Symfony Profiler

Security

Token

There is no security token.

Firewall

main Name

Security enabled

Stateless

Configuration

Key	Value
provider	security.user.provider.concrete.app_user_provider
context	main
entry_point	App\Security\KbinAuthenticator
user_checker	App\Security\UserChecker
access_denied_handler	(none)
access_denied_url	(none)
authenticators	[`"two_factor" "remember_me" "App\Security\KbinAuthenticator" "App\Security\FacebookAuthenticator" "App\Security\GoogleAuthenticator" "App\Security\GithubAuthenticator" "App\Security\KeycloakAuthenticator"`]

Listeners

Listener	Duration	Response
Symfony\Component\Security\Http\Firewall\ChannelListener {#723`-map: Symfony\Component\Security\Http\AccessMap {#722 …} -logger: Monolog\Logger {#783 …} -httpPort: 80 -httpsPort: 443`}	0.00 ms	(none)
Symfony\Component\Security\Http\Firewall\ContextListener {#706-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage {#1017 …} -sessionKey: "_security_main" -logger: Monolog\Logger {#783 …} -userProviders: Symfony\Component\DependencyInjection\Argument\RewindableGenerator {#705 …} -dispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …} -registered: false -trustResolver: Scheb\TwoFactorBundle\Security\Authentication\AuthenticationTrustResolver {#780 …} -sessionTrackerEnabler: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage::enableUsageTracking(): void {#703 …}}	9.34 ms	(none)
Symfony\Component\Security\Http\Firewall\AuthenticatorManagerListener {#584`-authenticatorManager: Symfony\Component\Security\Http\Authentication\AuthenticatorManager {#595 …}`}	0.00 ms	(none)
Scheb\TwoFactorBundle\Security\Http\Firewall\TwoFactorAccessListener {#582`-twoFactorFirewallConfig: Scheb\TwoFactorBundle\Security\TwoFactor\TwoFactorFirewallConfig {#842 …} -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -twoFactorAccessDecider: Scheb\TwoFactorBundle\Security\Authorization\TwoFactorAccessDecider {#581 …}`}	0.05 ms	(none)
Symfony\Component\Security\Http\Firewall\AccessListener {#579`-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -accessDecisionManager: Symfony\Component\Security\Core\Authorization\TraceableAccessDecisionManager {#937 …} -map: Symfony\Component\Security\Http\AccessMap {#722 …}`}	0.00 ms	(none)
Symfony\Component\Security\Http\Firewall\LogoutListener {#786`-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -options: [ "csrf_parameter" => "_csrf_token" "csrf_token_id" => "logout" "logout_path" => "app_logout" ] -httpUtils: Symfony\Component\Security\Http\HttpUtils {#841 …} -csrfTokenManager: Symfony\Component\Security\Csrf\CsrfTokenManager {#1015 …} -eventDispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …}`}	0.00 ms	(none)

Authenticators

No authenticators have been recorded. Check previous profiles on your authentication endpoint.

Access Decision

affirmative Strategy


"Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter"
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
"Symfony\Component\Security\Core\Authorization\Voter\ExpressionVoter"
"App\Security\Voter\EntryCommentVoter"
"App\Security\Voter\EntryVoter"
"App\Security\Voter\MagazineVoter"
"App\Security\Voter\MessageThreadVoter"
"App\Security\Voter\MessageVoter"
"App\Security\Voter\NotificationVoter"
"App\Security\Voter\OAuth2UserConsentVoter"
"App\Security\Voter\PostCommentVoter"
"App\Security\Voter\PostVoter"
"App\Security\Voter\UserVoter"

#	Voter class
1	"Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter"
2	"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
3	"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
4	"Symfony\Component\Security\Core\Authorization\Voter\ExpressionVoter"
5	"App\Security\Voter\EntryCommentVoter"
6	"App\Security\Voter\EntryVoter"
7	"App\Security\Voter\MagazineVoter"
8	"App\Security\Voter\MessageThreadVoter"
9	"App\Security\Voter\MessageVoter"
10	"App\Security\Voter\NotificationVoter"
11	"App\Security\Voter\OAuth2UserConsentVoter"
12	"App\Security\Voter\PostCommentVoter"
13	"App\Security\Voter\PostVoter"
14	"App\Security\Voter\UserVoter"

