449

submitted 23 hours ago by ada to c/main

60 comments fedilink

Firstly, apologies to everyone for the extended downtime. Unfortunately, it was for a pretty bad reason. We were hacked.

The bad news is that it was a comprehensive attack, and the attackers had privileged access to our database system, across all of our services (except for writefreely, which doesn't use postgres). From what we can tell, the attacker did not do anything with that access, so we don't believe any user data was accessed, but we can't be certain of that. For lemmy, the impact of this should be minimal. If you registered with a real email address, they may have that. User passwords are encrypted in the database, so if you were using a secure, non trivial password, it should be safe, but you should still change it. You should also reset your 2 factor authentication if you had it enabled, as the seeds for these are not encrypted.

Our understanding is that the attacker used a peertube exploit, then a postgres exploit and then a kernel exploit to systematically gain access to different layers of our database server. A side effect of the hack was that it filled up our database servers hard drive, and caused it to fail over to our backup, which we believe mitigated some of the potential fall out.

We have had to reset activitypub keypairs for every account and community on lemmy, so there may be some federation hicoughs for a day or so, until remote servers have dropped any cached copies of our users public keys. This is uncharted territory though, so hopefully it's as smooth as we think it will be, but we can't be sure!

As stated earlier, our writefreely instance is still up and running as it wasn't impacted by this attack. Vernissage (our pixelfed replacement) has been brought back online, as has our matrix server.

We will be bringing up Sharkey, and then Piefed hopefully later today, but we have to rotate keypairs on those services too, which is also uncharted territory, so the timelines are hopes, not guarantees. At this point in time, we don't plan on bringing pixelfed back online, as it was slated for shutdown in August in any case. If people still need access to pixelfed to export data, we can spin it up briefly if needed, so please reach out if this is you. We also won't be bringing peertube back up at this point. It was not heavily utilised, and it was the source of the attack, so Kaity is a bit gun shy about spinning it back up on shared database infrastructure. If there is a strong desire to bring peertube back, we can consider doing that on isolated hardware, but at the current utilisation level, it doesn't seem worth the cost/effort to run it isolated.

in any case, you can read a fuller explanation of the attack by Kaity here https://pen.blahaj.zone/supakaity/weve-been-hacked

133

Trump’s $14M reflecting pool paint job is now peeling off and floating to the surface (www.huffpost.com)

submitted 2 hours ago* (last edited 2 hours ago) by MicroWave@lemmy.world to c/politics@lemmy.world

17 comments fedilink

Donald Trump positioned himself as a swimming pool expert as he touted the Lincoln Memorial Reflecting Pool renovations he ordered this year, having put in “more than 100” over his career.

But after spending $14 million in taxpayer funds, the Reflecting Pool now looks arguably worse than it did before.

Aside from the bright green hue of the water — the product of what is reportedly one of the largest algae blooms in recent years — the “industrial-grade swimming pool topping” that Trump chose is already peeling off in sheets.

Possession is 9/10 of the law! (lemmy.world)

submitted 1 hour ago by Laggindragon@lemmy.world to c/lemmyshitpost@lemmy.world

6 comments fedilink

Scores fall ill at Air Force Base after Hegseth makes flu vaccine optional (www.nytimes.com)

submitted 2 hours ago* (last edited 1 hour ago) by MicroWave@lemmy.world to c/news@lemmy.world

7 comments fedilink

The defense secretary described the vaccine requirement, which he lifted in April, as an “absurd, overreaching” mandate.

A major flu outbreak has sickened nearly 160 troops at Lackland Air Force Base in Texas less than two months after Defense Secretary Pete Hegseth announced that U.S. troops would no longer be required to be vaccinated for the flu, defense officials said.

The outbreak at the base in San Antonio raced through an Air Force Basic Military Training wing, where new recruits sleep on bunk beds in open bays and share meals at large communal tables.

A trainee in his sixth week of basic training died after falling ill on Friday and being taken to Brooke Army Medical Center, the Air Force said in a news release. It was not immediately clear whether the death of the trainee, Keon McDaniel, was related to the flu outbreak.

