DarrenLong, 1 year ago to memes in The machine is always broken

I feel for Americans and their broken McDonald’s ice cream machines… McFlurrys are bomb af

missphant, 1 year ago to memes in Totally listening

Just in awe at what a relic of a screenshot this is. Based on the UI this has to be 8 years old but there are no compression artifacts whatsoever.

Unforeseen, 1 year ago

A fine memeological specimen

Limeey, 1 year ago to comicstrips in Sharks are fierce predators

Exo is probably one of the best web comics on the internet right now, imo

FuglyDuck, 1 year ago (edited 1 year ago) to comicstrips in Grilboss this! Girlboss that!

I dunno. But If grilboss could make me a stack of ribs…

(Sorry that typo was too hard to pass up…)

joyjoy, 1 year ago

#grillboss

Landmammals, 1 year ago to mildlyinteresting in This 9v battery contained six cells stacked like a layer cake

I used to take apart 9v batteries to get AAAA cells for my laser pointer

technohacker, 1 year ago to asklemmy in How many tabs do you have open?

Had 300 on my laptop a while ago, finished up a project which let me drop it down to 160.

On my desktop I have 1,300 or so. Both of them on a single Firefox window with Sidebery

rckclmbr, 1 year ago

Have you used TreeStyleTab? I’m wondering how it compares with Sidebery

technohacker, 1 year ago

I started with TST actually! I can’t remember the exact reasons but I thiiink I switched over to Sidebery for better/faster session restores

pt99, 1 year ago

Finally someone who had a decent amount! Last time I checked I had 1100!

2d4_bears, 1 year ago

Wow and I thought I had a lot. I salute you.

Honytawk, 1 year ago

But why?

And how many of those can be closed?

technohacker, 1 year ago

Cuz I use them as a way to keep tabs (heh) on different projects I’m involved in. Tree tabs are much faster for me to organize into folders compared to bookmarks since they’re already part of my flow of using tabs in the first place :)

That being said, I end up using them more as a way to search through pages I had opened before, using the URL bar. Browser history is a little more finicky to search in that regard

As for how many I can close, I tend to close tabs once I’m done with something in a project (though some tabs I keep around if i find them to be useful beyond that specific project). I also have a bunch of tabs open for music and videos that I want to share with my friends when they get time which could be closed once I share them

ctag, 1 year ago

That’s a heck of a lot of tabs there. Good luck with them!

IndefiniteBen, 1 year ago to asklemmy in How many tabs do you have open?

100’s. It’s easy when using a tool like tree tabs.

I have several different ongoing projects with different avenues of research and I use it like a temporary store until I organise and store them.

ctag, 1 year ago

I should go back to tree tabs. On my old laptop I got firefox properly messed up and got rid of a lot of addons.

sour, 1 year ago (edited 1 year ago) to asklemmy in How many tabs do you have open?

4

if tab not relevant to task then am close

kratoz29, 1 year ago

What happens when you have more than 4 relevant tabs 🙃

sour, 1 year ago

am only close irrelevant ones

OhStopYellingAtMe, 1 year ago to comicstrips in Hilarious! (Only to six year olds)

My kid is 6. I’ll show this to him tomorrow to see if he thinks it’s funny.

OhStopYellingAtMe, 1 year ago

He did think it was funny.

remotelove, 1 year ago to risa in Do they ever work at all?

‽

EmpathicVagrant, 1 year ago (edited 1 year ago)

NANI‽‽

humorlessrepost, 1 year ago to risa in The Crossover No One Asked For or Remembered

Xev would bone Kirk. Spock would try to mind meld with Kai but it wouldn’t work, then they’d become besties.

ininewcrow, 1 year ago to comicstrips in They aren't boards, and they don't hover!

It took me a few minutes to figure out what your Picassoesque reindeer was. I thought it was some kind of deformed moose.

I don’t mean to be negative though … the content and writing is great … it’s just the image of the reindeer was distracting for a minute before I could look through the rest of the comic.

Dark_Arc, 1 year ago

I think it’s cute

oldGregg, 1 year ago (edited 1 year ago)

deleted_by_author

Protoknuckles, 1 year ago

I think I’m cute

BreadOven, 1 year ago

Cute, I think I am.

FrickAndMortar, 1 year ago to memes in I got covid :(

I ain’t afraid of sore throats!

jordanlund, 1 year ago to comicstrips in My Dad is Dracula (and a Jukebox)

We like… we like to party.

malloc, 1 year ago to asklemmy in What are these comments on lemmy posts?

Lemmy.world instance under attack right now. It was previously redirecting to 🍋 🎉 and the title and side bar changed to antisemitic trash.

