://mastodon.ar.al/tags/SmallWeb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SmallWeb</span></a> <a href="https://mastodon.ar.al/tags/SmallTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SmallTech</span></a> <a href="https://mastodon.social/@publictorsten/114223873439053263" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@publictorsten</span><span class="invisible">/114223873439053263</span></a></p>
Terence Eden<p>Right!</p><p><a href="https://mastodon.social/tags/JellyFin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>JellyFin</span></a> installed. Most of my media reorganised and indexed.</p><p><a href="https://mastodon.social/tags/Tailscale" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tailscale</span></a> deleted. I can't be bothered running it 24/7 on my phone.</p><p><a href="https://mastodon.social/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Docker</span></a> and <a href="https://mastodon.social/tags/NGINX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NGINX</span></a> reverse proxy manager installed. Probably done that right. No idea if it'll survive a reboot.</p><p><a href="https://mastodon.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> set up with Dynamic DNS. No SSL errors!</p><p>HD Streaming over 5G works - but will have to see how adaptive it is on shitty hotel WiFi.</p><p>Bit of a faff, but seems to be working. Next step is configuring a Fire Stick to work with it.</p>
Aral Balkan<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@codinghorror" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>codinghorror</span></a></span> <span class="h-card" translate="no"><a href="https://tomkahe.com/@trending_bot" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>trending_bot</span></a></span> Related, longer-term thought, in case it interests you: getting <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> to work with <span class="h-card" translate="no"><a href="https://social.privacytools.io/@opennic" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>opennic</span></a></span> would put us on a path to set domain names free from the commercial system (after which we could try to get the EU to force browsers to support OpenNIC natively).</p><p><a href="https://mastodon.ar.al/@aral/114173316981178689" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.ar.al/@aral/114173316</span><span class="invisible">981178689</span></a></p><p><a href="https://mastodon.ar.al/tags/OpenNIC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenNIC</span></a> <a href="https://mastodon.ar.al/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.ar.al/tags/freeTheDomain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>freeTheDomain</span></a> <a href="https://mastodon.ar.al/tags/domainNames" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>domainNames</span></a> <a href="https://mastodon.ar.al/tags/internet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>internet</span></a> <a href="https://mastodon.ar.al/tags/identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identity</span></a> <a href="https://mastodon.ar.al/tags/decentralisation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>decentralisation</span></a></p>
Aral Balkan<p><span class="h-card" translate="no"><a href="https://social.vivaldi.net/@zbrando" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>zbrando</span></a></span> <span class="h-card" translate="no"><a href="https://appdot.net/@morrick" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>morrick</span></a></span> <span class="h-card" translate="no"><a href="https://social.vivaldi.net/@ueeu" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ueeu</span></a></span> You’re not wrong.</p><p>But, looking ahead, we can do so much better than the commercial domain name system.</p><p>Commercial domain names are a gold standard example of artificial scarcity. A domain name registrar cost next to nothing to operate. It’s tiny rows of text in a database. It could easily be free to own your own domain name – a huge part of what constitutes identity – on the Internet.</p><p>In fact, a non-commercial service has been operational for 24 years. It would be trivial to regulate that browsers in the EU implement support for it and work together with, say, <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> to ensure it can handle TLS.</p><p>That would be an amazing addition to the commons and a future-proof way forward that we could lead on with next to no investment.</p><p><a href="https://mastodon.ar.al/tags/domainNames" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>domainNames</span></a> <a href="https://mastodon.ar.al/tags/DNS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DNS</span></a> <a href="https://mastodon.ar.al/tags/openNic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openNic</span></a> <a href="https://mastodon.ar.al/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.ar.al/tags/EU" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EU</span></a> <a href="https://mastodon.ar.al/tags/commons" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>commons</span></a> <a href="https://mastodon.ar.al/tags/internet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>internet</span></a> <a href="https://mastodon.ar.al/tags/freedom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>freedom</span></a> <a href="https://mastodon.ar.al/tags/ICAAN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ICAAN</span></a></p>