Access decision log


null
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2388
  +user: Proxies\__CG__\App\Entity\User {#1943 …}
  +magazine: App\Entity\Magazine {#266
    +icon: Proxies\__CG__\App\Entity\Image {#247 …}
    +name: "asklemmy@lemmy.ml"
    +title: "asklemmy"
    +description: """
      A loosely moderated place to ask open-ended questions\n
      \n
      **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
      \n
      If your post meets the following criteria, it’s welcome here!\n
      \n
      1. Open-ended\n
      2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
      3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
      4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
      5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
      \n
      Support alternatives:\n
      \n
      - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
      - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
      - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
      \n
      ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
      """
    +rules: null
    +subscriptionsCount: 0
    +entryCount: 580
    +entryCommentCount: 15558
    +postCount: 7
    +postCommentCount: 129
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1689748304 {#276
      date: 2023-07-19 08:31:44.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#238 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
    +entries: Doctrine\ORM\PersistentCollection {#181 …}
    +posts: Doctrine\ORM\PersistentCollection {#139 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
    +bans: Doctrine\ORM\PersistentCollection {#118 …}
    +reports: Doctrine\ORM\PersistentCollection {#104 …}
    +badges: Doctrine\ORM\PersistentCollection {#82 …}
    +logs: Doctrine\ORM\PersistentCollection {#72 …}
    +awards: Doctrine\ORM\PersistentCollection {#61 …}
    +categories: Doctrine\ORM\PersistentCollection {#1820 …}
    -id: 9
    +apId: "asklemmy@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/asklemmy"
    +apPublicUrl: "https://lemmy.ml/c/asklemmy"
    +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "asklemmy"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1689747596 {#270
      date: 2023-07-19 08:19:56.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1686889707 {#272
      date: 2023-06-16 06:28:27.0 +02:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
  +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
  +title: "Can you steal a user's identity if you gain their old domain name?"
  +url: null
  +body: """
    Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
    \n
    If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
    \n
    Have I misunderstood the role of domain names in this?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 4
  +favouriteCount: 2
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1687334854 {#2410
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1866 …}
  +votes: Doctrine\ORM\PersistentCollection {#1978 …}
  +reports: Doctrine\ORM\PersistentCollection {#1946 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
  +badges: Doctrine\ORM\PersistentCollection {#2426 …}
  +children: []
  -id: 230
  -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
  -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1687324492
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/356018"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687293992 {#1850
    date: 2023-06-20 22:46:32.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2388
  +user: Proxies\__CG__\App\Entity\User {#1943 …}
  +magazine: App\Entity\Magazine {#266
    +icon: Proxies\__CG__\App\Entity\Image {#247 …}
    +name: "asklemmy@lemmy.ml"
    +title: "asklemmy"
    +description: """
      A loosely moderated place to ask open-ended questions\n
      \n
      **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
      \n
      If your post meets the following criteria, it’s welcome here!\n
      \n
      1. Open-ended\n
      2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
      3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
      4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
      5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
      \n
      Support alternatives:\n
      \n
      - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
      - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
      - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
      \n
      ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
      """
    +rules: null
    +subscriptionsCount: 0
    +entryCount: 580
    +entryCommentCount: 15558
    +postCount: 7
    +postCommentCount: 129
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1689748304 {#276
      date: 2023-07-19 08:31:44.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#238 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
    +entries: Doctrine\ORM\PersistentCollection {#181 …}
    +posts: Doctrine\ORM\PersistentCollection {#139 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
    +bans: Doctrine\ORM\PersistentCollection {#118 …}
    +reports: Doctrine\ORM\PersistentCollection {#104 …}
    +badges: Doctrine\ORM\PersistentCollection {#82 …}
    +logs: Doctrine\ORM\PersistentCollection {#72 …}
    +awards: Doctrine\ORM\PersistentCollection {#61 …}
    +categories: Doctrine\ORM\PersistentCollection {#1820 …}
    -id: 9
    +apId: "asklemmy@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/asklemmy"
    +apPublicUrl: "https://lemmy.ml/c/asklemmy"
    +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "asklemmy"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1689747596 {#270
      date: 2023-07-19 08:19:56.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1686889707 {#272
      date: 2023-06-16 06:28:27.0 +02:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
  +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
  +title: "Can you steal a user's identity if you gain their old domain name?"
  +url: null
  +body: """
    Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
    \n
    If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
    \n
    Have I misunderstood the role of domain names in this?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 4
  +favouriteCount: 2
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1687334854 {#2410
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1866 …}
  +votes: Doctrine\ORM\PersistentCollection {#1978 …}
  +reports: Doctrine\ORM\PersistentCollection {#1946 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
  +badges: Doctrine\ORM\PersistentCollection {#2426 …}
  +children: []
  -id: 230
  -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
  -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1687324492
