Pam Bondi deleted a government study showing that right-wingers commit more terrorism. The right cannot think coherently so instead of making their own studies, they censor legitimate ones.
But don't worry Pam, we saved it for you! web.archive.org/web/2025091116…
reshared this
Darth Tiktaalik 🏳️⚧️, SpaceLifeForm, Tim Chambers and Incognitim reshared this.
TRUMP'S "JUSTICE" DEPT Disappears Study that Proves Most Violence is Caused By Far Right Radicals
dailykos.com/stories/2025/9/12…
#PoliticalViolence #usa #unitedstates #rightwingterrorism #rightwingextremists #farrightextremism #rightwing #Doj
TRUMP'S "JUSTICE" DEPT Disappears Study that Proves Most Violence is Caused By Far Right Radicals
While the nation continues to process the shock and grief caused by the murder of far right activist Charlie Kirk, vile and thoughtless MAGA partisans are feverishly endeavoring to politicize the crime, blaming Democrats and liberals for allegedly...Daily Kos
The developers of SuperTux (the platform game) are at a standstill and are looking for artists capable of taking on and reproducing an existing artistic style to design objects, tilesets, or backgrounds.
reddit.com/r/opensourcegames/c…
Darth Tiktaalik 🏳️⚧️ reshared this.
In Memory of
MELISSA HORTMAN
Former Minnesota House Speaker
1970 - 2025
Taken far too soon in a targeted attack.
A voice for justice, clean energy, and equality.
We honor her legacy, leadership, and courage.
#RestInPower
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
Cory Doctorow, Leftist Lawyer, Enno von Friedland, der.hans, Darth Tiktaalik 🏳️⚧️, Veda Dalsette and Ghost of Hope 🏳️⚧️ reshared this.
I'm in dire need of any help and support from you. Share my link. Donate even 1$ to let my voice heard. Any support makes a difference
@aral
gofund.me/f3c48b11d
reshared this
Darth Tiktaalik 🏳️⚧️ reshared this.
My sick father can't stand the fear and fatigue.💔
@BlackAzizAnansi
@palestine
#mutualaid #MutualAidRequest #gaza
Alt text: flier from Israel (the country committing genocide in Palestine):
إعلان عن منطقة إنسانية.
أمسح رمز QR لكشف
خارطة البلوكات
إلى سكان ومتواجدي مدينة غزة، جيش الدقاع الإسرائيلي في خطوة لحسم حماس داخل مدينة غزة.
من أجل التسهيل على من يغادرون المدينة، ابتداءً من هذه اللحظة ثعلن منطقة المواصي كمنطقة إنسانية، وسيتم فيها القيام بخطواتٍ لتوفير خدمات إنسانية أفضل.
شارع الرشيد مخصص لكم كطريق إنساني، وفي هذه المرحلة يمكنكم المغادرة عيره بسرعة وبالمركبات دون تفتيش.
بالإضافة إلى ذلك، تجرى أعمال ترميم في المستشفى الأوروبي، وذلك لتمكين تقديم خدمات طبية أفضل للسكان.
اغتنموا الفرصة للانتقال إلى المنطقة الإنسانية في وقت مبكر، وانضموا إلى عشرات الآلاف الذين انتقلوا إليها بالفعل.
English translation:
Announcement of a humanitarian area.
Wipe the QR code to reveal
Blice map
To the residents and people of Gaza City, the Israeli Daqaa Army, in a move to resolve Hamas inside Gaza City.
In order to facilitate those who leave the city, starting from this moment, the Al -Mawasal area is eliminated as a humanitarian area, in which steps will be taken to provide better humanitarian services.
Al -Rasheed Street is dedicated to you as a human way, and at this stage you can leave quickly and vehicles without inspection.
In addition, restoration work is being performed in the European Hospital, to enable better medical services to the population.
Take the opportunity to move to the humanitarian area early, and joined tens of thousands who have already moved to it.
1. Monica Helms, the creator of the transgender flag and Navy Veteran, is leaving the US due to anti-LGBTQ+ persecution. “We are worried there’s a possibility something could happen where we end up getting arrested just for being who we are,” Helms said. Subscribe to support our journalism.
Creator Of The Trans Flag Is F...
Creator Of The Trans Flag Is Fleeing The US Due To LGBTQ Persecution
In May, a Williams Institute poll found that nearly half of all trans adult respondents had considered moving out of state or out of the country.s. baum (Erin In The Morning)
reshared this
Danielle Foré, Darth Tiktaalik 🏳️⚧️ and DoomsdaysCW reshared this.
reshared this
JonChevreau, DoomsdaysCW, Darth Tiktaalik 🏳️⚧️, BrianKrebs, Soh Kam Yung and Shoq reshared this.
True,
this Reenactment hype concerning dystopia fiction has gone quite too far.
Can someone speak out the safeword, please 🙏
Hello
@georgetakei
¿Have you met Zoe Bee - -
youtube.com/watch?v=tGVe4Fju0P…
Why We Secretly Want the World to End
We're kind of obsessed with the end of the world. But why? Let's investigate the apocalypse, and see what we can learn about ourselves, the world, and the po...YouTube
- 1984
- The Animal Farm
- Idiocrathy
- …
I would now call Idiocrathy a clairvoyant work, on par with Nostradamus …
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
mhoye, Space Catitude 🚀, David W. Jones and Darth Tiktaalik 🏳️⚧️ reshared this.
