@jester Welcome to infosec.exchange and #mastodon.
Here are some accounts where I've had recent conversations with about #itsec #infosec #netsec and so on:
@gilscottfitzgerald @TheGibson @finux @galaxis @frootware @gozes @varx @tinker @dewb @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett and of course @jerry too.
(sorry for the lack of newlines)
@nathanpruitt @superruserr @jester @gilscottfitzgerald @finux @galaxis @frootware @gozes @varx @tinker @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry
Plenty of nerds here. Thanks for the shout-out. Enjoy your time here. Lots of fun projects to work on on this fairly new platform.
Also if you're into Ruby devel, strongly recommend the mastodon-api from the official tootsuite repo.
Welcome again
@superruserr @jester @gilscottfitzgerald @TheGibson @finux @galaxis @gozes @varx @tinker @dewb @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry I am noobsec of the noobiest security nerds but hi!!! I try to do the thing and sound vaguely competent
@frootware @superruserr @jester @gilscottfitzgerald @finux @galaxis @gozes @varx @tinker @dewb @nathanpruitt @rysiek @uranther @mastor @crowd42 @jeff @Nitron @garrett @jerry
We're all newbs, myself included. :)
But let's all try to learn and grow together.
@superruserr @jerry @garrett @Nitron @jeff @crowd42 @lattera @mastor @uranther @rysiek @nathanpruitt @dewb @tinker @varx @gozes @frootware @galaxis @finux @gilscottfitzgerald @jester
There's the bug again...
I was wondering why the follows were coming in, and I found this...
My handle is @thegibson all lower case, but Mastodon seems to often capitalize my name due to a cached account out in the fediverse somewhere.
Anyhow, Welcome aboard.
Beside you in time.
@thegibson @jester @gilscottfitzgerald @finux @galaxis @frootware @gozes @varx @tinker @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry @superruserr
We all wish we could be like you Gibson. Stop hacking the mainframe
Looks like there's an issue here.
@thegibson @jester @gilscottfitzgerald @finux @galaxis @frootware @gozes @varx @tinker @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry @superruserr
That's on mastodon.social btw, not sure why.. Id totally bug report it buddy, definately looks like you may potentially exist twice in the accounts table over there with multiple unique identifiers assigned to you.
@thegibson @jester @gilscottfitzgerald @finux @galaxis @frootware @gozes @varx @tinker @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry @superruserr
And here they are...
/accounts/68470 - Uppercase One
/accounts/230084 - Lowercase One
@dewb @TheGibson
The two accounts from this instance have different avatars. One has the current one, the other one has 'I tried'
@galaxis @thegibson yeah I checked my account stable as well but I only have him in there once thankfully so he probably doesn't have an issue with me. Those IDs earlier were his IDs from Mastodon.Social though so he exists in their system twice
@thegibson @galaxis
I'd hate to be the one who writes the migration for that issue. lol
Once someone works on migration for it and people upgrade. It should fix permanently.. on the instances that chose to upgrade that is....
The release with that fix is going to suck depending how it's done.
Totally in agreement with that statement.
@dewb @thegibson Maybe with some clever rewriting in the webserver instead of application logic?
@TheGibson @dewb @galaxis Update to 2.3.2, then you'll be able to create the account. Then update to 2.3.3, because that fixed that bug.
@TheGibson @dewb @galaxis Oh, I'm sure it is, but if you actually WANT the differently-capitalized account to somehow experiment with, 2.3.2 has a bug that will let you make it.
@bhtooefr @galaxis @dewb @thegibson
Pretty sure part of the fix should be a query like
select distinct on (upper(username), upper(domain)) * from accounts
For listing accounts. That way irregardless of case sensitivity it will always assume that the latest sequence generated for each account is the account that is actually in use
looks like @Krita
@Krita has this issue too.. I tagged both so they'll get this.
Krita the capital one i assume is the one you're using over there right Kri?
@dewb @krita @TheGibson @dewb @galaxis Except always using the latest is incorrect behavior in the case of accounts created in the 2.3.2 bug - the *OLDEST* is the correct one in that case.
There may simply need to be a way for the instance to specify which is the correct one, or for the instance to proxy as @TheGibson suggested?
@bhtooefr @galaxis @dewb @Krita @dewb
@Krita
This has been going on for me since early December... this is why I am sure this is not so much a bug as a weak spot in how the account names are handled when a new instance is spun up in the same namespace as the old instance.
the issue is two-fold.
