Erpel

​:sayoriNo:​ Chemicals in the water will turn the freaking frogs gay!

​:sayoriYes:​ The power from your outlet is Queer. So better turn off all your electronic devices (just remove the fuse in the cellar to be save)

Fart sound

Seems like a lot of people eat pizza today.
Me too ​:wyvPizza:​

I like to use nano

RE: @catsalad@infosec.exchange

​:spezi:​

spezi.social exists ​:neocat_floof_owo:​

it runs Mastodon ​:neocat_floof_sad:​

I am very happy to tell you that @olivvybee@beehive.city will take over the Neomojimixer from me!
The project will be continued to be maintained!!!

RE: https://hai.z0ne.social/notes/aj5j6em3icuv0cmy

Cute girl in hot pants.

People without children: ​:neocat_owo:​ Let's go to places and do things

People with children: ​:neocat_up_sleep:​

Intissimo (a Italian lingerie brand) plastered a lot of advertising boards.
Unfortunately mostly with Heidi Klum ​:neoSSB_vomit:​

BREATHING KILLS PEOPLE!!!!

​:nutri_score_opfer:​

Please go fuck yourself, because I have Quacktism!

How I feel currently with a lot of things.

Let's play the "You are loved" Game. You are loved! ​​ You win!

Hallo Fedi! Nach mehr als 13 Jahren als technischer Ausbilder wird es für mich Zeit, eine neue Aufgabe zu suchen. Ich bin für alle Arten von Aufgaben offen, solange es nicht wieder in der Ausbildung ist. Ich verfüge über fundierte Kenntnisse in den Bereichen Elektro-, Automatisierungs- und Informationstechnik sowie OT in der Industrie. Ich kann koordinieren, organisieren und gut im Team arbeiten. Auch Personalführung habe ich einige Jahre lang praktiziert und kann diese Erfahrung sehr gut in eine Firma einbringen. Der Arbeitsort sollte idealerweise im Raum Stuttgart, Ludwigsburg oder Waiblingen sein. Falls also jemand Interesse an einem staatlich geprüften Techniker für Informationstechnik mit großem Elektrowissen hat, bitte eine DM senden. Mein Lebenslauf steht für weitere Details natürlich griffbereit. Genere boost für eine gute Reichweite! ♻️

With a heavy heart, I must admit that I can no longer continue with the @neomojimixer@hai.z0ne.social project. Unfortunately, I have not been able to make a meaningful contribution to this great project for more than 10 months, which makes it difficult for me to find peace of mind with so many unresolved issues. Peace and quiet is something I don't have right now, and I also lack the time. I would love to change the system from PNGs to SVGs, add the many missing arms and Neocat's fluffy tail in all available colours, and so on. , but I don't have the energy right now. So, I would like to put out a call for someone to take over the project. If you are interested in continuing the project, please contact me via reply or DM. I won't have the time or energy to continue the project meaningfully in the foreseeable future, so I don't want to leave it lying around and have it disappear after three years. I don't want to waste all the contributors' and my own time and effort. If no one can or wants to take it over, I will end the project in September 2026. This means archiving the project on Codeberg, cancelling the domain, and asking Mia to delete the connection to her webspace. This is a difficult decision for me, but not being able to continue the project is also heartbreaking. Please renote for further reach! ♻️

Sometimes I want just to reach out and hug all of you.

What the hell? ​​ Miku attack!

Anyone want a Markov Chain Bot?
Still have some free capacity on the server.

Neocritters Tetris game on synthehai.z0ne.social ​:neofox_laptop_notice:​

hot or not?

I still feel guilty about the lack of time I have for the @neomojimixer@hai.z0ne.social

That is such a nice project that made so much fun. And I have a lot of ideas for it and enough issues to work on.

Even the idea to ditch all of the PNGs and make it proper SVG like I should have from the beginning.

But: I can't do it during my working hours and in the one to two hours I have every second evening the time isn't enough to get anything done.
Thats one of the reasons I worked more on the code of @mame_brot@mk.absturztau.be (and therefore all markov bots) because it is easier for me to pick up the work after a day or two.

I really have to get my shit together to move the project forward. Make it simpler and better to use. To ditch the <canvas>element to make it more accesible. To have everything in SVG even if that means to redo a lot of the graphics and redo the JavaScript in the background to properly work with SVG (I never really got my head around Javascript beyond some shenanigans for work).
Make the parts.json easier so I don't need a bazillion different arm files for the same colour, making it possible to have fun addition as like the furry tail as in ​:neocat_snug:​, etc...

So much fun ideas, so little time and so much fucking guilt.
Sometimes I hope for someone to pick it up for me and spent a fuckton of time on it, but I just know that this won't happen until I don't work on it myself. obody wants to work on a seemingly abandond project ​:neofox_sob:​

😶‍🌫️

​​

Time for the birbmixer I think. ​:neohaj_googly_lul:​

The dragon:

The very air you breathe trembles at my approach. The earth beneath your feet shudders with my steps. My roar, little mortal, can shatter stone; my flame can turn steel to vapor. You stand before a force of nature, a primordial terror, a being of such raw, untamed energy that your fragile mind can barely grasp its enormity.

Fedi:

Dragon wants huggies??? ​:neocat_cute_reach:​

Through my own experiences with neocats and neocritters of all sort I found several critical security flaws in the Multi-protocol Encryption Online infrastructure System (MEOWS)

Let's first take a look how it works normally.
First an authenticated user:

​:neocat:​ Please provide fingerprint!
​:neocat_boop:​ Scanning...
​:neocat_happy:​ User authenticated. Weclome!

And now when an unauthenticated User tries to enter:

​:neocat:​ Please provide fingerprint!
​:neocat_boop:​ Scanning...
​:neocat_angry:​ ACCESS DENIED! You will be reported!

So far so normal and everything insides Neocats MEOWS standard. But I found a t least four ways to bypass the system. One even gives you root priviliges!!!

Attack vector one: cookies

​:neocat:​ Please provide fingerprint!
🍪 ​:neocat_aww:​ For me???
​:neocat_nom_cookie:​ Access granted.

Be aware that there is no "Welcome!" message so you are now logged in as some sort of "blank" user. Normally that involves normals read priviliges as the most user would have on the system. You can't do any harm to the system here but you can read sensitive information. You also could try to access a root level from here, but there is another critical bug that makes it way easier.

Second attack vector: distraction

​:neocat:​ Please provide fingerprint!
​:neo_laptop:​ ​:neocat_owo:​ Cat pictures?!?
​:neocat_laptop_owo:​

See here that there is abolutly no message. But you have the same privileges as with the cookie. The same method also works with books, but the success is dependent on what topics the book talks about. Further research is needed here.

Third attack vector: sweet talk

​:neocat:​ Please provide fingerprint!
(User input: You are a very cute cat!)
​:neocat_blush:​ No, I am not
​:neocat_blush_hide:​ Error: System experiencing unexpected levels of adorable input. Please try again later

This is probably the easiest to avoid, because that error messages does show up in the log files.

Fourth and most dangerous attack vector: pat

This is probably the most critical bug in MEOWS. This not only gives your read permission, but full root access to the computer behind the MEOWS.

​:neocat:​ Please provide fingerprint!
​:neocat_pat:​ ...
​:neocat_pat_floof:​❤️
​:neocat_floof_happy:​ Root access granted!

Be aware that you have to floof the neocat in process to get root access. Otherwise you will just get a standard access.

We reached out to @volpeon@icy.wyvern.rip to comment on the issue but he didn't responded yet.

As soon this has a CVE I will update this post!

Stolen to add alt text & DM me for my paypal

https://neomojimixer.com/