@GossiTheDog@jerry@untitaker Can confirm that it pings every instance— even those that have been explicitly blocked or limited by the host instance unless the blocked instance has also been added to the "unavailable" table, which isn't automatic upon blocking/limiting
@jerry@GossiTheDog@untitaker If you're referring to suspending an account on your instance: yes. That's how I uncovered this particular data/privacy leak— I suspended a test account, and noticed my Sidekiq Retries fill up with errors from my Push queue. The errors stemmed from my WAF blocking inbound webfinger probes triggered in response to the outbound message sent by my instance.
Add comment