Re: Downvote bots. I can’t say they’re necessarily bots, but my instance has scripts that flag accounts that exclusively give out downvotes and then bans them. That’s about the best I can do, at present, to counter those for my users.

It is usually not a good idea to specify what your exact metrics are for a ban. A bad actor could see that and then get around it by randomly upvoting something every now and then.

There is also the risk of homograph attacks. The link below is for domain name encoding via IDN, but the same applies to usernames. You could easily impersonate another user by having chars that look similar.

https://en.wikipedia.org/wiki/IDN_homograph_attack

Sometimes they can be challenging or overgrown, so you have to know what you’re doing and be prepared to turn back if necessary, but I owe a lot of truly incredible experiences to this app.

Since it uses OpenStreetMap you should consider updating it for others later. Don’t think you can do it in Organic, but it can be as simple as in a browser adding a note to a trail about what state it is in.

Approximately at 2024-08-09 09:30 MFA had been removed for all users due to a mistake when MFA was intended to be reset for an individual user.

An UPDATE without a WHERE?

Must be some weird AI bug, because in defensive wars you almost always get your allies to join.

Recruiters can’t see the difference! (Ok, not all but a worrying high percentage)

Subscription based teeth?

That seems to be the general atmosphere, “leaving money”. They probably analysed it and thought it wasn’t worth the effort. Companies like to make money after all.

You still need to keep supporting it for future releases, make sure it actually works and not just builds, test, update QA pipeline, tell support, etc etc

You are getting downvoted by people that have no idea how software development and maintence works.

Every feature cost. More than most people realise. Both in development time and to maintain it over time and releases. It all adds up, not saying EA are correct in not supporting it. But to think it is free is just incorrect.

They made a business decision to not support it. We think it is the wrong decision, but it is ultimately theirs to make.

I think a better, but still not perfect, way to define it would be “This person wants to do X, but can’t support him/her/itself doing it.”

Of course, if you are already rich it doesn’t matter and then it is a bad metric (one of the reasons it isn’t perfect.) However, I think it is a better way to define it. Someone writing a few books as a hobby and then stops are not a failed writer, but someone that wants to be a writer but just can’t support it is.

Basically I think the intent matters, but that is impossible to measure (and people lie about it). So being able to do it as a profession is an ok metric.

You can export the list of subscribed communities in 0.19.

If you do that every now and then a shutdown would still hurt. As all the communities hosted on it would be lost but at least you can import your subscription list on another server.

Different workflows.

GPG signatures are set by the sender to prove the message is originating from the sender and is unchanged. It’s signed with the private key and verified with the public key.

A bit of a nitpick, but important to keep in mind. The GPG signatures shows that someone that has access to the private key sent that message. If I somehow gets a hold of a copy of your key, I can send messages that seems to originate from you.

Everyone has a test enviroment, some are lucky to have a separate production enviroment

Well, we have detected those that have been detected. It is possible that there are some sleeper repos no one has detected yet.

But it is not really a problem or something bad with FOSS, just have to be careful when including and updating libraries, which you always have to be!

Sure, but not symetric

The whole database is encrypted. Just put it on Google Drive or similar and it will be synced automatically.

Also I don’t see Keepass(XC) as difficult or geeky.