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/356018"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687293992 {#1850
    date: 2023-06-20 22:46:32.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2388
  +user: Proxies\__CG__\App\Entity\User {#1943 …}
  +magazine: App\Entity\Magazine {#266
    +icon: Proxies\__CG__\App\Entity\Image {#247 …}
    +name: "asklemmy@lemmy.ml"
    +title: "asklemmy"
    +description: """
      A loosely moderated place to ask open-ended questions\n
      \n
      **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
      \n
      If your post meets the following criteria, it’s welcome here!\n
      \n
      1. Open-ended\n
      2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
      3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
      4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
      5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
      \n
      Support alternatives:\n
      \n
      - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
      - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
      - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
      \n
      ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
      """
    +rules: null
    +subscriptionsCount: 0
    +entryCount: 580
    +entryCommentCount: 15558
    +postCount: 7
    +postCommentCount: 129
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1689748304 {#276
      date: 2023-07-19 08:31:44.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#238 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
    +entries: Doctrine\ORM\PersistentCollection {#181 …}
    +posts: Doctrine\ORM\PersistentCollection {#139 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
    +bans: Doctrine\ORM\PersistentCollection {#118 …}
    +reports: Doctrine\ORM\PersistentCollection {#104 …}
    +badges: Doctrine\ORM\PersistentCollection {#82 …}
    +logs: Doctrine\ORM\PersistentCollection {#72 …}
    +awards: Doctrine\ORM\PersistentCollection {#61 …}
    +categories: Doctrine\ORM\PersistentCollection {#1820 …}
    -id: 9
    +apId: "asklemmy@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/asklemmy"
    +apPublicUrl: "https://lemmy.ml/c/asklemmy"
    +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "asklemmy"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1689747596 {#270
      date: 2023-07-19 08:19:56.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1686889707 {#272
      date: 2023-06-16 06:28:27.0 +02:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
  +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
  +title: "Can you steal a user's identity if you gain their old domain name?"
  +url: null
  +body: """
    Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
    \n
    If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
    \n
    Have I misunderstood the role of domain names in this?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 4
  +favouriteCount: 2
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1687334854 {#2410
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1866 …}
  +votes: Doctrine\ORM\PersistentCollection {#1978 …}
  +reports: Doctrine\ORM\PersistentCollection {#1946 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
  +badges: Doctrine\ORM\PersistentCollection {#2426 …}
  +children: []
  -id: 230
  -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
  -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1687324492
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/356018"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687293992 {#1850
    date: 2023-06-20 22:46:32.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4036
  +user: App\Entity\User {#3984 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I imagine it works exactly like email where it is possible to inherit someone else's expired domains.\n
    \n
    Checking out the relevant specifications: [ActivityPub](https://www.w3.org/TR/activitypub/#actors) and [WebFinger](https://datatracker.ietf.org/doc/html/rfc7033#section-3.2)\n
    \n
    - Both of them identify users by URL, there is no numeric ID, UUID, or public key.\n
    - Using IDs or UUIDs would not be secure since the imposter could just copy the ID from the previous user as well as the username and domain name.\n
    - Verifying identity would necessitate the user having a public key as their unique identifier, and federated servers performing a challenge-response that requires the user to have the corresponding private key for that public key.\n
    \n
    In conclusion, it certainly seems like you could take over someone else's domain name, and I suspect that public key cryptography is the only way to avoid this.\n
    \n
    (edited to add: expired domains aren't the only attack surface here, domain takeover is also a thing, either by transferring the domain or simply changing the DNS records.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687315670 {#4045
    date: 2023-06-21 04:47:50.0 +02:00
  }
  +ip: null
  +tags: [
    "actors"
  ]
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4034 …}
  +nested: Doctrine\ORM\PersistentCollection {#4032 …}
  +votes: Doctrine\ORM\PersistentCollection {#4030 …}
  +reports: Doctrine\ORM\PersistentCollection {#4028 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3996 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4000 …}
  -id: 1687
  -bodyTs: "'/doc/html/rfc7033#section-3.2)':32 '/tr/activitypub/#actors)':27 'activitypub':24 'add':144 'also':157 'aren':147 'attack':151 'avoid':140 'certain':116 'challeng':97 'challenge-respons':96 'chang':167 'check':19 'conclus':114 'copi':62 'correspond':106 'could':60,120 'cryptographi':134 'datatracker.ietf.org':31 'datatracker.ietf.org/doc/html/rfc7033#section-3.2)':30 'dns':169 'domain':18,75,126,146,154,164 'edit':142 'either':160 'els':15,124 'email':7 'exact':5 'expir':17,145 'feder':92 'id':44,50,64 'ident':78 'identifi':36,90 'imagin':2 'impost':59 'inherit':13 'key':48,86,108,112,133 'like':6,118 'name':76,127 'necessit':80 'numer':43 'perform':94 'possibl':11 'previous':67 'privat':107 'public':47,85,111,132 'record':170 'relev':22 'requir':100 'respons':98 'secur':56 'seem':117 'server':93 'simpli':166 'sinc':57 'someon':14,123 'specif':23 'surfac':152 'suspect':130 'take':121 'takeov':155 'thing':159 'transfer':162 'uniqu':89 'url':39 'use':49 'user':37,68,82,102 'usernam':73 'uuid':45,52 'verifi':77 'way':138 'webfing':29 'well':70 'work':4 'would':53,79 'www.w3.org':26 'www.w3.org/tr/activitypub/#actors)':25"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.one/comment/347843"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687315670 {#3981
    date: 2023-06-21 04:47:50.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4036