OpenStreetMap Ops Team<p>Most <a href="https://en.osm.town/tags/OpenStreetMap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenStreetMap</span></a> services are now using <a href="https://en.osm.town/tags/ECDSA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ECDSA</span></a> HTTPS web certificates, the remaining certificates will transition upon renewal. Another small incremental improvement to performance and privacy. We manage 164 certificates which are valid for 516 domains and sub-domains (via Subject Alternative Names). All secured by <a href="https://en.osm.town/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> 🤓❤️🔐</p>
@BjornW@mastodon.social<p>Thought experiment:</p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> offers certificates to encrypt the traffic between a website & your browser.</p><p>They reside in the US & thus are subject to the judiciary system of the US.</p><p>What are the possible risks for websites outside the US, given the current unstable political situation & administration? What type of damage could an executive order do? How could this be mitigated?</p><p>Boosts appreciated.</p><p><a href="https://mastodon.social/tags/Politics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Politics</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/GeoPolitics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GeoPolitics</span></a> <a href="https://mastodon.social/tags/Encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Encryption</span></a> <a href="https://mastodon.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mastodon.social/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tech</span></a></p>
Alex D'Andrea<p>Just blogged: Migrating off Microsoft Onedrive - <a href="https://alex.dandrea.io/2025/02/23/migrating-off-microsoft-onedrive/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">alex.dandrea.io/2025/02/23/mig</span><span class="invisible">rating-off-microsoft-onedrive/</span></a></p><p><a href="https://infosec.exchange/tags/onedrive" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>onedrive</span></a> <a href="https://infosec.exchange/tags/syncthing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>syncthing</span></a> <a href="https://infosec.exchange/tags/immich" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>immich</span></a> <a href="https://infosec.exchange/tags/traefik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>traefik</span></a> <a href="https://infosec.exchange/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>letsencrypt</span></a> <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a></p>
Erik van Straten<p>Fsck de overheid: "Het automatiseren van certificaatbeheer door de overheid op basis van ACME zorgt voor het efficiënter en betrouwbaarder verkrijgen, vernieuwen en intrekken van TLS-certificaten. Dit maakt de digitale overheid betrouwbaarder, wendbaarder en minder leveranciersafhankelijk", aldus de experts. "Daarnaast vermindert het gebruik van ACME de beheerlast voor het beheer van TLS-certificaten."<br><a href="https://www.security.nl/posting/876900/ACME+voor+uitgifte+tls-certificaten+wordt+mogelijk+verplicht+voor+overheid" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">security.nl/posting/876900/ACM</span><span class="invisible">E+voor+uitgifte+tls-certificaten+wordt+mogelijk+verplicht+voor+overheid</span></a>.</p><p>In een tijd waarin burgers, online, met steeds hogere betrouwbaarheid moeten authenticeren (o.a. voor online leeftijdsverificatie en binnenkort met eID's zoals EDIW/EUDIW), en de anonieme nepwebsites als paddenstoelen uit de grond schieten (*), is dit een *KRANKZINNIG* plan.</p><p>(*) Daarbij geen strobreed in de weggelegd door BigTech - integendeel: medeplichtigheid aan cybercrime is hun verdienmodel geworden.</p><p>Het grote risico hier zijn AitM- (Attacker in the Middle) aanvallen: nietsvermoedende mensen worden via een bericht of een Google zoekresultaat naar een nepwebsite gestuurd, die hen vraagt om bijv. een scan van hun paspoort te uploaden en een selfie-filmpje te maken.</p><p>Beide stuurt de nepwebsite echter dóór naar een echte website, zoals van een bank, bijv. om een lening af te sluiten. De AitM neemt dat geld op, waarna het slachtoffer opdraait voor de schuld.</p><p>Een ESSENTIËLE voorwaarde voor betrouwbare authenticatie is dat je de VERIFIEERDER kunt vertrouwen.</p><p>Of dat zo is, weet je nooit zeker (ook offline niet). Het beste alternatief is dat je weet *WIE* de verifieerder is, en hoe betrouwbaar diens identiteit is vaatgesteld. Dat is, zonder meer, vervelend en prijzig voor eigenaren van websites waar klanten, burgers of patiënten risicovolle transacties doen en/of er vertrouwelijke gegevens mee uitwisselen - maar enorm in het belang van bezoekers van dergelijke websites.</p><p>Betrouwbare authenticatie van (de juridisch aansprakelijke) eigenaar van een website m.b.v. een website-certificaat vormt *technisch* geen enkel probleem (dit *hadden* we al, maar is met een smoes gesloopt door Google).</p><p>In gratis certificaten, bijvoorbeeld van Let's Encrypt (zoals gebruikt door de nepwebsites in onderstaand plaatje) staat uitsluitend een volstrekt anonieme domeinnaam; je hebt dus geen idee wie verantwoordelijk is voor de website.</p><p>Juist bij overheidswebsites is het essentieel dat je weet dat het écht om een overheidswebsite gaat - iets dat bij de in het plaatje getoonde domeinnamen (ik heb de punt door + vervangen), zoals:</p><p>• afhandelen-belasting+com<br>• aflossen-belastingdienst+com</p><p>beslist *niet* het geval is.</p><p>En in de echte <a href="https://www.ggn.nl/contact/phishing/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">ggn.nl/contact/phishing/</span><span class="invisible"></span></a> kunt u voorbeelden zien van domeinnamen van nepwebsites, zoals ook te zien in onderstaand plaatje.