1. The username is alphabetically the same, and therefore a new account using proper capitalization is not possible.
2. The old name cached in remote instances. can't flush cache other locations.
@thegibson @dewb @krita @galaxis @bhtooefr
@Gargron already fixed the issue going further with new account signups with *later builds*. However the issue now lies in the existing data that still needs to be cleaned on other instances that arent your that have your account information. (data needs to be cleaned up which is why you have your issue)
@thegibson @dewb @krita @galaxis @bhtooefr @Gargron
That query would be a good starting point as you would know the latest account that was ever created by a user on a server (since identites are created sequentially) when federated presence introduces a new account on a server from a different domain from a server where the accounts data is being shared from.
@thegibson @dewb @krita @galaxis @bhtooefr @Gargron
*Not being a postgres guy*.. and due to the collation of the database being en_US.UTF-8.. i'm curious how psql handles collations within expressions / sort order / groupings / predicate lookups etc.. etc.
What I mean by that is..
en_US.UTF-8 is treating
a=A = false
a=a = true
when there may be a collation that treats
a=A = true
a=a = true
@dewb @Krita @dewb @galaxis @bhtooefr
So the fix is complex...
There can be a process that syncs the removal (or non-existence of cached account info on every instance.
There can be a way for admins to set a proxy address.
Remove caps sensitivity,(I think that the user number is likely more important though.
@dewb @bhtooefr @galaxis @dewb @TheGibson *Wanted* to use the lowercase one but getting the capitalised one every time, so yes.
Thanks for letting us know.
I knew that thegibson is at hackers.town but I did not realize this issue.
This is good to know.
(had to repost this...three time..because I did it again).
Ok. I give up.
@superruserr @jerry @garrett @Nitron @jeff @crowd42 @lattera @mastor @rysiek @nathanpruitt @dewb @tinker @varx @gozes @frootware @galaxis @finux @TheGibson @gilscottfitzgerald @jester
Thanks for the #introductions! I lurk and try to learn #infosec where I can. I went to #DEFCON last year so now I am like ... Level 2 Ranger-Hacker [chaotic-good]
Trying to become more security and privacy-minded in this wacky world.
Especially interested in applied #cryptography 
@superruserr @jerry @garrett @Nitron @jeff @crowd42 @lattera @mastor @uranther @rysiek @nathanpruitt @dewb @tinker @varx @gozes @frootware @galaxis @finux @thegibson @jester
well shit, I'm not sure that I belong on the same list as the rest of you all, but I do my best to keep my users safe!
@gilscottfitzgerald @jester @thegibson @finux @galaxis @frootware @gozes @varx @tinker @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry @superruserr
Well if you feel that you don't belong, enjoy the nerd tidal wave of knowledge
@thegibson @gilscottfitzgerald @jester @finux @galaxis @frootware @gozes @varx @tinker @dewb @nathanpruitt @rysiek @uranther @mastor @crowd42 @jeff @Nitron @garrett @superruserr @jerry
If I don't learn at least one new thing every day, I feel like I've failed myself.
@gozes @dewb @lattera @TheGibson @gilscottfitzgerald @jester @finux @galaxis @frootware @varx @tinker @nathanpruitt @rysiek @uranther @mastor @crowd42 @jeff @garrett @superruserr well, I think you’re all great and I’m honored to be here with you. You all are worthy. Don’t think otherwise.
@jerry @gozes @dewb @lattera @TheGibson @gilscottfitzgerald @jester @finux @galaxis @frootware @varx @nathanpruitt @rysiek @uranther @mastor @crowd42 @jeff @garrett @superruserr - (Jerry! It’s not imposter syndrome if you ARE an imposter!!)
@jerry @gozes @dewb @lattera @TheGibson @gilscottfitzgerald @jester @finux @galaxis @frootware @varx @nathanpruitt @rysiek @uranther @mastor @crowd42 @jeff @garrett @superruserr - Also. There’s always one asshole in the group. I’m looking around and everyone looks nice. That can mean only one thing...
@tinker @superruserr @garrett @jeff @crowd42 @mastor @uranther @rysiek @nathanpruitt @varx @frootware @galaxis @finux @jester @gilscottfitzgerald @lattera @dewb @gozes @jerry
Nah... I can't see one either.
@superruserr @gilscottfitzgerald @TheGibson @finux @galaxis @frootware @gozes @varx @tinker @dewb @nathanpruitt @rysiek @uranther @mastor @lattera @crowd42 @jeff @Nitron @garrett @jerry many thanks. this should give me a good start.