Enlarge

The maintainers of the open-source software that powers the Mastodon social network published a security update on Thursday that patches a critical vulnerability making it possible for hackers to backdoor the servers that push content to individual users.

Mastodon is based on a federated model. The federation comprises thousands of separate servers known as "instances." Individual users create an account with one of the instances, which in turn exchange content to and from users of other instances. To date, Mastodon has more than 24,000 instances and 14.5 million users, according to the-federation.info , a site that tracks statistics related to Mastodon.

A critical bug tracked as CVE-2023-36460 was one of two vulnerabilities rated as critical that were fixed on Thursday . In all, Mastodon on Thursday patched five vulnerabilities.

Movim is joining the Mastodon network you can follow us on @movim@piaille.fr to stay informed of our latest news or you can continue to follow our official blog as well 😋

We also totally refreshed our Patreon page and introduced two new membership levels, Supporter and Sponsor. If you want to help Movim and fund our development do not hesitate to support us there.

We would really like to first cover our monthly expenses (servers, domains…) and if we get enough support be able to fund some new features such as group-videoconferencing 🥰

#Patreon #Mastodon #Sponsor #Support #Movim

Bye bye Facebook, bye bye Twitter, the federated platforms are ready to take over!

The whole Fediverse is booming, Mastodon looks like a really promising replacement for the little blue bird and Peertube to replace Youtube. Many other platforms are currently being developed around the ActivityPub ecosystem like explained in this article The Fediverse is so much bigger than Mastodon.

We think that Movim also fit perfectly in there by being a perfect blogging and chatting platform. Fully built on the widely used Internet standard XMPP it is packed with plenty of exciting features in a nice and friendly user interface.

The Libervia project is actually working on a bridge between ActivityPub (the Fediverse core protocol) and XMPP which would allow us to connect all those exciting platforms with Movim!

Feel free to share the word to help us!

We are just at the beginning of this exciting journey :)

edhelas

#movim #xmpp #activitypub #fediverse #mastodon #libervia #twitter #facebook

Movim is 10 years old and it's with a lot of satisfaction that we are bringing this version 0.14 after 9 long months of development.

Movim is a new concept of social network with instant messaging features that sits between #Instagram, #WhatsApp for the user experience and federated networks such as #Diaspora or #Mastodon.

Ou goal is to bring everything you need to communicate with your community, classroom, company or friend circle in one simple application. Movim can easily be deployed on a server and rely on the XMPP protocol to federate them. Therefore Movim can, by design, already communicate with many XMPP/Jabber clients and doesn't need you to create a new account if you already have an XMPP one 😋.

This new #release is coming with several core changes that greatly improved the stability and performances of the project but it also brings many design and navigation improvements to always provide you with the best experience regarding publication of content and messaging.

Movim and PHP 7.3

Movim is currently having technical issues to run on the upcoming version of PHP 7.3.

This is a known and documented issue that is caused by some incompatibilities with one of the official dependencies of PHP, php-zmq, that is used at several places in the core of the daemon.

A ticket has been open to track and give updates about this issue: Movim is not working with PHP 7.3.

Technical changes

Before presenting the improvements and new features let's talk a bit about what was done under the hood.

Database

The biggest change in this version is certainly the complete replacement of the database layer from the historical, Movim specific, Modl library to the widely used Eloquent.

This work has been detailed in a previous article: From Modl to Eloquent, or how to change a social network database engine. To sum it up, it brought coherence in the database of the project and a huge performance boost on all the pages.

Without any cache involved, Movim is now loading pages in only a few hundred milliseconds.

The new database structure is also keeping good performances with a huge amount of data (millions of messages, thousands of articles on our official pods a this moment).

With Eloquent, Movim is compatible with #MySQL, #PostgreSQL but also, since this version, with #SQLite which can greatly simplify the deployment of small instances. Thanks to JKingweb for his awesome work on this port.

Packaging and dependencies

Scotty will be the first version to be packaged for the #Debian project. Big improvements were made in the dependencies of the project thanks to the work of our contributors mirabilos and nik. Several were fully removed and some are replaced with more stable and reliable ones (like the SASL library, used for the authentication). This package will come a bit later regarding the issue that we have with PHP 7.3.

Movim 0.14 is also the first version to drop the support of PHP5 (now deprecated) to focus on PHP7+.

What's new?

After being a bit boring with those technical changes let's have a look at what you will find as a user in this new version.

Publications

The publication of articles is now simpler than ever and has been fully redesigned. You can quickly publish a link or upload a picture directly from the home page or you can still switch to the more complete form to write long articles (like this one 😉).

When sharing a link that contains several pictures you can now pick the one that you would like to include in your publication (or no picture at all).

The publication visibility toggle has been redesigned to be clearer as well.

Articles

The cards containing the preview of the articles were fully redesigned to be more compact and adaptable to smaller screens.

The news page, contact publications and communities are now paginated allowing simpler navigation.

If you receive articles containing NSFW content and you asked to not display them in the configuration, Movim will now display a spoiler overlay on top of them.

The search feature has been improved and now supports searching in tags as well.

The loading performances of the articles and comments were also greatly improved. Navigating between the articles feels like a breeze.

Notifications

All the notifications are now grouped in a panel easily available from the main menu both on desktop and on mobile. Thanks to XMPP all those notifications are received and synchronized in real time 😀.

Those notifications contain likes, comments and invitations that you received.

Chats

Several message synchronisation issues were fixed allowing Movim to handle properly the receival and read acknowledgement of the sent messages.

Chatrooms

The chatrooms were slightly redesigned, the moderators messages are now shown with a specific color. The messages addressed to you are also displayed with a colored border.

You can now also publish Stickers and emojis in your favorite chatrooms.

But also!

You can now use Movim to authenticate to third party websites using your XMPP account. On the websites that implement that feature, you just have to give your XMPP account and a notification will be displayed in Movim.

You just have to accept it and you'll be automatically authenticated to the external website. How easy is it?

More information there Journal of a Bot - Authentication with XMPP.

Several small bugs were also fixed in the Video Conference feature. Movim is now clearer about the state of the video session and is giving proper feedbacks if the contact hung-up.

The pictures can be directly previewed within Movim before going to the external link.

Around the project

The new redesigned version of the official website will now present more clearly what the project is about and all the exciting features that you can use within Movim.

You will also find there all the apps for your desktop (Windows, macOS, Linux) and your Android phone.

What's next?

We are not done yet! There is already some plans for the upcoming release.

The 0.15 will focus on the integration of the OMEMO end to end encryption protocol. The related ticket has been reopened with more proper explanations. This will be a big risky project.

Some improvements will also be done on the suggestions of the chatrooms and communities to allow Movim users to explore and discover content more easily.

In the meantime we all invite you to try out this new version on our official instances or deploy it on your server. You will find everything to do so on the official website.

You can also always help us with donation to the project or support us on Liberapay or Patreon :). Giving feedbacks or talking about Movim around you is also helping us a lot!

That's all folks!

#MSTDN #socialnetworking

#mastodon #mamot #mamoth #mammouth #elephant