They supposedly attributed it to a hacked admin account and was corrected. But the instance is still showing as defaced and now the page just shows it was “seized by reddit”.

Seems like there is much more going on right now and the attackers have much more than a single admin account.

Wahots, 1 year ago

Must be some boomer if they know what lemon party is, lmao. It’s been a hot minute since lemon party, one man one jar, or two girls one cup were being talked about.

Wxnzxn, 1 year ago

Linking to lemonparty and saying “seized by reddit” strikes me as the playbook of an old 4chan troll/raid, trying to instigate more drama between two places they both hate at once.

Cmot_Dibbler, 1 year ago

Lemon party… Truly the fediverse is bringing us back to the golden age of the internet.

RoundSparrow, 1 year ago

Another instance was hacked too: lemmy.blahaj.zone

malloc, 1 year ago

I just want to add a quick note:

From OPs screenshot, I noticed the JS code is attempting to extract the session cookie from the users that click on the link. If it’s successful, it attempts to exfiltrate to some server otherwise sends an empty value.

You can see the attacker/spammer obscures the url of the server using JS api as well.

May be how lemmy.world attackers have had access for a lengthy period of time. Attackers have been hijacking sessions of admins. The one compromised user opened up the flood gates.

Not a sec engineer, so maybe someone else can chime in.

Gellis12, 1 year ago

Here’s a quick bash script if anyone wants to help flood the attackers with garbage data to hopefully slow them down: while true; do curl https://zelensky.zip/save/$(echo $(hostname) $(date) | shasum | sed ‘s/.{3}$//’ | base64); sleep 1; done

Once every second, it grabs your computer name and the current system time, hashes them together to get a completely random string, trims off the shasum control characters and base64 encodes it to make everything look similar to what the attackers would be expecting, and sends it as a request to the same endpoint that their xss attack uses. It’ll run on Linux and macOS (and windows if you have a WSL vm set up!) and uses next to nothing in terms of system resources.

Kangie, 1 year ago

Try

<pre style="background-color:#ffffff;">
<span style="font-weight:bold;color:#a71d5d;">while </span><span style="color:#323232;">true</span><span style="font-weight:bold;color:#a71d5d;">; do </span><span style="color:#323232;">curl https://zelensky.zip/save/$(</span><span style="color:#62a35c;">echo </span><span style="color:#323232;">$(hostname) $(date) </span><span style="font-weight:bold;color:#a71d5d;">| </span><span style="color:#323232;">shasum </span><span style="font-weight:bold;color:#a71d5d;">| </span><span style="color:#323232;">sed </span><span style="color:#183691;">'s/.{3}$//' </span><span style="font-weight:bold;color:#a71d5d;">| </span><span style="color:#323232;">base64) </span><span style="font-weight:bold;color:#a71d5d;">></span><span style="color:#323232;"> /dev/null </span><span style="font-weight:bold;color:#a71d5d;">; </span><span style="color:#323232;">sleep 1</span><span style="font-weight:bold;color:#a71d5d;">; done
</span>

It’ll prevent you from having to see the drivel that curl returns from that site.

Gellis12, 1 year ago

Oh weird, it wasn’t returning anything a few minutes ago. I wonder if we pissed then off lol

Kangie, 1 year ago

Not sure, I wasn’t that long after you and I started getting HTML responses back from the page. Standard Russian Propaganda that doesn’t need to be repeated here - if you’ve seen the claims once you’ve seen 'em a million times!

I did take the steps of reporting this abuse to cloudflare (who they’re using for DDOS protection) and their registrar.

milicent_bystandr, 1 year ago

Why would you include your hostname in the hash? That just sounds like an invitations for a mistake to leak semi-private telemetry data.

Come to think of it… Isn’t obscured telemetry exactly what your suggestion is doing? If they get or guess your hostname by other means, then they have a nice timestamped request from you, signed with your hostname, every second

Gellis12, 1 year ago

It’s essentially to add a unique salt to each machine that’s doing this, otherwise they’d all be generating the same hash from identical timestamps. Afaik, sha hashes are still considered secure; and it’s very unlikely they’d even try to crack one. But even if they did try and were successful, there isn’t really anything nefarious they can do with your machines local name.

gandalftheBlack, 1 year ago (edited 1 year ago)

Here’s the one where it uses epoch time (better randomization) and also hides the output of curl

<pre style="background-color:#ffffff;">
<span style="color:#323232;">while true; do curl https://zelensky.zip/save/$(echo $(hostname) $(date +%s) | shasum | sed 's/.{3}$//' | base64) &> /dev/null ; echo "done."; done
</span><span style="color:#323232;">
</span>