  +user: App\Entity\User {#3984 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I imagine it works exactly like email where it is possible to inherit someone else's expired domains.\n
    \n
    Checking out the relevant specifications: [ActivityPub](https://www.w3.org/TR/activitypub/#actors) and [WebFinger](https://datatracker.ietf.org/doc/html/rfc7033#section-3.2)\n
    \n
    - Both of them identify users by URL, there is no numeric ID, UUID, or public key.\n
    - Using IDs or UUIDs would not be secure since the imposter could just copy the ID from the previous user as well as the username and domain name.\n
    - Verifying identity would necessitate the user having a public key as their unique identifier, and federated servers performing a challenge-response that requires the user to have the corresponding private key for that public key.\n
    \n
    In conclusion, it certainly seems like you could take over someone else's domain name, and I suspect that public key cryptography is the only way to avoid this.\n
    \n
    (edited to add: expired domains aren't the only attack surface here, domain takeover is also a thing, either by transferring the domain or simply changing the DNS records.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687315670 {#4045
    date: 2023-06-21 04:47:50.0 +02:00
  }
  +ip: null
  +tags: [
    "actors"
  ]
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4034 …}
  +nested: Doctrine\ORM\PersistentCollection {#4032 …}
  +votes: Doctrine\ORM\PersistentCollection {#4030 …}
  +reports: Doctrine\ORM\PersistentCollection {#4028 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3996 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4000 …}
  -id: 1687
  -bodyTs: "'/doc/html/rfc7033#section-3.2)':32 '/tr/activitypub/#actors)':27 'activitypub':24 'add':144 'also':157 'aren':147 'attack':151 'avoid':140 'certain':116 'challeng':97 'challenge-respons':96 'chang':167 'check':19 'conclus':114 'copi':62 'correspond':106 'could':60,120 'cryptographi':134 'datatracker.ietf.org':31 'datatracker.ietf.org/doc/html/rfc7033#section-3.2)':30 'dns':169 'domain':18,75,126,146,154,164 'edit':142 'either':160 'els':15,124 'email':7 'exact':5 'expir':17,145 'feder':92 'id':44,50,64 'ident':78 'identifi':36,90 'imagin':2 'impost':59 'inherit':13 'key':48,86,108,112,133 'like':6,118 'name':76,127 'necessit':80 'numer':43 'perform':94 'possibl':11 'previous':67 'privat':107 'public':47,85,111,132 'record':170 'relev':22 'requir':100 'respons':98 'secur':56 'seem':117 'server':93 'simpli':166 'sinc':57 'someon':14,123 'specif':23 'surfac':152 'suspect':130 'take':121 'takeov':155 'thing':159 'transfer':162 'uniqu':89 'url':39 'use':49 'user':37,68,82,102 'usernam':73 'uuid':45,52 'verifi':77 'way':138 'webfing':29 'well':70 'work':4 'would':53,79 'www.w3.org':26 'www.w3.org/tr/activitypub/#actors)':25"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.one/comment/347843"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687315670 {#3981
    date: 2023-06-21 04:47:50.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4036
  +user: App\Entity\User {#3984 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I imagine it works exactly like email where it is possible to inherit someone else's expired domains.\n
    \n
    Checking out the relevant specifications: [ActivityPub](https://www.w3.org/TR/activitypub/#actors) and [WebFinger](https://datatracker.ietf.org/doc/html/rfc7033#section-3.2)\n
    \n
    - Both of them identify users by URL, there is no numeric ID, UUID, or public key.\n
    - Using IDs or UUIDs would not be secure since the imposter could just copy the ID from the previous user as well as the username and domain name.\n
    - Verifying identity would necessitate the user having a public key as their unique identifier, and federated servers performing a challenge-response that requires the user to have the corresponding private key for that public key.\n
    \n
    In conclusion, it certainly seems like you could take over someone else's domain name, and I suspect that public key cryptography is the only way to avoid this.\n
    \n
    (edited to add: expired domains aren't the only attack surface here, domain takeover is also a thing, either by transferring the domain or simply changing the DNS records.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687315670 {#4045
    date: 2023-06-21 04:47:50.0 +02:00
  }
  +ip: null
  +tags: [
    "actors"
  ]
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4034 …}
  +nested: Doctrine\ORM\PersistentCollection {#4032 …}
  +votes: Doctrine\ORM\PersistentCollection {#4030 …}
  +reports: Doctrine\ORM\PersistentCollection {#4028 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3996 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4000 …}
  -id: 1687
  -bodyTs: "'/doc/html/rfc7033#section-3.2)':32 '/tr/activitypub/#actors)':27 'activitypub':24 'add':144 'also':157 'aren':147 'attack':151 'avoid':140 'certain':116 'challeng':97 'challenge-respons':96 'chang':167 'check':19 'conclus':114 'copi':62 'correspond':106 'could':60,120 'cryptographi':134 'datatracker.ietf.org':31 'datatracker.ietf.org/doc/html/rfc7033#section-3.2)':30 'dns':169 'domain':18,75,126,146,154,164 'edit':142 'either':160 'els':15,124 'email':7 'exact':5 'expir':17,145 'feder':92 'id':44,50,64 'ident':78 'identifi':36,90 'imagin':2 'impost':59 'inherit':13 'key':48,86,108,112,133 'like':6,118 'name':76,127 'necessit':80 'numer':43 'perform':94 'possibl':11 'previous':67 'privat':107 'public':47,85,111,132 'record':170 'relev':22 'requir':100 'respons':98 'secur':56 'seem':117 'server':93 'simpli':166 'sinc':57 'someon':14,123 'specif':23 'surfac':152 'suspect':130 'take':121 'takeov':155 'thing':159 'transfer':162 'uniqu':89 'url':39 'use':49 'user':37,68,82,102 'usernam':73 'uuid':45,52 'verifi':77 'way':138 'webfing':29 'well':70 'work':4 'would':53,79 'www.w3.org':26 'www.w3.org/tr/activitypub/#actors)':25"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.one/comment/347843"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687315670 {#3981
    date: 2023-06-21 04:47:50.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4068
  +user: App\Entity\User {#4057 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
    So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687456655 {#4074
    date: 2023-06-22 19:57:35.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4073 …}
  +nested: Doctrine\ORM\PersistentCollection {#4072 …}
  +votes: Doctrine\ORM\PersistentCollection {#4063 …}
  +reports: Doctrine\ORM\PersistentCollection {#4066 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
  -id: 1773
  -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391449"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294267 {#4079
    date: 2023-06-20 22:51:07.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4068