So sick of all the cis men liars claiming to protect cis women while putting both cis amd trans women in danger.
Ansley Baker, a cis woman who was kicked out of a restroon and asked to prove she was cis
people.com/woman-says-security…
Jasmine Adams, a cisgender woman attacked at a deli because she was mistaken for a trans woman
them.us/story/jasmine-adams-st…
Michelle Peacock, a Cisgender woman killed by man who thought she was trans
thepinknews.com/2023/07/14/ind…
Dani Davis, a cisgender woman was harrassed in the bathroom at a walmart she was employed at
gomag.com/article/a-man-mistoo…
Kalaya Morton, a cisgender lesbian confronted by two sheriff's deputies in a walmart bathroom
advocate.com/news/lesbian-mist…
#transgender #transphobes #transphobia #misogny #transRights
Emmett Till would've been 84 today. He was only 14 when white supremacist terrorists horrifically murdered him.
The white woman Carolyn Bryant Donham who accused him of harassing her later confessed she lied. The warrant for her arrest was never enforced. She died only 2 years ago in 2023 at the age of 88.
White supremacy terrorism isn't ancient history. It's not even history. It's contemporary reality.
reshared this
Esther Payne, Darth Tiktaalik 🏳️⚧️ and der.hans reshared this.
Without explanation, YouTube has removed my interview about Israel's genocide on Palestine with globally renowned Palestinian-Canadian human rights lawyer Diana Buttu. We are appealing.
Here's the full interview on my human rights newsletter. Share widely: qasimrashid.com/p/youtube-remo…
YouTube Removed My Interview on Gaza With A Palestinian Human Rights Lawyer
Watch the full interview with globally renowned Palestinian-Canadian lawyer Diana Buttu — a former lead negotiator between Palestine and IsraelQasim Rashid, Esq. (Let's Address This with Qasim Rashid)
reshared this
Sir Rochard 'Dock' Bunson and Darth Tiktaalik 🏳️⚧️ reshared this.
Trump has ordered the installation of large posters of himself in Washington DC after directing soldiers to patrol it.
If there's anyone in your life who still doubts that Trump is a fascist, please show them this photo.
Source: archive.is/QDS8P
reshared this
Sir Rochard 'Dock' Bunson, Bacchus1234, Darth Tiktaalik 🏳️⚧️, Tim Chambers, David August ❌👑, Dgar, Democracy Matters, Florian Schmidt, punIssuer, Karl Voit and Christian Pietsch reshared this.
Darth Tiktaalik 🏳️⚧️ likes this.
Darth Tiktaalik 🏳️⚧️ reshared this.
Darth Tiktaalik 🏳️⚧️ likes this.
Darth Tiktaalik 🏳️⚧️ reshared this.
reshared this
punIssuer and Darth Tiktaalik 🏳️⚧️ reshared this.
depends if the goal is to raise the average level of health or just to let the less healthy die off.
both will technically raise the average level of whoever's still alive at the end.
The absolute volume and ceaseless barrage of misinformation around Covid-19 preventive measures has been a nightmare to public health.
The worst case scenario - which we are now living through - is that people responsible for believing and regurgitating this misinformation are now in power.
Darth Tiktaalik 🏳️⚧️ likes this.
Who remembers early internet stuff, like The Darwin Awards.
America is living that dream. Thanks Trump & Kennedy. With your crackpot toddler theories, you get to go round and round with other's lives.
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
Space Catitude 🚀, JonChevreau, Darth Tiktaalik 🏳️⚧️ and Lenz Grimmer reshared this.
youtu.be/FlzyIbmyM78?feature=s…
George H.W. Bush and Broccoli
Taken from President George H.W. Bush's 1999 book of letters, All the Best, this video chronicles the historic moment in 1990 when the 41st President declare...YouTube
I'm thinking of a t-shirt with a body hanging by it's entrails from a lamppost. Caption:
"Has he chosen his lampost yet?"
I'm sure someone will come up with something better.
People of America really wants this in the country for the betterment. ! 🤔
The court of the mad king and his jesters… and the drama continues… he is dangerous.
In France they invented the guillotine for this. Very efficient.
Github's recent changes broke release downloads but fortunately the wget solution posted in a gh thread about this works on linux.
until wget -c <url>; do :; done
Replacing <url> with the direct link to the file you're downloading.
Darth Tiktaalik 🏳️⚧️ likes this.
Darth Tiktaalik 🏳️⚧️ reshared this.
#AI
fortune.com/2025/08/27/adam-ra…
Lawyers for parents who claim ChatGPT encouraged their son to kill himself say they will prove OpenAI rushed its chatbot to market to pocket billions
OpenAI told Fortune, “We extend our deepest sympathies to the Raine family during this difficult time and are reviewing the filing.”Muskaan Arshad (Fortune)
Hank G ☑️ likes this.
reshared this
Democracy Matters and Darth Tiktaalik 🏳️⚧️ reshared this.
