shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

252
active users

#ratelimiting

0 posts0 participants0 posts today
Karsten Schmidt<p><a href="https://mastodon.thi.ng/tags/ReleaseMonday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ReleaseMonday</span></a> — One of the recent (already very useful!) new package additions to <a href="https://mastodon.thi.ng/tags/ThingUmbrella" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ThingUmbrella</span></a> is:</p><p><a href="https://thi.ng/leaky-bucket" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">thi.ng/leaky-bucket</span><span class="invisible"></span></a></p><p>Leaky buckets are commonly used in communication networks for rate limiting, traffic shaping and bandwidth control, but are equally useful in other domains requiring similar constraints.</p><p>A Leaky Bucket is a managed counter with an enforced maximum value (i.e. bucket capacity). The counter is incremented for each a new event to check if it can/should be processed. If the bucket capacity has already been reached, the bucket will report an overflow, which we can then handle accordingly (e.g. by dropping or queuing events). The bucket also has a configurable time interval at which the counter is decreasing (aka the "leaking" behavior) until it reaches zero again (i.e. until the bucket is empty). Altogether, this setup can be utilized to ensure both an average rate, whilst also supporting temporary bursting in a controlled fashion...</p><p>Related, I've also updated/simplified the rate limiter interceptor in <a href="https://thi.ng/server" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">thi.ng/server</span><span class="invisible"></span></a> to utilize this new package...</p><p><a href="https://mastodon.thi.ng/tags/ThingUmbrella" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ThingUmbrella</span></a> <a href="https://mastodon.thi.ng/tags/DataStructure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataStructure</span></a> <a href="https://mastodon.thi.ng/tags/RateLimiting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RateLimiting</span></a> <a href="https://mastodon.thi.ng/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.thi.ng/tags/TypeScript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TypeScript</span></a> <a href="https://mastodon.thi.ng/tags/JavaScript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>JavaScript</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tiggi.es/@DeltaWye" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>DeltaWye</span></a></span> <span class="h-card" translate="no"><a href="https://corteximplant.com/@SynAck" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>SynAck</span></a></span> <span class="h-card" translate="no"><a href="https://pounced-on.me/@Kuniti_shino" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Kuniti_shino</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.de/@ErikUden" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>ErikUden</span></a></span> OFC that's the nature of most services tht are open t new users.</p><ul><li><a href="https://infosec.space/tags/Abuse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Abuse</span></a> being a statistical inevitability:</li></ul><p><a href="https://infosec.space/tags/Shitter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Shitter</span></a> (rather <a href="https://infosec.space/tags/Teitter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Teitter</span></a> before <a href="https://infosec.space/tags/Mus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mus</span></a> ruined it!) had <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a> <a href="https://infosec.space/tags/RateLimiting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RateLimiting</span></a> to make <a href="https://infosec.space/tags/Spamming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Spamming</span></a> less effective (255 Statuses per 24hrs) even back when <a href="https://infosec.space/tags/TweetDeck" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TweetDeck</span></a> was a seperate company...</p><ul><li>Making dynamical limits that instantly lockout i.e. brand new accounts sending the same.message to 10+ others as a DM within 48 hours of registration should act as a speed-bump to <a href="https://infosec.space/tags/Spammers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Spammers</span></a>. </li></ul><p>It won't prevent it entirely but make it more cumbersome.</p><ul><li>Sadly <a href="https://infosec.space/tags/Mastodon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mastodon</span></a> <a href="https://infosec.space/tags/Developers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Developers</span></a> <a href="https://github.com/mastodon/mastodon/issues/28605" rel="nofollow noopener noreferrer" target="_blank">refuse to acknowledge the need for efficient filtering.and ban list managment</a> that every other web-facing application / system can do using blocklist feeds.</li></ul><p>This prevents remediation and correction of <a href="https://infosec.space/tags/banlists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>banlists</span></a> &amp; <a href="https://infosec.space/tags/blocklists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blocklists</span></a>, leaving <a href="https://github.com/greyhat-academy/lists.d/blob/95bab7b3601030e7ad57bfc0516fa91362c8fcd5/blocklists.list.tsv#L21" rel="nofollow noopener noreferrer" target="_blank">a lot if domains burned forever</a> as the only.options are <em>"replace"</em> and <em>"merge"</em> and the average <a href="https://infosec.space/tags/ActivityPub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ActivityPub</span></a> admin or even <a href="https://infosec.space/tags/User" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>User</span></a> isn't going to learn or setup a <a href="https://infosec.space/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>git</span></a>!</p><ul><li>which is frustrating as I maintain <a href="https://github.com/greyhat-academy/lists.d/blob/main/activitypub.domains.block.list.tsv" rel="nofollow noopener noreferrer" target="_blank">multiple</a> blocklists to help cleaning up the mess.</li></ul><p>I.e. there isn't really a good way to combat <a href="https://infosec.space/tags/Typosquatting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Typosquatting</span></a>-based <a href="https://infosec.space/tags/Phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Phishing</span></a> beyond <a href="https://github.com/greyhat-academy/lists.d/blob/main/typos.domains.block.list.tsv" rel="nofollow noopener noreferrer" target="_blank">banning.offending domains</a>...</p>
IT News<p>“MFA Fatigue” attack targets iPhone owners with endless password reset prompts - Enlarge / They look like normal notifications, but opening an iPhone wi... - <a href="https://arstechnica.com/?p=2012822" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=2012822</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/mobilephishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mobilephishing</span></a> <a href="https://schleuss.online/tags/passwordreset" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordreset</span></a> <a href="https://schleuss.online/tags/ratelimiting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ratelimiting</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>phishing</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a>⁢ <a href="https://schleuss.online/tags/icloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>icloud</span></a> <a href="https://schleuss.online/tags/apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>apple</span></a></p>
Marcus "MajorLinux" Summers<p>Hey, you know what doesn't limit how many posts you can read?</p><p>You should definitely hit me up over at <a href="https://majorshouse.com/contact" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">majorshouse.com/contact</span><span class="invisible"></span></a> for more information!</p><p>Twitter tells users to touch grass, adds new rule limiting how many tweets you can read per day <a href="https://9to5mac.com/2023/07/01/twitter-limit-on-how-many-tweets-you-can-read/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">9to5mac.com/2023/07/01/twitter</span><span class="invisible">-limit-on-how-many-tweets-you-can-read/</span></a></p><p><a href="https://toot.majorshouse.com/tags/Twitter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Twitter</span></a> <a href="https://toot.majorshouse.com/tags/MuskyMusk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MuskyMusk</span></a> <a href="https://toot.majorshouse.com/tags/RateLimiting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RateLimiting</span></a> <a href="https://toot.majorshouse.com/tags/Tweets" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tweets</span></a> <a href="https://toot.majorshouse.com/tags/TechNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechNews</span></a></p>