  +user: App\Entity\User {#4057 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
    So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687456655 {#4074
    date: 2023-06-22 19:57:35.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4073 …}
  +nested: Doctrine\ORM\PersistentCollection {#4072 …}
  +votes: Doctrine\ORM\PersistentCollection {#4063 …}
  +reports: Doctrine\ORM\PersistentCollection {#4066 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
  -id: 1773
  -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391449"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294267 {#4079
    date: 2023-06-20 22:51:07.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4068
  +user: App\Entity\User {#4057 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: null
  +root: null
  +body: """
    I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
    So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687456655 {#4074
    date: 2023-06-22 19:57:35.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4073 …}
  +nested: Doctrine\ORM\PersistentCollection {#4072 …}
  +votes: Doctrine\ORM\PersistentCollection {#4063 …}
  +reports: Doctrine\ORM\PersistentCollection {#4066 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
  -id: 1773
  -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391449"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294267 {#4079
    date: 2023-06-20 22:51:07.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4155
  +user: Proxies\__CG__\App\Entity\User {#4163 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4068
    +user: App\Entity\User {#4057 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: null
    +root: null
    +body: """
      I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
      So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687456655 {#4074
      date: 2023-06-22 19:57:35.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4073 …}
    +nested: Doctrine\ORM\PersistentCollection {#4072 …}
    +votes: Doctrine\ORM\PersistentCollection {#4063 …}
    +reports: Doctrine\ORM\PersistentCollection {#4066 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
    -id: 1773
    -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391449"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294267 {#4079
      date: 2023-06-20 22:51:07.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
    \n
    With that in mind, my impression is —\n
    \n
    The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
    \n
    If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
    \n
    One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
    \n
    Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
    \n
    This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687294931 {#4160
    date: 2023-06-20 23:02:11.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4166 …}
  +nested: Doctrine\ORM\PersistentCollection {#4168 …}
  +votes: Doctrine\ORM\PersistentCollection {#4164 …}
  +reports: Doctrine\ORM\PersistentCollection {#4171 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
  -id: 1774
  -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391781"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294931 {#4157
    date: 2023-06-20 23:02:11.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4155
  +user: Proxies\__CG__\App\Entity\User {#4163 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4068
    +user: App\Entity\User {#4057 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: null
    +root: null
    +body: """
      I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
      So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687456655 {#4074
      date: 2023-06-22 19:57:35.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4073 …}
    +nested: Doctrine\ORM\PersistentCollection {#4072 …}
    +votes: Doctrine\ORM\PersistentCollection {#4063 …}
    +reports: Doctrine\ORM\PersistentCollection {#4066 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
    -id: 1773
    -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391449"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294267 {#4079
      date: 2023-06-20 22:51:07.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
    \n
    With that in mind, my impression is —\n
    \n
    The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
    \n
    If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
    \n
    One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
    \n
    Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
    \n
    This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687294931 {#4160
    date: 2023-06-20 23:02:11.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4166 …}
  +nested: Doctrine\ORM\PersistentCollection {#4168 …}
  +votes: Doctrine\ORM\PersistentCollection {#4164 …}
  +reports: Doctrine\ORM\PersistentCollection {#4171 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
  -id: 1774
  -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391781"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294931 {#4157
    date: 2023-06-20 23:02:11.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4155
  +user: Proxies\__CG__\App\Entity\User {#4163 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4068
    +user: App\Entity\User {#4057 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: null
    +root: null
    +body: """
      I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
      So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687456655 {#4074
      date: 2023-06-22 19:57:35.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4073 …}
    +nested: Doctrine\ORM\PersistentCollection {#4072 …}
    +votes: Doctrine\ORM\PersistentCollection {#4063 …}
    +reports: Doctrine\ORM\PersistentCollection {#4066 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
    -id: 1773
    -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391449"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294267 {#4079
      date: 2023-06-20 22:51:07.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
    \n
    With that in mind, my impression is —\n
    \n
    The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
    \n
    If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
    \n
    One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
    \n
    Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
    \n
    This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1687294931 {#4160
    date: 2023-06-20 23:02:11.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4166 …}
  +nested: Doctrine\ORM\PersistentCollection {#4168 …}
  +votes: Doctrine\ORM\PersistentCollection {#4164 …}
  +reports: Doctrine\ORM\PersistentCollection {#4171 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
  -id: 1774