“The judge’s order makes it clear that we cannot judge a book by its cover or a maliciously selected excerpt out of context”
"None Of These Books Are Obscene": Judge Strikes Down Much of Florida's Book Ban Bill bookriot.com/penguin-random-ho…
"None Of These Books Are Obscene": Judge Strikes Down Much of Florida's Book Ban Bill
In a major win for intellectual freedom, a judge rules against Florida law that led to removing hundreds of books from school libraries.Kelly Jensen (BOOK RIOT)
reshared this
Darth Tiktaalik 🏳️⚧️ reshared this.
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
Darth Tiktaalik 🏳️⚧️ and der.hans reshared this.
I was born into a country of limitations and rules.
Sensitive content
💩Oops - I just insulted rats ... and Barbie ...so sorry! 😐
blog.torproject.org/introducin…
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
AlternativeTo, nullagent, der.hans, CatSalad🐈🥗 (D.Burch), Rokosun and Darth Tiktaalik 🏳️⚧️ reshared this.
i wanna find some musicians in fediverse... it still feels very programmer-centric and my music friends are overwhemingly on bluesky
reshared this
Dgar, Alex@rtnVFRmedia Suffolk UK, Florian Schmidt, Only Ohm and Darth Tiktaalik 🏳️⚧️ reshared this.
Hi @SnugglyBunne and welcome back!
@etherdiver is an essential follow for discovering musicians and songwriters on the Fediverse.
@labr is a live radio station that frequently features DJs and artists on the Fediverse.
Hashtags are a great way of finding artists. #BandcampFriday was earlier this month and many artists were using the opportunity to promote their choons. #Rock, #Metal, #Pop, #Soul, #Synth, #Folk, or even just #music are all active hashtags. You could explore the #Fedivision hashtag for a bunch of Fedi-artists too.
Also, you could post your own work and let yourself be found. If you have something particular you’d like to promote, let me know - I’m usually up for boosting art on the Fediverse!
Good luck finding your peeps!!
✌️😁🤘
uploaded this song of mine on makertube
makertube.net/w/kfjXmE3jWVAHZi…
#music #dance #trance #hypertrance #mastoart
Darth Tiktaalik 🏳️⚧️ reshared this.
like this
Cherri 🌸, Andy H3, kravietz 🦇 and Hank G ☑️ like this.
reshared this
Space Catitude 🚀, CatSalad🐈🥗 (D.Burch), alcinnz, zosthanes., Rokosun, Jonathan Lamothe, proedie, Florian Schmidt, mhoye, Claudius@MRMCD DECT 4747, Dan Gillmor, Isaac Ji Kuo, Lenz Grimmer, PAUL!!!, Alex@rtnVFRmedia Suffolk UK, Cory Doctorow, stux⚡, Rocketman, Steffen Voß, Sylvia, Martin Schmiedecker, Matthias Eberl, 41402-nyan, Adrian, Philip Proefrock, architect, Stefan Rother-Stübs, der.hans, Lilly Hunter, Andy S. Evers, Esther Payne, Jonathan Beverley, IzzyOnDroid ✅, leyrer, ajuvo ✔, TheConstructor (he/him), Darth Tiktaalik 🏳️⚧️, Daniel Django (Akkoma), Karl Voit, Michał "rysiek" Woźniak · 🇺🇦, Franziska, froqstar, Tim Lavoie, kravietz 🦇, Dr. Quadragon ❌, D:\side\>, Hank G ☑️ and Tim Chambers reshared this.
Christian Side Hug[FULL SONG]
These Ghetto Rappers that want you to hug you at the side wants to give a blissing.And then one singer got "Shot" (roleplay)in that video and they don't eve...YouTube
I agree in spirit, but man... Its only 50% rentseeking... My elderly parents and computer illiterate siblings and coworkers would get in trouble fast if they weren't constrained by 3 software platforms: mint software manager, android play, and MS whatchamacallit. I have pounded it into their heads: never download software candy from strangers. (I live in an anti-apple pocket of the world)
But then, i guess all three of those do let you do your own thing to varying degrees.
Even the term "Side loading", makes it sound non-standard and risky. Which of course, it doesnt have to be.
Elena ``of Valhalla'' likes this.
Google will block sideloading of unverified Android apps starting next year
Google says it’s no different than checking IDs at the airport.Ryan Whitwam (Ars Technica)
Denzil, nope. G****e demands you give them your private app signing keys, breaking any thrust chain this way.
Giving away your private signing keys breaks any thrust chain. It is just the opposite.
Once you’ve bought the hardware, it’s yours, not a lease where the vendor still dictates your choices. Calling it sideloading makes it sound like something shady, when it’s just freedom to install what you want.
But would this “security measure” also affect app stores that are already more secure than Google’s Play Store, like @fdroidorg ?
Bold of you to assume that your phone is really "yours". I'm sure that by buying one Google owns your soul and that of your firstborn.
We need more competition in the Mobile OS market, and Google needs to be hit with a big enough antitrust suit to cripple them for a couple of decades.
Apple too. And MS...
I don't understand how companies managed to get people to accept this...
the whole case of why I've always had an Android phone: I'm a dev, if I want something I can write and install it.
I almost never do of course, but it's completely fucked up for Google to expect me to register an account with their service to receive their blessed key material in order to install my stupid side project on my own device
but Eugen, developers will continue to be free to distribute their apps off of Google Play and sideloading remains unaffected!
