this post was submitted on 10 Jul 2023
29 points (100.0% liked)

Meta

1 readers
1 users here now

About

๐Ÿ—ž๏ธ FOSSware staff will post regular updates about this instance or other Fediverse topics in this community.


Rules

๐Ÿงพ General Instance Rules apply

Look at the side bar of the main feed.

๐Ÿ‘ฎ Only Staff Members can create Threads here

If you need help or want to ask a question, use /c/fossware_support. Thanks! ๐Ÿ˜ป


๐Ÿ”— Other Resources

founded 1 year ago
MODERATORS
 

Hey, guys.

Pre-workday-Netto chiming in to inform you that a XSS vulnerability has been found in Lemmy's frontend and that several instances have been compromised.

You can track the issue here.

I implemented the supposed patch and uploaded an ARM64 build that has the patch applied to Docker Hub, if any other instance might need it (use with caution).

Please note that you'll have to log back in, as all active sessions have been terminated.

I'll continue to monitor the situation when I'm at work.

โœŒ๏ธ

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 2 points 1 year ago* (last edited 1 year ago) (2 children)

I'm thinking about a status page for FOSSWare. I have a VPS on Linode (in DE zone). If FOSSWare isn't hosted on Linode, I can setup a static site that I will be pulling from a repo of your choice. So, this will be a page that is being maintained on a different provider by a different person. What do you think? It could be served as is or as a Cloudflare static site. However, I would rather try depending on as few providers as possible for it.

[โ€“] [email protected] 2 points 1 year ago* (last edited 1 year ago) (1 children)

Good idea and thank you. However, you just caught me in the act of setting up a status monitor on another VPS I run at a different provider. Will be up in a couple ~~minutes~~ hours (something else just came in).

[โ€“] [email protected] 1 points 1 year ago

That's great. A static page where you can post a short message in case of an outage would be nice to have as well.

[โ€“] [email protected] 1 points 1 year ago

On the second thought, something like a Codeberg/Gitlab/Github static page would be just enough:)