</p><p>Kennelijk lukt het niemand om dergelijke criminele websites uit de lucht te halen, terwijl de misdadigers er probleemloos Let's Encrypt certificaten voor *blijven* verkrijgen - naast dat de naar phishing stinkende domeinnamen zonder blikken of blozen worden verhuurd en nooit worden ingetrokken. Dit is simpelweg de SNELSTE en GOEDKOOPSTE oplossing voor eigenaren van websites; de *BEZOEKERS* van die websites draaien op voor alle risico's.</p><p>Het onderstaande plaatje is van een Russische server, maar dit soort phishing websites vind je ook bij de vleet op door criminelen gehuurde servers van Google, Amazon, Microsoft, Digital Ocean, Cloudflare en kleinere westerse hostingbedrijven.</p><p>Ben ik nou ÉCHT DE ÉNIGE die vindt dat deze gecriminaliseerde puinhoop keihard moet worden aangepakt?</p><p>Zie mijn uitgebreide reactie in <a href="https://security.nl/posting/876914" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">security.nl/posting/876914</span><span class="invisible"></span></a> (beginnend met eenvoudige uitleg wat een website-certificaat is).</p><p>Nb. naast certificaatuitgevers moeten ook browsers en het CA/B-forum op de schop. Doen we dit allemaal niet, dan wordt verder digitaliseren een gigantische puinhoop met steeds meer slachtoffers van identiteitsfraude.</p><p><a href="https://infosec.exchange/tags/DVcerts" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DVcerts</span></a> <a href="https://infosec.exchange/tags/ACME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ACME</span></a> <a href="https://infosec.exchange/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> <a href="https://infosec.exchange/tags/NepSites" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NepSites</span></a> <a href="https://infosec.exchange/tags/NepWebSites" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NepWebSites</span></a> <a href="https://infosec.exchange/tags/Phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Phishing</span></a> <a href="https://infosec.exchange/tags/Spoofing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Spoofing</span></a> <a href="https://infosec.exchange/tags/Scams" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scams</span></a> <a href="https://infosec.exchange/tags/IdentiteitsFraude" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentiteitsFraude</span></a> <a href="https://infosec.exchange/tags/Authenticatie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authenticatie</span></a> <a href="https://infosec.exchange/tags/Impersonatie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Impersonatie</span></a> <a href="https://infosec.exchange/tags/GoogleIsEvil" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoogleIsEvil</span></a> <a href="https://infosec.exchange/tags/BigTechIsEvil" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BigTechIsEvil</span></a> <a href="https://infosec.exchange/tags/FakeWebSites" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FakeWebSites</span></a> <a href="https://infosec.exchange/tags/AnoniemeWebsites" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AnoniemeWebsites</span></a> <a href="https://infosec.exchange/tags/AnonymousWebsites" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AnonymousWebsites</span></a> <a href="https://infosec.exchange/tags/OnlineAuthenticatie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OnlineAuthenticatie</span></a> <a href="https://infosec.exchange/tags/LeeftijdVerificatie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LeeftijdVerificatie</span></a> <a href="https://infosec.exchange/tags/OnlineLeeftijdVerificatie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OnlineLeeftijdVerificatie</span></a> <a href="https://infosec.exchange/tags/Authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authentication</span></a> <a href="https://infosec.exchange/tags/Impersonation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Impersonation</span></a> <a href="https://infosec.exchange/tags/OnlineAuthentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OnlineAuthentication</span></a> <a href="https://infosec.exchange/tags/AgeVerification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AgeVerification</span></a> <a href="https://infosec.exchange/tags/OnlineAgeVerification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OnlineAgeVerification</span></a> <a href="https://infosec.exchange/tags/AitM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AitM</span></a> <a href="https://infosec.exchange/tags/MitM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MitM</span></a> <a href="https://infosec.exchange/tags/Evilginx2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Evilginx2</span></a></p>
Root Moose<p>More supply chain thoughts.</p><p>Let's Encrypt is based in the United States.</p><p><a href="https://root.moose.ca/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>letsencrypt</span></a> <a href="https://root.moose.ca/tags/supplychain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>supplychain</span></a> <a href="https://root.moose.ca/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a> <a href="https://root.moose.ca/tags/freebsd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>freebsd</span></a> <a href="https://root.moose.ca/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>web</span></a> <a href="https://root.moose.ca/tags/certificate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certificate</span></a> <a href="https://root.moose.ca/tags/ssl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ssl</span></a> <a href="https://root.moose.ca/tags/tls" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tls</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload