Have there been any protocol-level #attacks against the #Fediverse so far? Malformed ActivityPub messages, subtly crafted HTTP signatures, that kind of thing? (If not, there sure will be!!)
And more interestingly: if you were on team red, what would you do? 🙂 (On second thought, maybe we should have that conversation outside of the public eye, so DM.)
Is there something we ought to do with feditest.org to test implementations for resistance against attacks? #testing
Johannes Ernst /
npub1a3…2ea5z
2024-07-05 23:26:37
Author Public Key
npub1a32cg8ntvpcq0gqk00t73kzywptxjvm2aatysk6g7nfc750976xsm2ea5zPublished at
2024-07-05 23:26:37Event JSON
{
"id": "8ade1abb9dbdfa04214b518be1f65588feb6623fc668039e3b3204e28dd8ce97",
"pubkey": "ec55841e6b607007a0167bd7e8d844705669336aef56485b48f4d38f51e5f68d",
"created_at": 1720221997,
"kind": 1,
"tags": [
[
"t",
"attacks"
],
[
"t",
"fediverse"
],
[
"t",
"testing"
],
[
"proxy",
"https://social.coop/users/J12t/statuses/112736468855715780",
"activitypub"
]
],
"content": "Have there been any protocol-level #attacks against the #Fediverse so far? Malformed ActivityPub messages, subtly crafted HTTP signatures, that kind of thing? (If not, there sure will be!!)\n\nAnd more interestingly: if you were on team red, what would you do? 🙂 (On second thought, maybe we should have that conversation outside of the public eye, so DM.)\n\nIs there something we ought to do with feditest.org to test implementations for resistance against attacks? #testing",
"sig": "dfbdb2d727a3400eab7f805cc9973aab715364273bc09c44478728df37fa8e381f173c2c380bf414b110dd259547bd5c5a1a062d6d5ca95f3553a320549ff0cc"
}