My first month on Mastodon

I signed up for Mastodon a month ago. Ok, fine. I month minus two days. It’s been long enough that I’m relying on it now and check it more often than Twitter. This blog shows up my impressions and learnings.

I signed up for three accounts.

Overall

I’m happy with Mastodon overall. With two caveats

  1. A social network is only useful if the people you want to interact with are on there. A good percentage of the people I follow are now on Mastodon (or both Mastodon and Twitter).
  2. It took a while to get settled. Granted Twitter had a learning curve too. But it was a long time ago. (My first post was in 2009). Some of it is forgetting. Apparently, I used to use the TwitterFox browser extension. And some of it is because the unofficial apps are better than the “official app”

Signing up for Mastodon

Signing up for Mastodon isn’t particularly user friendly. First you have to pick a server. Before you know much about the service.

A server is kinda like an email provider. You get a different domain name @gmail.com, @yahoo.com, etc. You can still talk to people on other servers, just like email. But that’s where the comparison ends. You don’t get a different user interface or special email user features. So what is different by server

  1. People can learn something about you from just looking at your name. For example, fosstodon supports free and open source software.
  2. Mastodon has a local timeline to see things other people on the server posted (regardless of whether you follow them).
  3. Different servers have different moderation rules. For example, I wanted one that was ok with non-human accounts for NYJavaSIG and CodeRanch.
  4. Servers are volunteer run and can close up shop. If that happens, you have to move.
  5. Servers can be banned by other servers. (ex: one with terrible moderation)

For my personal account, I chose mastodon.social because it was one of the two main ones and I didn’t know what I was doing. I later learned that people are encouraged to do choose different ones to spread the load. I chose to not to move at this time partially because it is cool to see the big timeline while I’m getting my bearings and partially because new servers keep getting stood up and switching after things stabilize reduces hops.

For NYJavaSig, I was interested in hackyderm.io and fosstodon.org because they are tech in nature. Fosstodon seemed more open to non human accounts. For NYJavaSig, I was able to register immediately. By the time, I got to doing registring for CodeRanch, you had to fill out a form saying why you wanted an account and have someone approve it. That took about a day.

Speaking of switching, you keep your followers/followings. Your toots (like posts) don’t move as far I can tell. That’s not important to me though.

Ultimately, it isn’t that important which server you choose. It is the accounts you follow that matter. Which brings us to….

Finding people to follow

I started out finding people on twitter who posted that they moved to Mastodon. Then I followed people I saw via boosts (like retweets)

After that, I learned that Marc Hoffman created JavaBubble for the Twitter/Mastodon/GitHub handles of Java folks. Non human entities are allowed like the NYJavaSig. He has good quality control. My contribution of CodeRanch to the list got rejected because almost our all tweets are about our free book promos. (Which is fair. We should post more outside of the promo).

I didn’t import the whole list for my personal account because I want my feed to be mostly English. I did add a bunch of people from it though. And it serves as a great lookup table. I did import the whole list for CodeRanch so I can look at the feed from there if I want.

There’s also websites, described by this blog post to help automate finding folks you follow.

Buttons when tooting (posting)

There’s a few interesting buttons when creating a toot.

  • World icon – you can control the access of your posts to public, unlisted (anyone with a link), followers only and visible to only people mentioned. The later being a direct message. More on that in a minute
  • Content warning – Mastodon encourages a content warning for certain topics. Even neutral ones. Like “politics neutral”. The idea is to give people a clue what is inside and let them click if they want to see it. I like this idea. Also could be useful for tv/movie/book spoilers :).

Mac Apps

There’s no official Mac app. The browser approach isn’t bad. I like the notifications view shows you how many there are. However, I have three accounts. Two of which are on the same server. An app would let me have a better experience across the three.

First I tried Mastonaut. Switching between accounts wasn’t bad. You can have multiple columns for different timelines (home/local/federated). I didn’t like that because it auto refreshes. And the local/federated timelines are busy places. The big problem with this app is that it didn’t let me add two sites from fosstodon. So I have my personal account and two of nyjavasig. Between this two problems, I kept researching.

Next I tried Whalebird, which I like. It’s a lot like slack. You have to choose which account you want at a given moment, but it is one click. And like Slack so feels familiar. Like Slack, it has channels, you get choices of: home, notification, mention, direct messages, favourite, bookmark, local timeline (your server), public timeline (local + all accounts someone on your server follows), and search.

Remember I was going back to DMs. The apps to a good job separating them out. So even though they are “just posts”, they feel like a native concept. I’m happy with Whalebird and sticking with it. At least for now.

iOS apps

There is an official app for Mastodon for iOS.It only supports one account so not very useful to me. I then read this comparison of 8 apps. I decided to try Toot! I paid the $4 and learned that I didn’t like it. First, the sign up isn’t intuitive. You sign up as anonymous to the server and login. Ok fine, setup is one time. However, the app doesn’t show how many comments there are on a toot. I really wanted that feature so I tried Metatext.

I’m happy with Metatext so far. It is open source with the code on GitHub. It’s basically maintained by one guy. But it’s free. So I can always switch in the future if another one becomes better for my needs.

To switch between users, you hold the user icon in the top left to get the other choices. There are home/local/federated timelines on top. And search/notifications/messages on the bottom.

Verification Links

In your profile, you can enter up to four links. They give you a URL to include that includes rel=”me”. Resave your profile after adding the link to your page to show you control it and the links show up as green/verified.

You can definitely change the body of the link to something other than “Mastodon.” And I think the link it is a one time check. I deleted one of them a while ago and it is still there. For github, there is a hack to get the verification link to work.

