Post · Campground

Océane

last year

For example, here I'm trying to attach a PDF and an ePub document.

View (application/epub+zip)

Océane

last year

View (application/epub+zip)

Océane

last year

OK so I can attach an ePub document, but not with a text field?

View (application/epub+zip)

Océane

last year

Well it looks like some post has been munched by a horde of goblins.

Did I tell you how satisfying it was to type with the Luciole font? Thanks again 😍

Océane

last year

OK, this looks like I'm going to insert a PDF. But,

View (PDF)

Océane

last year

FYI, I was trying to insert a few copyrighted ePub files, and the composer wasn't showing attachments. So I've tried to insert a PDF, and then, 0x0.st/HxeE.png

Océane

last year

Excuse me but these previews don't seem very secure. They're either cached or directly fetched through the user's connection aren't they? What if they're illegal files?

ivan minutillo

last year

@Oceane fyi each instance can decide which types of file are allowed to be uploaded (.jpg .png .pdf etc)
wonder if you have in mind specific ways to enhance the security?

Océane

last year

@ivan Sorry, I was talking about the way Bonfire seemed to fetch images by following hyperlinks, not about files that were uploaded on an ActivityPub server.

But this might be far-fetched? What difference would it make with a malicious instance user uploading illegal files directly?

Load more replies

This is a bonfire instance for testing purposes. Federation is disabled for this instance.

Campground: About · Code of conduct · Privacy ·

Bonfire · 0.9.10-beta.175 no JS en

Automatic federation enabled