MIT Study Finds Gas Cars Aren't Secretly Better For The Planet Than EVs, Despite What Everyone On Facebook Says (www.jalopnik.com)

submitted 1 hour ago by Sunshine@piefed.ca to c/electricvehicles@slrpnk.net

2 comments fedilink

Iran announces plans to bring in maritime fees for strait of Hormuz (www.theguardian.com)

submitted 1 hour ago by MicroWave@lemmy.world to c/politics@lemmy.world

6 comments fedilink

Tehran says fees to cover cost of managing waterway will come into effect at end of 60-day negotiation period

Iran has announced plans to introduce a system of maritime fees in the strait of Hormuz in two months, after the 60-day period of negotiation that has been triggered by the signing of the memorandum of understanding.

Tehran, claiming a historic victory over the US, said the strait was under its control and a European plan for a naval mission to escort ships though the strait would not be welcome.

The warning came as the Israeli newspaper Yedioth Ahronoth reported that Benjamin Netanyahu, the Israeli prime minister, had said Israel “will maintain the security zone in south Lebanon as long as our security needs require it”, referring to the more than 600 sq km of Lebanese territory occupied by Israeli troops along the border.

Luigi Mangione's lawyers reverse course, say they won't pursue a psychiatric defense (apnews.com)

submitted 1 hour ago by LuminousLuddite@lemmy.world to c/news@lemmy.world

9 comments fedilink

In a stunning reversal, Luigi Mangione‘s lawyers told a judge Thursday that he will no longer be asserting a psychiatric defense at his state murder trial in the killing of UnitedHealthcare CEO Brian Thompson.

The retraction came just a day after Mangione’s lawyers told Judge Gregory Carro that they planned to pursue a defense involving claims that the 28-year-old Ivy League graduate was suffering from extreme emotional disturbance at the time of the Dec. 4, 2024, killing.

139

Someone didnt take home ec hahaha (lemmy.ml)

submitted 2 hours ago by bubblybubbles@lemmy.ml to c/microblogmemes@lemmy.world

12 comments fedilink

David Duchovny posing with an alien prop from the set of The X-Files. (lemmy.world)

submitted 1 hour ago by setsneedtofeed@lemmy.world to c/pics@lemmy.world

7 comments fedilink

Iran announces plans to bring in maritime fees for strait of Hormuz (www.theguardian.com)

submitted 1 hour ago by HowRu68@lemmy.world to c/world@lemmy.world

1 comments fedilink

Tehran, claiming a historic victory over the US, said the strait was under its control and a European plan for a naval mission to escort ships though the strait would not be welcome.

208

Trump's $14M Reflecting Pool Paint Job Is Now Peeling Off And Floating To The Surface (www.huffpost.com)

submitted 2 hours ago by inclementimmigrant@lemmy.world to c/politics@lemmy.world

27 comments fedilink

There are no words on how stupid and corrupt this administration is.

MIT Study Finds Gas Cars Aren't Secretly Better For The Planet Than EVs, Despite What Everyone On Facebook Says (www.jalopnik.com)

submitted 2 hours ago by sanitation@lemmy.today to c/technology@lemmy.world

7 comments fedilink

Zohran Mamdani Just Made a Lifelong Vegan the Leader of New York City's Food Policy (vegnews.com)

submitted 1 hour ago by Sunshine@piefed.ca to c/vegan@slrpnk.net

2 comments fedilink

Stellantis drops its multi-energy strategy for upcoming E-Car small EVs (www.autonews.com)

submitted 54 minutes ago by Sunshine@piefed.ca to c/electricvehicles@slrpnk.net

0 comments fedilink

Limitless Future Rule (leminal.space)

submitted 55 minutes ago by Flamangoman@leminal.space to c/onehundredninetysix

3 comments fedilink

113

A bash script to automatically burn LLM tokens, thus massively increasing your productivity and hireability (github.com)

submitted 2 hours ago by cm0002@mander.xyz to c/programmer_humor@programming.dev

8 comments fedilink

Because nothing gets you promoted faster than a six-figure token bill

A bash one-liner that burns Claude Code or Codex tokens on purpose.

Be the most productive engineer on your team 🚀🚀🚀!

Is there a way to geht honest feedback on how you behave? (sh.itjust.works)

submitted 1 hour ago by LH0ezVT@sh.itjust.works to c/asklemmy@lemmy.world

5 comments fedilink

Bit of a shower thought: Outside of limited circumstances, like interviews or therapy, nobody is really expected to give you honest feedback on how you come across.

This sucks. I've been told I come across as unfriendly once, but I have no idea if I was just nervous and tired at the time. I still cherish that one moment almost 10 years ago when someone told me I was funny in some corporate team building bs.

