@galaxis this fixes the cause of the issue, but doesn't do cleanup of the actual problem :<

@riking @rey True, though on the other hand the "start making it right" issue seems to be in the early stages of starting (and may well need some kind of protocol extension and collaboration between the various implementations).

I'm not going to hold my breath.

@penguin42 yes, absolutely

ultimately, i think the fix for this will be to directly address every recipient of a followers-only post (so that if you have 500 followers across 50 instances, it generates 500 direct posts, instead of just fanning out to 50 posts), but this is above my pay grade

@rey @penguin42 there is no much incentive for mischievous instances to do that. They'll only get the followers-only toot if they have a legitimate follower or mentioned person there. The issue here is that if there are legit followers and “former followers” on an instance, both sets will see the message, but the bug doesn't widen the set of instances receiving the message. A mischievous instance would just ignore the privacy altogether, and directly mentioning the instance wouldn't help.

Directly addressing followers would definitely help with accidental de-synchronization issues like this, though. However it's not fully backwards-compatible with Mastodon (there are many cases where such a message would be interpreted as a DM instead of a followers-only message, which has widely different UX), and would be much more expensive.

@rey I guess this fixes it where you trust the case where you trust admins but not individual users

@penguin42 there is implicit trust of the admins, since there are much easier ways to see private messages when you have root :)