cross-posted from: https://lemmy.ml/post/1895271
FYI!!! In case you start getting re-directed to porn sites.
Maybe the admin got hacked?
edit: lemmy.blahaj.zone has also been hacked.
Looks like we are safe, based on this post. We don’t have any custom emojis.
It’s kinda neat that we’re all still on lemmy discussing a downed node, of sorts.
Because fediverse.
I also think there are plans to federate users and user ids. So it would be cool for all the people on lemmy.world and blajah.zone to just go to another server and comment with their account. But, that’s for a future version of activitypub.
does that also include subscriptions or just settings? i havent changed many settings yet but i made a new account (this one) and i want to move all my subscription over
you say which (source) instance you want to download from and provide the login information for it. then you do the same with the destination. I recomend to also change the password of both afterwards just to be safe. It “syncs” subbscription, settings and blocked user/instance (communities)
Is this how nomadic identities would work? That would probably get me to use other fediverse services like Mastodon and Pixelfed. One account to rule them all. I’d probably even selfhost it.
Or the flip side, for the hacking of Lemmy world to expose the data of every user of every other instance.
That’s false. Only public info like posts,comments, upvotes etc.
If it was the case, everyone could make their own instance and get lots of sensitive data, which is an huge security breach.
No? All data of users on other instances is considered public.
Brand spankin new to the fediverse, and yeah this is pretty rad to still be able to access content even with a DDOS or whatever the fuck this is. Also… “Lemonparty”??? What’s next Rage Comics, mfw, Forever Alone?
That is neat.
But also hundreds of inexperienced admins running the same exact software with an HTML injection vulnerability is not so neat. https://sopuli.xyz/post/1180773
this exploit seems to have spread to lemmy.blahaj.zone too
Related: https://github.com/LemmyNet/lemmy-ui/issues/1895
https://github.com/LemmyNet/lemmy-ui/issues/1252
Makes me wonder how well fediverse handles vulnerabilities. I don’t think there is a hotline channel that would report vulnerabilities and fixes to instances in a coordinated fashion and I doubt every instance fixes these things ever.
deleted by creator