this post was submitted on 11 Feb 2025

149 points (98.7% liked)

hexbear

10331 readers

284 users here now

Hexbear Proposals chapo.chat matrix room.

This will be a place for site proposals and discussion before implementation on the site.
Every proposal will also be mirrored into a pinned post on the hexbear community.

Any other ideas for helping to integrate the two spaces are welcome to be commented here or messaged to me directly.

Within Hexbear Proposals you can see the history of all site proposals and react to them, indicating a vote for or against a proposal.

Sending messages will be restricted to verified and active hexbear accounts older than 1 month with their matrix id in their hexbear user profile.

All top level messages within the channel must be a Proposals (idea for changing the site), Feedback (regarding non-technical aspects of the site, for technical please use https://hexbear.net/c/feedback), or Appeals (regarding admin/moderator actions).

Discussion regarding these will be within nested threads under the post.

To gain matrix verification, all you need to do is navigate to my hexbear userprofile and click the send a secure private message including your hexbear username.

founded 4 years ago

MODERATORS

Ryaina@hexbear.net

ella@hexbear.net

CARCOSA@hexbear.net

sweet_pecan@hexbear.net

149

we fucked up (chapo.chat)

submitted 1 week ago* (last edited 1 week ago) by CARCOSA@hexbear.net to c/hexbear@hexbear.net

640 comments fedilink hide all child comments

Hello users of hexbear, or shall i say chapo.chat, we fucked up, and i fucked up like three times making this post.

Yes, hexbear.net has expired. Yes, we were aware of this possibility. We have gradually lost contact with the access owner (prior admin) for the domain registration. We attempted to make a migration plan, but we were disarmed by the reappearance of the party in question in September 2024 and repeated assurances that they would a) transfer credentials and b) continue payments until they were able to do the former.

We accept full responsibility for this. We should have been more aggressive about this and continued our alternative despite these reassurances. This is our fuck up, and we can't offer anything besides our continued apologies and our plan of action going forward and an explanation of what happened:

Over the time of chapo.chat and hexbear.net the admins that purchased the domain, established the donation accounts, and the server accounts have left. One of the primary admins has gone inactive and returned many times, over a year ago some of the newer admins began asking the older admins to give full access to the domain, servers, and donations. These requests were not met, despite warnings of this exact event.

At the moment we do not have access to hexbear.net and there is a strong chance we will not get it back without participating in the auction, which is already over $300. Choosing to abandon the hexbear.net domain will cause federation problems and considerable technical issues which would lead to potential extended downtime.

During this downtime we would be reestablishing access to the new domain (or hexbear.net if we win the auction), access to server ownership, and donation accounts. This would be distributed among a number of admins so that we can prevent this from happening again.

Chapo.chat has the same access problem that led to the current state of hexbear.net so it is to be considered temporary.

I will do my best to answer questions

you are viewing a single comment's thread
view the rest of the comments

[–] invalidusernamelol@hexbear.net 6 points 1 week ago (1 children)

Anything that routes though the old domain will expose IP addresses to the new owner.

[–] SkingradGuard@hexbear.net 2 points 1 week ago (2 children)

As in, if we try to go to hexbear.net or all historic traffic?

[–] invalidusernamelol@hexbear.net 4 points 1 week ago

Any existing hardlinks would be compromised.

[–] bleepbloopbop@hexbear.net 4 points 1 week ago (2 children)

only if you go to hexbear.net or an app on your computer or phone makes a request there in the background

[–] blobjim@hexbear.net 5 points 1 week ago* (last edited 1 week ago) (2 children)

which is every single page on here. All the profile pictures and emojis cause the browser to directly make requests to hexbear.net, that's why they're all showing up as "visit hexbear.net" images.

absolutely massive screwup. Like most computer software is not even designed for the scenario where you lose control of the domain name.

[–] LaBellaLotta@hexbear.net 2 points 1 week ago (1 children)

So security has been compromised AND we lost all the emojis? Damn this sucks

[–] blobjim@hexbear.net 2 points 1 week ago* (last edited 1 week ago)

hopefully there's a way they can do a database update and maybe rewrite every emoji link to use chapo.chat or something.

really the way image links in lemmy work is pretty hacky. It modifies the markdown when you save your comment to replace the link you put in it with one that is under the main website domain. So urls are always hardcoded.

[–] bleepbloopbop@hexbear.net 1 points 1 week ago

presumably that will be fixed before the domain auction is over but yes

[–] SkingradGuard@hexbear.net 3 points 1 week ago (1 children)

Ah damn, I'll log out of jerboa then just in case. What else should I do?

[–] RedWizard@hexbear.net 4 points 1 week ago

That should be enough.