(as long as the apps are signed by Google shhhhhhhh don't tell the regulators, the whole walled garden thing has been going so well for Apple)
on one side, how different is what Google is proposing from what Mozilla has been doing with side-loaded extensions, which they have to certificate even if you host them yourself?
on the other side, why did I see no one complaining about the Mozilla stance on this?
I'd argue there's a critical reason besides rent-seeking: security.
It's a genuine conflict between user rights and the need to protect the average person. Phones hold our banking apps, 2FA tokens, mics, cameras, and countless secrets.
When a sideloaded app steals data, the user doesn't say, "My sideloaded app failed." They say, "My Android/iPhone got hacked." The OS developer takes the blame.
Android's approach—allowing it, but behind a clear security warning—seems like a decent compromise in this difficult balancing act.
Amen! And then there's my cars infotainment center that I can't even sideload!
Edit: I'm sure there are some absurdly smart people here who could tear apart the dash board and hard wire into the computers pinout to do it. But that's a little beyond my capabilities.
I agree: if someone buys a "computer" or a general purpose device, your point certainly holds.
But on the other side of a fine line I imagine (perhaps older) game consoles: when the original Nintendo came out, that company was not expected to help you run Atari software on their hardware.
They'd not prevent it - if you could figure out it, good on you. But Nintendo shouldn't be expected to make that work.
Not-supporting versus actively-preventing is the key difference for me.
I did not know of this word. It sounds a bit like the word ”jaywalking” which was invented by car companies to shame pedestrians into getting out of the way.
As someone who developed operating systems for 50 years I know that there are reasonable cases; but, as none are relevant to Google’s latest behavior, I will not elaborate.
Since a mobile device is mostly a general purpose system you should be able to run any software that doesn’t violate laws and it’s not the OS vendor’s responsibility to enforce laws except those regulating the radios in the device.
I like the term “rent seeker”.
Like Jaywalker is the rent seeker for car companies.
Daniel Django (Akkoma) likes this.
It is known that sideloading is a real risk for most of Android users*
*The bad guy comes to your home, enable ADB debug, you let him connect your phone, you give him your pin, you let him few moment to load a naughty apk (bring coffees) and VOILÀ ! 🔥
BTW I had today to clean a fully stock up to date Android (you even can install bank app on) because of a "legit" Play Store bloatware setup'd lots of other adware apks 👍
Debian is the friendliest system for civil society.
This list of replies is a hilarious string of people pretending that they’ve never looked at someone’s Windows machine *so completely fucked up with malware and viruses that the owner just blithely clicked on and installed* that the only solution was to nuke it from space and *buy a whole new computer*
For a good fifteen years the number one reason for tossing perfectly good hardware and buying a newer Win PC was virus/malware infestation. Might still be, I have no idea.
at this point I just want a fucking slab that lets me call from Linux.
I want postmarketOS on an AMD Ryzen with only 64bits (dump the 32, make a bloody atom ryzen you cowards), and a pure-64 Steam build. I want a slab that lets me play anime games if I bloody want to. And deploy a Linux fleet management solution. AND JUST LET ME DO MY THING.
yes, but...
Ma and Pa _need_ some form of sandbox. Sandboxing should be optional. But some form of sandboxing should exist when non-tech people will use computers.
It's a dangerous world.
Sideloading as a word was coined in 1990
en.m.wikipedia.org/wiki/Sidelo…
Please stop spreading lies to make people angry
Especially as this newest move of Google is redundant: play protect is already built in all Google play services using phones.
It already flashed and remains suspicious Appa and known malware from all sources.
So how exactly is locking down the signing keys for apps that are allowed to run at all and connecting them with government ID for developers helping security?
This purely an anticompetitive measure.
counter-point: run your software outside this rentseekers sandbox then. it’s absolutely a bad look for them if something happens to you while in their ecosystem (randsomware, malware, identity theft, etc.)
just because you own the physical memory registers doesn’t mean you’re ever making use of them without this rentseekers work and IP.
While I agree with the pejorative sounding term “sideloading” when used to describe general PC or smartphone platforms, there are different computing platforms with different use cases.
You definitely do not want to allow running “software of your choosing” on voting machines, ATM or POS terminals, even by people who own them. That’s because these computing devices are a part of a complex, mission-critical workflow, where each part needs to provide specific technical and legal assurances, contributing to the whole chain of custody. You can’t provide legal assurances on a device for which a lawyer in a court can plausibly argue that it was running some random software and manipulated the data it processed.
Having declared this edge case, I fully agree that if you purchase a smartphone or PC you should be allowed to disable the certification layer and run any software you like. A the same time, you should be also aware that software that relies on the chain of custody may refuse to run on such devices and it’s fully justified.
Darth Tiktaalik 🏳️⚧️ likes this.
Sensitive content
The pigtailed girl likes this.
reshared this
Darth Tiktaalik 🏳️⚧️ and The pigtailed girl reshared this.
The pigtailed girl likes this.
reshared this
Johannes, Chris Leboe, Michał "rysiek" Woźniak · 🇺🇦, nullagent, David August ❌👑 and Darth Tiktaalik 🏳️⚧️ reshared this.
