Pawb.Social General Lounge

171 readers

1 users here now

An all-purposes general community for Lemmy / Mastodon related discussions that affect (or inform) all of our community.

Rules

Pawb.Social Code of Conduct applies
Posts must be Lemmy / Mastodon related, or related to the operation of our communities

founded 1 year ago

MODERATORS

[email protected]

That darn exploit… (pawb.social)

submitted 1 year ago by [email protected] to c/[email protected]

1 comments fedilink hide all child comments

I know that taking the instance offline isn’t an easy decision but it was the right choice to make until the exploit was patched.

For those who weren’t aware, from my understanding there was an exploit with custom emoji on the Lemmy front end that allowed a malicious script to be ran, which was stealing login cookies. This started on Lemmy(dot)world.

This seemed to have been patched this morning.

From what I’ve seen it didn’t seem to propagate through federated comments but never can be too careful.

Thanks crash and admin/mod team for keeping us safe 🙂

top 1 comments

sorted by: hot top controversial new old

[–] [email protected] 2 points 1 year ago

FYI, it's mostly crashdoom, I just keep the server online in terms of hardware.

PS: if the server goes offline, I was probably nibbling wires. they're VERY tasty ^,..,^