  -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/391781"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687294931 {#4157
    date: 2023-06-20 23:02:11.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4192
  +user: Proxies\__CG__\App\Entity\User {#4184 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4155
    +user: Proxies\__CG__\App\Entity\User {#4163 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: App\Entity\EntryComment {#4068
      +user: App\Entity\User {#4057 …}
      +entry: App\Entity\Entry {#2388}
      +magazine: App\Entity\Magazine {#266}
      +image: null
      +parent: null
      +root: null
      +body: """
        I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
        So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1687456655 {#4074
        date: 2023-06-22 19:57:35.0 +02:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@maggoats@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4073 …}
      +nested: Doctrine\ORM\PersistentCollection {#4072 …}
      +votes: Doctrine\ORM\PersistentCollection {#4063 …}
      +reports: Doctrine\ORM\PersistentCollection {#4066 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
      -id: 1773
      -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/391449"
      +editedAt: null
      +createdAt: DateTimeImmutable @1687294267 {#4079
        date: 2023-06-20 22:51:07.0 +02:00
      }
    }
    +root: App\Entity\EntryComment {#4068}
    +body: """
      I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
      \n
      With that in mind, my impression is —\n
      \n
      The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
      \n
      If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
      \n
      One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
      \n
      Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
      \n
      This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687294931 {#4160
      date: 2023-06-20 23:02:11.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
      "@Setarkus@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4166 …}
    +nested: Doctrine\ORM\PersistentCollection {#4168 …}
    +votes: Doctrine\ORM\PersistentCollection {#4164 …}
    +reports: Doctrine\ORM\PersistentCollection {#4171 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
    -id: 1774
    -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391781"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294931 {#4157
      date: 2023-06-20 23:02:11.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    > That is a vulnerability, albeit a small one.\n
    \n
    “Small one” is very wrong here. This is by far the largest gaping security hole in the whole specification.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687334854 {#4187
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
    "@fubo@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4182 …}
  +nested: Doctrine\ORM\PersistentCollection {#4180 …}
  +votes: Doctrine\ORM\PersistentCollection {#4178 …}
  +reports: Doctrine\ORM\PersistentCollection {#4194 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4196 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4198 …}
  -id: 1776
  -bodyTs: "'albeit':5 'far':18 'gape':21 'hole':23 'largest':20 'one':8,10 'secur':22 'small':7,9 'specif':27 'vulner':4 'whole':26 'wrong':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/835771"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687334854 {#4190
    date: 2023-06-21 10:07:34.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4192
  +user: Proxies\__CG__\App\Entity\User {#4184 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4155
    +user: Proxies\__CG__\App\Entity\User {#4163 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: App\Entity\EntryComment {#4068
      +user: App\Entity\User {#4057 …}
      +entry: App\Entity\Entry {#2388}
      +magazine: App\Entity\Magazine {#266}
      +image: null
      +parent: null
      +root: null
      +body: """
        I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
        So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1687456655 {#4074
        date: 2023-06-22 19:57:35.0 +02:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@maggoats@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4073 …}
      +nested: Doctrine\ORM\PersistentCollection {#4072 …}
      +votes: Doctrine\ORM\PersistentCollection {#4063 …}
      +reports: Doctrine\ORM\PersistentCollection {#4066 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
      -id: 1773
      -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/391449"
      +editedAt: null
      +createdAt: DateTimeImmutable @1687294267 {#4079
        date: 2023-06-20 22:51:07.0 +02:00
      }
    }
    +root: App\Entity\EntryComment {#4068}
    +body: """
      I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
      \n
      With that in mind, my impression is —\n
      \n
      The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
      \n
      If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
      \n
      One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
      \n
      Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
      \n
      This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687294931 {#4160
      date: 2023-06-20 23:02:11.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
      "@Setarkus@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4166 …}
    +nested: Doctrine\ORM\PersistentCollection {#4168 …}
    +votes: Doctrine\ORM\PersistentCollection {#4164 …}
    +reports: Doctrine\ORM\PersistentCollection {#4171 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
    -id: 1774
    -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391781"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294931 {#4157
      date: 2023-06-20 23:02:11.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    > That is a vulnerability, albeit a small one.\n
    \n
    “Small one” is very wrong here. This is by far the largest gaping security hole in the whole specification.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687334854 {#4187
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
    "@fubo@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4182 …}
  +nested: Doctrine\ORM\PersistentCollection {#4180 …}
  +votes: Doctrine\ORM\PersistentCollection {#4178 …}
  +reports: Doctrine\ORM\PersistentCollection {#4194 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4196 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4198 …}
  -id: 1776
  -bodyTs: "'albeit':5 'far':18 'gape':21 'hole':23 'largest':20 'one':8,10 'secur':22 'small':7,9 'specif':27 'vulner':4 'whole':26 'wrong':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/835771"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687334854 {#4190
