This is an unscheduled update which includes some urgent security fixes, so please update soon. Since the last release, this release collects 67 commits made by 4 contributors. It's only a maintenance release, as you can tell. :)
Fixes USN-4274-1, a potential Denial-of-Service vulnerability in Nokogiri. #8108
Introduces an automatic cleanup job to remove photos that have been uploaded but never got submitted in a post. #8041
Removes the dependency to rails-assets.org to prevent installation or upgrade issues when the service is down. #8087
Podmins, please update your pods as soon as possible. Update instructions are available as usual in the wiki. For those of you who have been testing the release candidate, run git checkout master before the update to get back to the stable release branch.
If you are a user not running your own pod, there is nothing you need to do!This section usually contains dates for upcoming releases, but not this time! We are currently working hard on pushing some awesome new things into the next major version. Because of this ongoing work, we have temporarily suspended our regular minor release cycle. We will update y'all as soon as we have something to update! :)#diaspora #announcement #release #07130
The editing interface isn't even the hard thing. Figuring out a balance between allowing people to edit, while also prohibiting people from maliciously editing their contents afterwards is an issue. Most systems achieve "editing transparency" by keeping old revisions around and adding a note "this post has been edited", along a public record of what has been edited. This can be a nice solution, but it also comes with its own share of issues, as that would remove some control about the contents from the authors, which is not what diaspora\* is all about. "Just allow post editing" is yelled around quite frequently, but there are a lot of conflicts to resolve.
A lot of those issues have been discussed and documented on Discourse, and I encourage anyone to read the whole thread if you want to know why it's not as simple as adding an edit-button. There's a lot of useful context in that thread.
Why would you allow other users to edit someone else’s post?
You wouldn’t. But the semantics of allowing post editing aren’t so simple that everyone can agree on them. And once we’ve got agreement on how it should work, then there’s all the technical work that would have to happen to make the systems support it, which is no small feat. As Dennis said, check Discourse to come up to speed on the discussion; it’s really not on-topic for a post about a new release of the server.
@Alexander it's all true, but it's also true that at some point Diaspora will have to deal with providing an effective way to ban people. I don't know how, but as the network grows it will become more and more necessary. Email ban is likely ineffective, but it should stop the less motivated trolls.
Of course, if one is very motivated then he could set up his own pod and spam/troll from there, until that pod gets banned by all other pods...
What Diaspora does need are better user controls. For example, ability to limit who can comment, ability to post with comments disabled, configurable filters.
Yes. When I make a new post there could be an option to only accept comments from users that match requirements (no new accounts, a certain number of posts, a certain number of likes etc). This is what ebay does I think, and also stackoverflow.
@Alexander ban the use of any email like this, email@example.com , which are clearly bots, my pod gets a sequential list of accounts registering with an email like this almost every other day, the numbers are different.
is there a way to add a "groups" option in a future update? or some kind of social thing so members can find each other and find common interests. i think this would be good for more people to become friends. i think it would be good.
Aspects work the other way around. Groups you can join to find people that have the same interests. This is not implemented in d*. Aspects is a categorization of someone's contacts by a user. The only way to find people with the same interest is hoping, that someone uses the hashtags that you are looking for. I can see the request of @firstname.lastname@example.org... it would be a massive improvement of diaspora*.
Pod migration is still very important for me. I've also been waiting for several years now. My pod just came back to life after a few days of downtime, and I'm lucky it was only 2 or 3 days this time. It happens quite frequently. And comment ordering is still broken.
@Michele Santullo the code migration backend is already written and released. If find a podmin running the develop branch of diaspora who agrees to help you, then you can export your data from your current pod, give them to him / her and he / she will import it.
@email@example.com so what? github is one of the biggest Rails contributor and their service is great. It will take one instance of abuse of power by microsoft so all the users leave github, but that hasn't yet happened I guess :)