Mastodon total: 7,792,207 - biggest instance mastodon.social: 2,627,588 --> 33%.
Pixelfed total: 675,348 - biggest instance 437,361 --> 65%
> Due to an implementation mistake, Pixelfed ignores this and allows anyone to follow even private accounts on other servers. When a legitimate user from a Pixelfed instance follows you on your locked fediverse account, anyone on that Pixelfed instance can read your private posts. You don’t need to be a Pixelfed user to be affected.
The fediverse is really not ready to be a serious alternative to anything with issues like this.
> I’m disappointed by how Pixelfed managed the vulnerability. From a project with (supposedly) more than 150k monthly active users and generous funding, expect better.
Do better with what resources? Pixelfed has around <$100K in funding and ~150k "users" using it and the author expects them to do more? Clearly they cannot and are not making money. So what did the author expect? They are not Meta Platforms Inc with billions of dollars and users.
But in other news the 44th President of the United States (Barack Obama) just signed up to Bluesky. Tells you all you need to know about where the users from X are going to and it is not the fediverse.
Any actual solution to the current problems (e.g. how could community organizations, say a board game club, organize without Facebook?) has to solve the money problem first, the technical problems. Despite the cult of the start-up, starting up is easy and can be done on a shoestring and unpaid labor, it’s the sustaining that is hard —- and the people who are capable of running on a shoestring are at the mercy of Mozilla-esque vultures whose core competence is fundraising.
[1] based anywhere but San Francisco, understaffed, probably one unpaid or underpaid staff member, no administrative overhead because no administration, heck it probably costs about $500k a year to be elligible for and able to get grants