    date: 2023-06-21 10:07:34.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4192
  +user: Proxies\__CG__\App\Entity\User {#4184 …}
  +entry: App\Entity\Entry {#2388
    +user: Proxies\__CG__\App\Entity\User {#1943 …}
    +magazine: App\Entity\Magazine {#266
      +icon: Proxies\__CG__\App\Entity\Image {#247 …}
      +name: "asklemmy@lemmy.ml"
      +title: "asklemmy"
      +description: """
        A loosely moderated place to ask open-ended questions\n
        \n
        **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
        \n
        If your post meets the following criteria, it’s welcome here!\n
        \n
        1. Open-ended\n
        2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
        3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
        4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
        5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
        \n
        Support alternatives:\n
        \n
        - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
        - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
        - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
        \n
        ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
        """
      +rules: null
      +subscriptionsCount: 0
      +entryCount: 580
      +entryCommentCount: 15558
      +postCount: 7
      +postCommentCount: 129
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1689748304 {#276
        date: 2023-07-19 08:31:44.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#238 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
      +entries: Doctrine\ORM\PersistentCollection {#181 …}
      +posts: Doctrine\ORM\PersistentCollection {#139 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
      +bans: Doctrine\ORM\PersistentCollection {#118 …}
      +reports: Doctrine\ORM\PersistentCollection {#104 …}
      +badges: Doctrine\ORM\PersistentCollection {#82 …}
      +logs: Doctrine\ORM\PersistentCollection {#72 …}
      +awards: Doctrine\ORM\PersistentCollection {#61 …}
      +categories: Doctrine\ORM\PersistentCollection {#1820 …}
      -id: 9
      +apId: "asklemmy@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/asklemmy"
      +apPublicUrl: "https://lemmy.ml/c/asklemmy"
      +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "asklemmy"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1689747596 {#270
        date: 2023-07-19 08:19:56.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1686889707 {#272
        date: 2023-06-16 06:28:27.0 +02:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1912 …}
    +slug: "Can-you-steal-a-user-s-identity-if-you-gain-their"
    +title: "Can you steal a user's identity if you gain their old domain name?"
    +url: null
    +body: """
      Just a random thought experiment. Let's say I have my account on a lemmy instance: `userA@mylemmy.com`. One day I decide to stop paying for the domain and move to `userA@mynewlemmy.com`, and someone else gains it and also starts up a lemmy instance.\n
      \n
      If they make their own `userA@mylemmy.com`, how do federated instances distinguish who's who?\n
      \n
      Have I misunderstood the role of domain names in this?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 4
    +favouriteCount: 2
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1687334854 {#2410
      date: 2023-06-21 10:07:34.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1866 …}
    +votes: Doctrine\ORM\PersistentCollection {#1978 …}
    +reports: Doctrine\ORM\PersistentCollection {#1946 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1971 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2443 …}
    +badges: Doctrine\ORM\PersistentCollection {#2426 …}
    +children: []
    -id: 230
    -titleTs: "'domain':13 'gain':10 'ident':7 'name':14 'old':12 'steal':3 'user':5"
    -bodyTs: "'account':12 'also':38 'day':19 'decid':21 'distinguish':54 'domain':27,64 'els':34 'experi':5 'feder':52 'gain':35 'instanc':16,43,53 'lemmi':15,42 'let':6 'make':46 'misunderstood':60 'move':29 'name':65 'one':18 'pay':24 'random':3 'role':62 'say':8 'someon':33 'start':39 'stop':23 'thought':4 'usera@mylemmy.com':17,49 'usera@mynewlemmy.com':31"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1687324492
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/356018"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687293992 {#1850
      date: 2023-06-20 22:46:32.0 +02:00
    }
  }
  +magazine: App\Entity\Magazine {#266}
  +image: null
  +parent: App\Entity\EntryComment {#4155
    +user: Proxies\__CG__\App\Entity\User {#4163 …}
    +entry: App\Entity\Entry {#2388}
    +magazine: App\Entity\Magazine {#266}
    +image: null
    +parent: App\Entity\EntryComment {#4068
      +user: App\Entity\User {#4057 …}
      +entry: App\Entity\Entry {#2388}
      +magazine: App\Entity\Magazine {#266}
      +image: null
      +parent: null
      +root: null
      +body: """
        I don't think you have to worry about that since user's data should be stored on the instance they registered on, which means that data should only be stored on those servers (I don't think that kind of data would be federated, correct me if I'm wrong).  \n
        So unless someone were to restart those servers with the same domain name and the data intact, it shouldn't happen.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1687456655 {#4074
        date: 2023-06-22 19:57:35.0 +02:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@maggoats@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4073 …}
      +nested: Doctrine\ORM\PersistentCollection {#4072 …}
      +votes: Doctrine\ORM\PersistentCollection {#4063 …}
      +reports: Doctrine\ORM\PersistentCollection {#4066 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4061 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4059 …}
      -id: 1773
      -bodyTs: "'correct':46 'data':14,27,42,67 'domain':63 'feder':45 'happen':72 'instanc':20 'intact':68 'kind':40 'm':50 'mean':25 'name':64 'regist':22 'restart':57 'server':34,59 'shouldn':70 'sinc':11 'someon':54 'store':17,31 'think':4,38 'unless':53 'user':12 'worri':8 'would':43 'wrong':51"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/391449"
      +editedAt: null
      +createdAt: DateTimeImmutable @1687294267 {#4079
        date: 2023-06-20 22:51:07.0 +02:00
      }
    }
    +root: App\Entity\EntryComment {#4068}
    +body: """
      I've only read [the ActivityPub spec](https://www.w3.org/TR/activitypub/); I haven't read the Lemmy code.\n
      \n
      With that in mind, my impression is —\n
      \n
      The new domain owner — if they set up an ActivityPub server instance (e.g. a Lemmy) and got a list of the old user's post URLs — *might* be able to delete or edit the old user's posts *stored on other instances*. That is a vulnerability, albeit a small one.\n
