yesbutnobutyesbutno

joined 1 year ago
[–] [email protected] 2 points 1 year ago (1 children)

You can always pee in the sink 😬

[–] [email protected] 1 points 1 year ago

Cry me a river.

[–] [email protected] 1 points 1 year ago (1 children)

Depending on what you’re comfortable with (and whether you want to integrate it with something else), maybe take a look at Altair? Especially nice is the declarative syntax of Vega-Altair.

[–] [email protected] 2 points 1 year ago

Great work! I love having Voyager as a separate app on macOS.

[–] [email protected] 1 points 1 year ago

Thank you, your hard work is very much appreciated!

 

cross-posted here from https://sh.itjust.works/post/1658215 to get some additional feedback on this.

Hi,

As my regular instance was experiencing downtime, I decided it might be a good idea to have a backup account on a different instance. So I created a new account on feddit.uk, configured 2FA and all was well. Although…

When I later tried to log on using Voyager, it kept returning a connection error. I tried logging on to the instance directly using the browser: no error, but just lands back on the login page.

Seems like the issue was caused because of the password length (originally 65 characters). Resetting my password and bringing it down to 45 characters resolved the issue. However, directly after the password reset, I was logged in, and my 2FA code wasn't asked?!

For a minute I thought it might be due to cached credentials, but retrying the same scenario in a private window confirmed it. This means that if your e-mail account is compromised, 2FA will no longer protect you.

Another possible issue (just to be clear, in this scenario, your e-mail account is not compromised): if someone is able to access your account (maybe you forgot to log out), they can modify your e-mail address without you being notified, nor do they need to know your password. A verification e-mail will be sent to the new address, and they can reset your password using the approach described above. The new e-mail address does not need to be verified to do so (a verification e-mail is sent, but resetting the password works even if you don't verify), and the old e-mail address is not given a heads up of the change (I know, the old address might no longer work, but still).

Not only can your password be reset this way, after gaining entry, 2FA can be disabled without issue.

Am I wrong in thinking the scenarios described above are security issues? Thanks for your feedback!

 

As you can see, for accounts with long usernames, the username is not truncated when looking at the posts or comments overview, causing it to overflow into the title area.

One more thing: if you create a new post, add a photo, then type the post text, you’ll get a message saying “please add a photo” when tapping “Post” (see second screenshot).

[–] [email protected] 3 points 1 year ago

Can confirm that it’s resolved after a restart. Wasn’t aware that this was an iOS bug. Thanks.

[–] [email protected] 1 points 1 year ago

Bit strange that the animated gif (had to convert it as I couldn't upload video) was converted to webm, which means that you can't view it on iOS.

 

This is a very weird bug, and I’ve only encountered it once before on my iPad, but it just happened on my iPhone too.

Basically, when tapping a text field, the keyboard will no longer show up. You’ll notice at the bottom there’s a small toolbar that appears (which seems to be the top of the keyboard), but nothing more.

In the screen recording you’ll first see the issue being reproduced in Voyager (standalone), then with Voyager in Safari (where it works correctly).

I’ve tried reinstalling Voyager, but no joy. Strange thing is that the issue only presents itself in the (standalone) app, not while using it in Safari (as you can see from the screen recording).

FYI: I’m running iOS 16.6 (but it also happened before on iPadOS 16.5).

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

I've been testing other Lemmy iOS apps (Mlem, Avelon, Thunder, Lemmios, Liftoff, Memmy and Bean), and for me personally, Voyager beats them all in terms of design, features, releases and app performance.

The latter rather surprised me, but when scrolling and otherwise interacting with a post with a very large number of (nested) comments, Voyager showed no hiccups whatsoever, while some of the native apps really struggled.

Yes, I know the scrolling sometimes "hangs", but that's because of a bug with Safari, not Voyager, so you can't really fault the app for that (well you can, but I won't).

Great work, much appreciated. This certainly helps to cope with the loss of Apollo.

[–] [email protected] 3 points 1 year ago

Or click the "x" to dismiss the banner?

[–] [email protected] 2 points 1 year ago

Thanks for this, works like a charm and exactly what I needed. Especially nice that it does a delta and not simply overwrites the target profile (as I already had some new communities I was following in the target account).

Only thing I missed was a swap or reverse for Download and Upload, as I wanted to sync both accounts. Just meant I had to fill in both forms again, no biggie.

Thanks again!

13
Possible security issues? (sh.itjust.works)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

Hi,

As my regular instance was experiencing downtime, I decided it might be a good idea to have a backup account on a different instance. So I created a new account on feddit.uk, configured 2FA and all was well. Although…

When I later tried to log on using Voyager, it kept returning a connection error. I tried logging on to the instance directly using the browser: no error, but just lands back on the login page.

Seems like the issue was caused because of the password length (originally 65 characters). Resetting my password and bringing it down to 45 characters resolved the issue. However, directly after the password reset, I was logged in, and my 2FA code wasn't asked?!

For a minute I thought it might be due to cached credentials, but retrying the same scenario in a private window confirmed it. This means that if your e-mail account is compromised, 2FA will no longer protect you.

Another possible issue (just to be clear, in this scenario, your e-mail account is not compromised): if someone is able to access your account (maybe you forgot to log out), they can modify your e-mail address without you being notified, nor do they need to know your password. A verification e-mail will be sent to the new address, and they can reset your password using the approach described above. The new e-mail address does not need to be verified to do so (a verification e-mail is sent, but resetting the password works even if you don't verify), and the old e-mail address is not given a heads up of the change (I know, the old address might no longer work, but still).

Not only can your password be reset this way, after gaining entry, 2FA can be disabled without issue.

Am I wrong in thinking the scenarios described above are security issues? Thanks for your feedback!

[–] [email protected] 1 points 1 year ago

Should be “STOP” instead of “SLOW”. You know: stop, to go and pet the cat 😉

[–] [email protected] 6 points 1 year ago

I’m quite a fan of voyager (née wefwef), but out of curiosity, I tend to install all lemmy apps and give them a whirl.

I have to say, there is quite a lot to like about your app. I’m very curious to see where it goes next.

 

I quite love wefwef (ahem Voyager), building on the legacy of Apollo and filling the hole caused by the whole Reddit kerfuffle (obligatory fuck u/spez).

Due to being averse to everything Google, I only use Safari (FF if there is some kind of technical issue where Safari is causing issues). From what I gathered researching on the web, there doesn't seem to be any support for PWA in either of those browsers.

I'm currently running Voyager in a pinned tab, but if anyone has any suggestions to improve usability, I'd love to hear them. Thanks!

 

Hi,

I have an existing 2 wire doorbell, with a mechanical chime. I'd like to replace it with the Aqara G4 doorbell. I could care less if the old chime still works after hooking up the Aqara, but I'd just like to know if the doorbell itself will work in this setup.

If not, can I just connect the two wires in the old chime, effectively bypassing it? Or will this only cause a blazing inferno?

I'm aware that the Aqara can run on batteries, but I'd prefer to avoid that. And I already verified that my transformer provides sufficient power (8V 0.5A).

I've search high and low for an answer, consulted the manual, mailed Aqara support multiple times (no reply) and asked others in various comment sections. Hopefully I'll be able to get a straight answer here... 🤞

Thanks!

view more: next ›