*(Warning: does not work^ at night, so get your kicks—shutter clicks?—while you can!)
^(Well, not without batteries. But then you’re getting devices for self-illumination…)
Why Transgender People Are Not Feeling Gavin Newsom
erininthemorning.com/p/why-tra…
#transgender #trans #LGBTQ #LGBTQIA
Why Transgender People Are Not Feeling Gavin Newsom
We have seen this song and dance before.Erin Reed (Erin In The Morning)
Darth Tiktaalik 🏳️⚧️ reshared this.
Collar of Quiet
This was the first image I ever captured of a Eurasian collared dove. I took it a few years ago, and it’s still one of my favorites.
Darth Tiktaalik 🏳️⚧️ reshared this.
"Collar of Quiet"???
More like "Rusty Gate Hinge in Gusty Winds, at 5am Daily".
Really Nice picture!
He'd look better with duct tape wrapped around his bill.🤣
😂 I wasn't aware collared doves made a lot of noise. But there aren't many around where I live.
Our native doves make the nicest softest "coo". They get a little repetitive, but, its a soothing sound.
The Eurasions have run most of them off now. And their sound is not pleasant, and goes on repetitively and seemingly forever. Especially in spring.
Darth Tiktaalik 🏳️⚧️ likes this.
Darth Tiktaalik 🏳️⚧️ reshared this.
Darth Tiktaalik 🏳️⚧️ likes this.
reshared this
Charlie Stross, stux⚡, Florian Schmidt, alcinnz, TheConstructor (he/him), Schenkl | 🏳️🌈🦄 and Darth Tiktaalik 🏳️⚧️ reshared this.
We apologize for a period of extreme slowness today. The army of AI crawlers just leveled up and hit us very badly.
The good news: We're keeping up with the additional load of new users moving to Codeberg. Welcome aboard, we're happy to have you here. After adjusting the AI crawler protections, performance significantly improved again.
Lapo Luchini likes this.
reshared this
Esther Payne, TheConstructor (he/him), Glyph, CatSalad🐈🥗 (D.Burch), BrianKrebs, Florian Schmidt, Aral Balkan, Alex@rtnVFRmedia Suffolk UK, Darth Tiktaalik 🏳️⚧️ and Christian reshared this.
Lapo Luchini likes this.
reshared this
Glyph, Florian Schmidt, CatSalad🐈🥗 (D.Burch), alcinnz, Alex@rtnVFRmedia Suffolk UK and Lapo Luchini reshared this.
reshared this
Florian Schmidt and Alex@rtnVFRmedia Suffolk UK reshared this.
We have a list of explicitly blocked IP ranges. However, a configuration oversight on our part only blocked these ranges on the "normal" routes. The "anubis-protected" routes didn't consider the challenge. It was not a problem while Anubis also protected from the crawlers on the other routes.
However, now that they managed to break through Anubis, there was nothing stopping these armies.
It took us a while to identify and fix the config issue, but we're safe again (for now).
reshared this
Florian Schmidt and Alex@rtnVFRmedia Suffolk UK reshared this.
For the load average auction, we offer these numbers from one of our physical servers. Who can offer more?
(It was not the "wildest" moment, but the only for which we have a screenshot)
reshared this
Florian Schmidt, Alex@rtnVFRmedia Suffolk UK and scy reshared this.
ouch. This remains a cat-and-mouse game.
At least having them solve the Anubis challenge does cost them extra resources, but if they can do that at scale, it doesn't promise a lot of good.
This is a great number, but I have seen higher in my career. Unfortunately I either have no screenshots or lost what I already have.
5831.24 is pretty good though. Congrats for hitting, hope your head doesn't hurt. :D
meta/hardware/achtermann.md at main
meta - Organizational repo for Codeberg's Infrastructure: Documentation, Organizing, Planning.Codeberg.org
It's easy to get them (e.g. from projectdiscovery)
>now that they managed to break through Anubis
There was no break - it's a simple matter of changing the useragent, or if for some reason there's still a challenge, simply utilizing the plentiful computing power that is available on their servers (which far outstrips the processing power mobile devices have).
Anubis is evil and is proprietary malware - please do not attack your users with proprietary malware.
If you want to stop scraper bots, start serving GNUzip bombs - you can't scrape when your server RAM is full.
dd if=/dev/zero bs=1G count=10 | gzip > /tmp/10GiB.gz
dd if=/dev/zero bs=1G count=100 | gzip > /tmp/100GiB.gz
dd if=/dev/zero bs=1G count=1025 | gzip > /tmp/1TiB.gz
nginx; #serve gzip bombs
location ~* /bombs-path/.*\.gz {
add_header Content-Encoding "gzip";
default_type "text/html";
}
#serve zstd bombs
location ~* /bombs-path/.*\.zst {
add_header Content-Encoding "zstd";
default_type "text/html";
}
Then it's a matter of bait links that the user won't see, but bots will.
SuperDicq reshared this.