      \n
      If the old user was still listed as a moderator of communities hosted on other instances, the new domain owner might be able to take over that moderator role.\n
      \n
      One way to fix this would be for instances to issue a public-key cryptographic identity to each user, and distribute users' public keys to other instances. Then activities purporting to be from that user would need to be signed by that user's private key.\n
      \n
      Users' private keys would stay local to their home instance, so users don't have to do any key management themselves.\n
      \n
      This would mean that if an instance goes away (and its key material is destroyed) then nobody can ever act as any of those users again. A new user created with the same username and domain would be a distinct user for all other instances too.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1687294931 {#4160
      date: 2023-06-20 23:02:11.0 +02:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@maggoats@lemmy.world"
      "@Setarkus@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4166 …}
    +nested: Doctrine\ORM\PersistentCollection {#4168 …}
    +votes: Doctrine\ORM\PersistentCollection {#4164 …}
    +reports: Doctrine\ORM\PersistentCollection {#4171 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4173 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4175 …}
    -id: 1774
    -bodyTs: "'/tr/activitypub/);':10 'abl':53,97 'act':191 'activ':133 'activitypub':6,34 'albeit':71 'away':180 'code':17 'communiti':86 'creat':201 'cryptograph':119 'delet':55 'destroy':186 'distinct':211 'distribut':125 'domain':27,93,207 'e.g':37 'edit':57 'ever':190 'fix':107 'goe':179 'got':41 'haven':12 'home':159 'host':87 'ident':120 'impress':23 'instanc':36,66,90,112,131,160,178,216 'issu':114 'key':118,128,150,153,169,183 'lemmi':16,39 'list':43,81 'local':156 'manag':170 'materi':184 'mean':174 'might':51,95 'mind':21 'moder':84,102 'need':141 'new':26,92,199 'nobodi':188 'old':46,59,77 'one':74,104 'owner':28,94 'post':49,62 'privat':149,152 'public':117,127 'public-key':116 'purport':134 'read':4,14 'role':103 'server':35 'set':31 'sign':144 'small':73 'spec':7 'stay':155 'still':80 'store':63 'take':99 'url':50 'user':47,60,78,123,126,139,147,151,162,196,200,212 'usernam':205 've':2 'vulner':70 'way':105 'would':109,140,154,173,208 'www.w3.org':9 'www.w3.org/tr/activitypub/);':8"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/391781"
    +editedAt: null
    +createdAt: DateTimeImmutable @1687294931 {#4157
      date: 2023-06-20 23:02:11.0 +02:00
    }
  }
  +root: App\Entity\EntryComment {#4068}
  +body: """
    > That is a vulnerability, albeit a small one.\n
    \n
    “Small one” is very wrong here. This is by far the largest gaping security hole in the whole specification.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1687334854 {#4187
    date: 2023-06-21 10:07:34.0 +02:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@maggoats@lemmy.world"
    "@Setarkus@lemmy.world"
    "@fubo@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4182 …}
  +nested: Doctrine\ORM\PersistentCollection {#4180 …}
  +votes: Doctrine\ORM\PersistentCollection {#4178 …}
  +reports: Doctrine\ORM\PersistentCollection {#4194 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4196 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4198 …}
  -id: 1776
  -bodyTs: "'albeit':5 'far':18 'gape':21 'hole':23 'largest':20 'one':8,10 'secur':22 'small':7,9 'specif':27 'vulner':4 'whole':26 'wrong':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/835771"
  +editedAt: null
  +createdAt: DateTimeImmutable @1687334854 {#4190
    date: 2023-06-21 10:07:34.0 +02:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Magazine {#266
  +icon: Proxies\__CG__\App\Entity\Image {#247 …}
  +name: "asklemmy@lemmy.ml"
  +title: "asklemmy"
  +description: """
    A loosely moderated place to ask open-ended questions\n
    \n
    **[Search asklemmy](https://lemmy.ml/search?q=&type=Posts&listingType=All&communityId=8&page=1&sort=TopAll) 🔍**\n
    \n
    If your post meets the following criteria, it’s welcome here!\n
    \n
    1. Open-ended\n
    2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions\n
    3. **Not regarding using or support for Lemmy**: [context](https://lemmy.ml/post/1223478), find help in the list of support alternatives below\n
    4. Not ad nauseam inducing: please make sure it is a question that would be new to most members\n
    5. [An actual topic of discussion](https://lemmy.ml/post/1239589)\n
    \n
    Support alternatives:\n
    \n
    - [!lemmy_support@lemmy.ml](https://lemmy.ml/c/lemmy_support)\n
    - [!nostupidlemmyquestions@lemmy.dbzer0.com](https://lemmy.dbzer0.com/c/nostupidlemmyquestions)\n
    - [!selfhosted@lemmy.world](https://lemmy.world/c/selfhosted)\n
    \n
    ~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
    """
  +rules: null
  +subscriptionsCount: 0
  +entryCount: 580
  +entryCommentCount: 15558
  +postCount: 7
  +postCommentCount: 129
  +isAdult: false
  +customCss: null
  +lastActive: DateTime @1689748304 {#276
    date: 2023-07-19 08:31:44.0 +02:00
  }
  +markedForDeletionAt: null
  +tags: null
  +moderators: Doctrine\ORM\PersistentCollection {#238 …}
  +ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
  +moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
  +entries: Doctrine\ORM\PersistentCollection {#181 …}
  +posts: Doctrine\ORM\PersistentCollection {#139 …}
  +subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
  +bans: Doctrine\ORM\PersistentCollection {#118 …}
  +reports: Doctrine\ORM\PersistentCollection {#104 …}
  +badges: Doctrine\ORM\PersistentCollection {#82 …}
  +logs: Doctrine\ORM\PersistentCollection {#72 …}
  +awards: Doctrine\ORM\PersistentCollection {#61 …}
  +categories: Doctrine\ORM\PersistentCollection {#1820 …}
  -id: 9
  +apId: "asklemmy@lemmy.ml"
  +apProfileId: "https://lemmy.ml/c/asklemmy"
  +apPublicUrl: "https://lemmy.ml/c/asklemmy"
  +apFollowersUrl: "https://lemmy.ml/c/asklemmy/followers"
  +apInboxUrl: "https://lemmy.ml/inbox"
  +apDomain: "lemmy.ml"
  +apPreferredUsername: "asklemmy"
  +apDiscoverable: true
  +apManuallyApprovesFollowers: null
  +privateKey: null
  +publicKey: null
  +apFetchedAt: DateTime @1689747596 {#270
    date: 2023-07-19 08:19:56.0 +02:00
  }
  +apDeletedAt: null
  +apTimeoutAt: null
  +visibility: "visible             "
  +createdAt: DateTimeImmutable @1686889707 {#272
    date: 2023-06-16 06:28:27.0 +02:00
  }
}
"App\Security\Voter\UserVoter"

Symfony Profiler

GET https://kbin.spritesserver.nl/m/asklemmy@lemmy.ml/t/230/Can-you-steal-a-user-s-identity-if-you-gain-their

Configuration Settings

Theme

Page Width

Security

Token

Firewall

Configuration

Listeners

Authenticators

Access Decision

Access decision log