Now, I could ask friends and family, but I believe they would probably not tell me the full, honest truth. After all, they (hopefully) like me and I would probably avoid being too harsh to everyone but very close people in private.

At the same time, I know plenty of people who really should get some feedback, who probably believe they are funny while everyone is bored and annoyed and hopes they talk a little less and the like.

So, are there socially accepted ways to get feedback on how you come across?

I realize that people are strange, relationships are hard, P!=NP and anime is not real. Still, it would be nice to have.

"Life finds a way" is about the dinosaurs becoming transgender (lemmy.today)

submitted 2 hours ago by Wren@lemmy.today to c/BrandNewSentence@lemmy.today

1 comments fedilink

There are a finite number of seconds in your life and you just spent some reading this post (lemmy.ca)

submitted 1 hour ago by FreshParsnip@lemmy.ca to c/showerthoughts@lemmy.world

4 comments fedilink

Rumour: Gaming Industry 'Bloodbath' Imminent, as Sony, Microsoft, and More Brace for Mass Layoffs (www.pushsquare.com)

submitted 1 hour ago by Sunshine@piefed.ca to c/technology@piefed.social

0 comments fedilink

Lithuania Expects Improvement in China Ties Within Six Months (www.bloomberg.com)

submitted 1 hour ago by schizoidman@lemmy.zip to c/world@quokk.au

0 comments fedilink

cross-posted from : https://lemmy.zip/post/66396303

no paywall

Lithuanian President Gitanas Nauseda said he expects to see the first results of the country’s diplomatic outreach to China within the next six months, as the Baltic nation moves to mend ties with Beijing following a spat over Taiwan.

Democratic socialist holds wide lead in DC mayor race (thehill.com)

submitted 1 hour ago by sanitation@lemmy.today to c/politics@lemmy.world

0 comments fedilink

In a alternative universe a wife said no to her husbands request (lemmy.world)

submitted 2 hours ago by Themosthighstrange@lemmy.world to c/lemmyshitpost@lemmy.world

12 comments fedilink

PCs have no plan to meet ambitious housing targets (theindependent.ca)

submitted 50 minutes ago by Sunshine@piefed.ca to c/newfoundland@lemmy.ca

0 comments fedilink

'Battery on wheels': Sweden powers homes with EVs (techxplore.com)

submitted 1 hour ago by Sunshine@piefed.ca to c/electricvehicles@slrpnk.net

2 comments fedilink

Blåhaj Lemmy

10,431 readers
418 users here now

Blåhaj Lemmy

Blåhaj Lemmy is brought to you by the kind folk at Blåhaj Zone, and while anyone is free to register for an account here, please bear in mind that this is a server that is very protective of our minority members and bigotry of any variety will be squashed with great prejudice.

We have several alternative lemmy frontends you can use. Just login with your regular blahaj login details.

We have a public matrix channel for all Blahaj users at #blahaj:chat.blahaj.zone

We also have a matrix channel for gender diverse folk and our allies! If you're already a matrix user, you can head straight to our application room https://matrix.to/#/#gv-apply:chat.blahaj.zone, or by searching for #gv-apply:chat.blahaj.zone from within your matrix client.

If you're new to matrix, you can find some more details and an instruction video on how to get up and running here https://chat.blahaj.zone/c/genderverse/

Community Guidelines

Blåhaj Lemmy is a space where everyone should feel able to participate safely, and to that end, our community is built on the guiding philosophies of empathy, inclusion and acceptance.

Empathy

We want our community members to be guided by compassion and empathy for others.

Examples of behaviour that are contrary to this philosophy are personal attacks, insults, doxing etc. If your comment is designed to hurt someone, this isn't the space for it.

Inclusion and Acceptance

Embracing inclusion and acceptance means listening when people tell you who they are and what their needs are. It means not telling people that you know their experiences better than they do. It means not gatekeeping experiences of identities of others. It means no bigotry such as racism, sexism, anti LGBT commentary, ableism etc. It means doing your best to ensure that you don't over-talk the voices of folk who don't share your privileges.

Supporting Blåhaj Lemmy

After much hesitation, we have a Ko Fi to enable people to help with supporting some of the running costs associated with our instances.

Providing a safe space for our community is the goal, so please only consider donating if you are in a position to do so without any financial stress.

Mascot and logo

Find out about our mascot Shonky (they/them) who appears on our site logo here.

founded 3 years ago

ADMINS

blahaj

ada

supakaity

will_steal_your_username

robota