@Suiseiseki Anubis is the option that saved us a lot of work over the past months. We are not happy about it being open core or using GitHub sponsors, but we acknowledge the position from the maintainer: codeberg.org/forgejo/discussio…
Calling our usage of anubis an attack on our users is far-fetched. But feel free to move elsewhere, or host an alternative without resorting to extreme measures. We're happy to see working proof that any other protection can be scaled up to the level of Codeberg. ~f
Anubis - using proof-of-work to stop AI crawlers
- https://xeiaso.net/notes/2025/amazon-crawler/ - https://anubis.techaro.lol/ - https://anubis.techaro.Codeberg.org
@Suiseiseki BTW, we're also actively following the work around iocaine, e.g. come-from.mad-scientist.club/@…
However, as far as we can see, it does not sufficiently protect from crawling. As the bot armies successfully spread over many servers and addresses, damaging one of them doesn't prevent the next one from doing harmful requests, unfortunately. ~f
A lot of users can not pass Anubis challenges because Anubis does not support every browser and is also incompatible with popular security focussed browser extensions such as JShelter.
Asking your users to enable JavaScript and to disable security extensions like JShelter in order to visit your website is very bad, don't you agree?
I don't think it is far-fetched to call it an attack on your users at all.
Saying Anubis is the only solution the scraper problem is a false dilemma. There are many other methods of stopping scrapers.
This is extremely bad for accessibility and I consider it exclusionary for many people who want to contribute to free software, but now can't do.
>can be scaled up to the level of Codeberg
He says, on the federated network.
1) Put /botsfuckoff/ path redirect to script that randomly generates 200 links to itself whenever it's accessed
2) Deny in robots.txt
3) Put hidden link to it at the top of the home page
I believe @Suiseiseki is not referring to codebergs usage of anubis specifically, rather shares fsfs' stance (which I don't share) that Anubis "acts like malware" for making "calculations that a user does not want done": fsf.org/blogs/sysadmin/our-sma…
fsf saying fsf things :)
@Suiseiseki@freesoftwareextremist.com “We are not happy about it being open core … GH sponsors”
Do you have better suggestions for how we can have a sustainable OSS model that isn’t entirely dependent on core contributors of major projects having full time jobs and then supporting everyone else in whatever free time they might have?
Stefano Zacchiroli reshared this.
I have a follow up question, though, @Codeberg, re: @zacchiro's question. Is it *possible* that giant human farms of Anubis challenge-solvers actually did it? Or did it all happen so fast that there is no way it could be that?
#Huawei surely could fund such a farm and the routing software needed to get the challenge to the human and back to the bot quickly enough that it might *seem* the bot did it.
@bkuhn
Anubis challenges are not solved by humans. It's not like a captcha. It's a challenge that the browser computes, based on the assumption that crawlers don't run real browsers for performance reasons and only implement simpler crawlers.
So at least one crawler now seems to emulate enough browser behaviour to make it pass the anubis challenge. ~f
@zacchiro
I get it now.
Thanks for taking the time to clue me in.
I'm lucky that I haven't needed to learn about this until now and I'm so sorry you've had to do all this work to fight this LLM training DDoS!
Cc: @zacchiro
Good luck with fighting the bots. I recently moved my OSDev project and site to Codeberg from GitHub and so far it’s been great!
Thank you for helping the open-source community!
Now what needs to happen is that part of the challenge computes a known answer while the other part does useful computational work, and there's no way for the 'bot to tell which is which -- so it has to do both.
That could maybe contribute computing power to something important like Folding@Home, or even just something pretty like Electric Sheep.
@woozle This topic was discussed in the past. The problem is that cutting useful work in small chunks AND verifying it is very difficult. It might work for some cryptocurrencies, but that's nothing we're interested in.
A proof of concept is more than welcome, but I don't yet know if anyone found a suitable task for this.
~f
(on further thought) ...or is it?
- Create a set of N problems.
- Solve a sampling of them.
- Require the bot to solve all of them.
- If the bot's solutions to the solved set don't match, then it fails the whole test.
Might that work? I guess there could be problems with trustability of the "unknown" answers -- does that look like the main issue to be solved?
@woozle Remember that users want to get through the challenge page quickly. So the more samples you have, the simpler the individual problems need to be.
~f
@woozle
I tend to think that if I had "plenty of free time to fight them," I'd dynamically identify which ones were bots, and then honor their requests, but also keep feeding them harder and harder problems to solve, making their costs "go through the roof" quite quickly. And maybe even give them misleading garbage data.
But the would be a lot of work, of course.
And it would be risky, as one might occasionally wrongly identify an actual valid real user.
ChatGPT Agent Passes CAPTCHA Test, Exposes Flaws in Bot Detection Systems
A new shift in online security is unfolding as OpenAI’s autonomous ChatGPT Agent has cracked one of the internet’s most common anti-bot challenges - Cloudflare’Simran Mishra (Analytics Insight)
These companies are evidently willing to pay an absolutely staggering cost to do their scraping.
I wonder, are they paying with their own money, or are they “borrowing” some unsuspecting strangers' compromised computers/routers/etc to do the work?