Cross posting

I used this crossposter to have my posts automatically go from Mastodon to Twitter. (It might be closing to new users due toa 300 posts/hour across all users limitation. Details and updates here.

Paying

Mastodon is free. However, the servers are paid for with donations as this is not a for profit endeavor and there are no ads. I signed up for the $10 a month Mastodon plan (which includes mastodon.social) and $5 a month Fosstodon plan.

Both also have $8/month plans now that Twitter has set $8 as the appropriate price for social media. Mastodon’s is called “8 dollars count too” with a description of “People have asked for this tier”. Fosstodon’s is called “Elon Tier” with a description of “Forget Twitter blue and stick it to Elon by supporting Fosstodon instead/”

What don’t I like (or haven’t figured out yet)

With just under a month of experience, I don’t know yet if these are dislikes or not having found a better way yet.

  • I haven’t found a mobile app that notifies me about direct messages
  • I get a number of posts in other languages. There’s a bug on github so this one isn’t just me.

Scheduling Social Media Posts

I recently became responsible for managing the NYJavaSig social media. I’ve been using TweetDeck for scheduling Twitter posts. Today I researched scheduling Facebook and Linked In posts. Here’s what I learend

Buffer

Buffer.com was recommended to me. I like it. It is free for up to three channels/connections. There’s a limit on how many posts you can have in the queue at the same time, but it is way higher than I would need.

Once I registered, I immediately dropped the Pro trial so I could see what it would look like for me. Connecting Facebook was pretty easy. I had to sign in with Facebook to connect. It got dropped once and I reconnected. But after that, it seemed happy.

LinkedIn was tricker and I encountered two problems:

  • On the dashboard, there were buttons to connect instagram and twitter. So I though the limit of three social media channels was only those three.
  • I later learned you can click “manage social channels” and get access to your LinkedIn Account or a LinkedIn Page. However, it is not possible to schedule posts into a Group because LinkedIn has disabled that API

HootSuite

I learned about HootSuite from a linked in article about scheduling posts. I had two problems

  • HootSuite wanted permission to see my contacts. Why? This is not needed in order to post on my behalf. I didn’t want to give that.
  • It is no longer possible to schedule posts into a Group anyway because LinkedIn has disabled that API. (Yes the same problem as Buffer.)

Conclusion

I decided to split and use TweetDeck for Twitter and Buffer for Facebook. I may consolidate later. But I might not. I really like TweetDeck for Twitter!

twitter and two factor take two

In 2014, I tried to enable two factor on Twitter and had to turn it off. Given the recent news that Twitter encourages everyone to change passwords, I decided to take another stab at it. I also learned that Twitter has more options for two factor now like Google authenticator.

Step 1: Changing the password

First, I changed the password. I clicked on the drop down with my picture and chose “settings and privacy”. Then I choose password and changed it. I got an email letting me know the password changed. Good.

Step 2: Surprise step – review apps

Twitter then reminded me that I have 18 applications that can access my account and asked if I wanted to review them. 18 sounds high so I said yes. There were a few general categories:

  • Apps with read only access – given that pretty much everything on twitter is public, I don’t mind that I gave a few sites access to read my profile. I did find one that was just for a one time test and doesn’t need it anymore.
  • Piping my tweets to Facebook – yes. I definitely want this.
  • Various twitter clients – some I don’t use anymore so cleaned this up a bit as well.
  • “social reputation monitoring” – it says I gave this site read/write/direct message access in 2015.  I don’t remember this and I certainly don’t want them to have it anymore. Revoke!
  • Linked in – While I don’t mind them having read access, I don’t want them having write access. Revoke. Same with Disqus. I wasn’t nearly paranoid enough in 2013.

Now I have 13 apps with read (or read/write) access. Still a lot, but at least I know what they are. It’ll be interesting to see which of the read only ones break. “I don’t mind” is different from “I really want it to work”

Step 3: Login verification (two factor)

As I was looking for two factor, I saw “login verification” under account options. That turns out to be what Twitter is calling two factor. I guess it sounds less scary.

However “setup login verification” was disabled. It says I need to confirm my email to turn this on. Ok. So how do I do that? It appears the only way to get a confirmation email is to change your email address. It was a bunch of steps, but I did:

  1. Change to myRealEmail+twitter@gmail.com (because gmail lets you add a plus and more text and still sends to you)
  2. Enter twitter password to confirm it is me
  3. In email, click confirmation
  4. Repeat these three steps to switch back to and confirm my “short form” email. (so I remember what I gave them)

Ok time to turn on two factor with SMS

  1. In account settings, click “setup login verification”
  2. Click start
  3. Enter twitter password to confirm it is me
  4. Send SMS code
  5. Enter SMS code from phone
  6. Generate a backup code in case I ever have issues

Now I have the option to setup alternate two factor methods

  1. In account settings, click “review your login verification methods”
  2. Click “setup” next to mobile security app
  3. Use google authenticator to scan the barcode
  4. Enter the generated code from google authenticator into twitter

Finally, I clicked “edit” next to text message verification so I am just using google authenticator and not text message.

Step 4: My twitter clients

Ok. Now for the test. Can I use Twitter in the devices I care about most? Things seem to work. Will post an update if that no longer stays the case!

Updates:

  • I can still use twitter on all my devices. So I don’t get prompted to login after the password change or two factor. It only takes effect for new logins. (This is good; I have a lot of places that I am logged into twitter.)
  • I got an email from an identify monitoring service that they no longer have access to my twitter. This service only told me about my own tweets so I’m leaving them without access. I was hoping they would tell me about other people’s tweets. I know what I tweet. And as fun as it is to be told I used the word “password” in my twitter…