Sev negative one: huawei bound scrapers are bypassing Anubis
I found out about this on Hacker News: https://social.anoxinon.de/@Codeberg/115033790447125787 Contact Codeberg to find out what is going on Give them an emergency fix Contribute better detection l...Xe (GitHub)
bytefish.medium.com/gitcode-is…
[Chinese] cnblogs.com/gt-it/p/18271287GitCode, a code hosting platform, a joint venture of HuaweiCloud and CSDN (should be a blog service, basically a content farm now) [Chinese] qbitai.com/2023/09/85598.html
CSDN 大规模抓取 GitHub 上的项目到 GitCode,伪造开发者主页引公愤
事件起因 CSDN旗下的GitCode最近因为一种极其不道德的行为引起了开发者的广泛愤怒和抗议。CSDN在没有通知或征求开发者同意的情况下,悄悄地将大量GitHub上的开源项目搬运到了其自己的GitCode平台上,并为这些项目的开发者创建了开发者主页。这个行为不仅侵犯了开发者的知识产权和劳动成果,也gt-it (博客园)
"AI crawlers learned how to solve the Anubis challenges"
Why does EU discuss chat control and not AI crawlers control again?
eBPF could be more effective and easy on the CPU, since it acts on a way lower network layer. Anubis kinda has it's limits and it's way too easy to circumvent (as you found out)
Maybe it's worth it to consider eBPF (if not already happened)
And thanks guys for your work. I'm a proud supporter and I'll continue to support your work. Companies shouldn't control the Open Source space
Anubis is extremely easy to bypass, you just have to change the User-Agent to not contain Mozilla, please get proper bot protection.
ulveon.net/p/2025-08-09-vangua…
This post talks briefly about other alternatives. Try Berghain, Balooproxy, or go-away.
Vanguard (Part 1): Telegram raid protection
Over the past weeks, I’ve been immersed in developing Vanguard. Initially it was little more than a hack, which was developed quickly and without much consideration towards the cleanliness of the code.Ulveon's Thoughts
Have you looked into serving these LLM crawlers alternative versions of the site, with poisoned data? (And rate-limiting, of course.) I know it would be additional work for you to implement this, but... it might be effective.
I'm thinking you could have a precomputed set of 1000 different poison repos that get served up randomly, each of which is a Markov-chain-scrambled version of the files in a real repo.
(I wrote codeberg.org/timmc/marko to do something similar to the contents of my blog posts—a Markov model on either characters or words.)
varx/tech likes this.
😲🤬 re: what's happened to @Codeberg today.
The AI ballyhoo *is* a real DDoS against one of the few code hosting sites that takes a stand against slurping #FOSS code into LLM training sets — in violation of #copyleft.
Deregulation/lack-of-regulation will bring more of this. ∃ plenty of blame to go around, but #Microsoft & #GitHub deserve the bulk of it; they trailblazed the idea that FOSS code-hosting sites are lucrative targets.
#GiveUpGitHub #FreeSoftware #OpenSource
Give Up GitHub - Software Freedom Conservancy
The Software Freedom Conservancy provides a non-profit home and services to Free, Libre and Open Source Software (FLOSS) projects.giveupgithub.org
Software Freedom Conservancy likes this.
Software Freedom Conservancy reshared this.
@bkuhn if anyone need it, there is this gist showing how to pseudo-automate repository bulk deletion.
gist.github.com/mrkpatchaa/637…
and this tool
reporemover.xyz very handy
Bulk delete github repos
Bulk delete github repos. GitHub Gist: instantly share code, notes, and snippets.Gist
IMO, @serk, the better move is not to delete the repository, but to do something like I've done here with my personal “small hacks” repository:
I'm going to try to make a short video of how to do this, step by step. The main thing is that rather than 404'ing, the repository now spreads the message that we should #GiveUpGitHub!
GitHub - bkuhn/small-hacks: Give Up GitHub
Give Up GitHub. Contribute to bkuhn/small-hacks development by creating an account on GitHub.GitHub
@bkuhn @serk When @librecast moved our repos I wrote a script to wipe the GitHub repo and replace it with the #GiveUpGitHub README:
codeberg.org/librecast/giveupg…
giveupgithub.sh
Quick bash script to replace repos on github with the SFC "Give Up GitHub" README.mdCodeberg.org
reshared this
der.hans reshared this.
@gturri Anubis sends a challenge. The browser needs to compute the answer with "heavy" work. The server then has "light" work and verifies the challenge.
As far as we can tell, the crawlers actually do the computation and send the correct response. ~f
Spammy sources could be those that open new connections too often, transfer too many bytes, or have too many open active connections. All of those kinds of things can be accounted in nftables.
Yuck. That does suck. But anything that makes a client stand out can be used to change that clients network priority. In this case perhaps to boost the priority of packets of clients who have initiated more than one connection in the last hour. For those in the questionable group, send them to underpowered servers that return web pages that say "click xyz to continue to your requested page" once you've identified a likely real client they get elevated packet priority and
@Codeberg
@bkil
Shuttled to a different back end server. The idea being to make the experience good for clients that act normal and low availability for clients that only connect once a week or once a day or etc. Plus make the questionable client run OCR and LLM on your click page to figure out how to get past it. Easy for a human, expensive for a bot.
Its obviously whack a mole. But if latency is 500-1000ms for bullshit clients and 50ms for your real clients then this is what you want.
@Codeberg
My favorite thing about right wing liars is that they'll accidentally fool other right wing liars into exposing them.
Utah republicans 100% would've faked their report on trans youth if they knew the data wasn't actually on their side but frauds like the cass review tricked them into honesty.
like this
Meko #nowar, Darth Tiktaalik 🏳️⚧️ and stefani banerian like this.
reshared this
zosthanes., Meko #nowar, proedie, Darth Tiktaalik 🏳️⚧️, Claudius@MRMCD DECT 4747, Em, Michał "rysiek" Woźniak · 🇺🇦, Esther Payne, CatSalad🐈🥗 (D.Burch), D:\side\>, DoomsdaysCW, ahimsa, Infrapink (he/his/him), Coach Pāṇini ®, der.hans, Rokosun, Florian Schmidt, Roy, iverbpunkt, Calisti 🏳️🌈🦇 and TheConstructor (he/him) reshared this.
It’s time to try and get some meow meows, hopefully I’ll feel a bit better tomorrow 
Goodnight my dear friends 
" title="
"/> 
" title="
"/> 
reshared this
Dgar and Darth Tiktaalik 🏳️⚧️ reshared this.
Study Ordered by Utah Republicans Finds Gender-Affirming Care Benefits Trans Youth
them.us/story/utah-gender-affi…
"Rate of regret after Gender-affirming surgery is approximately 1%. Other life decisions, such as having children and getting a tattoo have regret rates of 7% and 16.2%, respectively."
americanjournalofsurgery.com/a…
Trans women and fairness in sports
Transgender Athletes Could Be At A Physical Disadvantage, Research Shows
forbes.com/sites/lindseyedarvi…
Specific claims of unfairness are self debunking if the source is at all honest about the situation.
For example trans marathon runner Glenique Frank finished 6,159th in the female category but you would get an entirely different impression if you didn't read past the headlines in the daily mail: archive.ph/udkN7
Similarly, Riley Gaines's fairness grievance was literally a tie for fifth place.
Nobody's placement changes if Lia Thomas didn't compete and again, the complaint was that a trans women dared to perform equally to a cis women athlete.
Then there's the chess controversy which is so ridiculous and misogynist that I don't need to dignify it with a debunking. It's just sexism dressed up as concern for cis women.
Miscellaneous
Critically appraising the cass report: methodological flaws and unsupported claims
doi.org/10.1186/s12874-025-025…
Further citations to research on the subject of transgender healthcare thanks to this archived reddit comment by tgjer web.archive.org/web/2019082319…
#transgender #transRights #TransAthletes #LGBTQ #GenderAffirmingCare #GenderAffirmingSurgery #trans #TransWomen
Critically appraising the cass report: methodological flaws and unsupported claims - BMC Medical Research Methodology
Background The Cass Review aimed to provide recommendations for the delivery of services for gender diverse children and young people in England.BioMed Central
Transgender people over four times more likely than cisgender people to be victims of violent crime
"Trans-inclusive bathroom policies are linked to lower assault rates against transgender students."
"Trans-inclusive bathroom policies are not linked to higher rates of assault against cisgender people."
Matthew Sheffield
in reply to Matthew Sheffield • • •And btw, Trump is doing this all over the place, including censoring pictures of former slaves showing their injuries.
artnews.com/art-news/news/trum…
Trump Orders National Park to Remove 'Scourged Back' Photograph
Alex Greenberger (ARTnews.com)Rich Stein (he/him)
in reply to Matthew Sheffield • • •mastodon.social/@RunRichRun/11…
Rich Stein (he/him) (@RunRichRun@mastodon.social)
Rich Stein (he/him) (Mastodon)Em & future cats 🇺🇦🐈🏳️🌈
in reply to Matthew Sheffield • • •These damn Nazis, no amount of book burning is going to stop truth from coming back. Especially now.
Emily 🏳️⚧️ (Shenanigans Era)
in reply to Matthew Sheffield • • •Robin Barton
in reply to Matthew Sheffield • • •DB
in reply to Matthew Sheffield • • •Arena Cops 🇺🇦✌
in reply to Matthew Sheffield • • •Jlpeter2
in reply to Matthew Sheffield • • •Su_G
in reply to Matthew Sheffield • • •“The Department of Justice has removed a study showing that white supremacist and far-right violence “continues to outpace all other types of terrorism and domestic violent extremism” in the United States.
The study, which was conducted by the National Institute of Justice and hosted on a DOJ website was available there at least until September 12, 2025, according to an archive of the page saved by the Wayback Machine. Daniel Malmer, a PhD student…” first noticed it was gone. 😐🤔
P_______X
in reply to Matthew Sheffield • • •and the "unspecified extremist network" that radicalized the Colorado school shooter turned out to be Nazism: adl.org/resources/article/ever…
What we are observing is a media malpractice not reporting enough on it.
You are being redirected...
www.adl.orgCharlie the Anti-Fascist Dog
in reply to Matthew Sheffield • • •numb3r5ev3n
in reply to Matthew Sheffield • • •Fight Back or Move Over
in reply to Matthew Sheffield • • •Their efforts to erase history and to delete studies and other documents is juvenile. Every document that comes out of every government agency has been saved by someone. To an extent, they can stop new things from being published, but they can't delete what's already been done.
Everyone who comes across something that they are attempting to delete should download whatever it is. The more people who do, the more difficult to keep it from the public eye.