Word of caution, if you have been browsing successfully until now, it could be a malicious javascript app or malware loaded from that website that is attempting to scan your network or do other things. In other words if this is a new firewall request above and beyond the standard one librewolf needs to function, proceed with cation.
Have you really never heard of malware from JavaScript? Buffer overflows and sandbox escapes are almost all JavaScript, still, hasn’t changed in the last decade. Sometimes it’s a random font parser library or something, but almost always it’s JavaScript. And now that browsers are auto-updating and they have fully staffed security teams behind them that get word of a vulnerability being secretly exploited before the general public, most people don’t get hit just because they browsed to a random website. But it’s still possible, and especially likely that a shady torrent site could be hosting malware or get ““hacked””.
Malicious javascript seeks to bypass security controls. It’s one of the reasons NoScript is a thing. It could be a malware loaded from an ad. Biggest reason for adblockers imo.
Check out this link for learning about this stuff.
I’ve read that article. It is complete garbage and doesn’t explain anything at all. It’s just standard cookie cutter fear mongering to sell some random antivirus software.
That article is for lay-persons and really an awareness article I surmise. If you’re technical you are likely already aware of the security concerns with jacascript.
That’s what I’m thinking, it happened when i tried to load their streaming player for the first time which historically have pop unders on streaming websites
Seems as safe as mostly any public torrent site to me. Use ublock and it should be fine, provided you aren’t downloading and running a random .exe labelled as Avatar 3 or something
Assuming you’ve gotten LibreWolf from a proper, verified source (GitHub, package manager like chocolatey), then there shouldn’t be any issues.
But, to be on the safe side, check out your extensions and also plugins to verify nothing untowards has snuck it’s way on to your system.
You could of course go into the Windows firewall, note what permissions LibreWolf has, then allow it and check again to see what was added.
But, chances are, LibreWolf (don’t use it myself) asked to access either magnet links or other ports other than 443 or 80. If LibreWolf has built-in torrent support or you’ve installed an extension that does, it will require some other ports to function.
It’s a firewall access prompt. In true MS fashion it won’t tell you what ports it is opening.
So by accepting you’re not giving the app any permissions like say read-write permission or administrative access, but if the app should have access to a port on the network.
Standard ports for the web are 443 (HTTPS, TCP) and 80 (HTTP, TCP). Torrents use other ports and a combination of TCP and UDP packets.
Search for “firewall” in the start menu. The firewall manager shows you all the ports an IPs that are allowed or blocked, along with ports and protocols.
Just block JS by default using uBlock origin. Install mpv with youtube-dl and feed YouTube URLs into mpv. No need for a separate extension to avoid the morons commenting on YouTube.
When you’re on YouTube/piped it automatically embeds the comments under the description. I think it’s obvious why that’s better than manually searching all of lemmy for each thread that has the same link
I just had a peek at the source code of the plug-in. It’s basically already setup to add another service like Lemmy, as it supports Nebula and one other service with the same codebase.
I think it would almost trivial to add Lemmy. I may look into doing it if i get bored and have the time, but not sure when that would be. Have you contacted the git maintainer for that plug-in and asked him to add Lemmy support? He could do it much quicker since he’s already familiar with the code and from what I saw, it would be about 30-60 minutes worth of work for someone familiar with the codebase already. I may be grossly underestimating that since I did not do an in depth dive, but from what I can tell it would be pretty simple.
What I would do is:
Add a new variable that lets you configure what Lemmy instance you want to point to
Copy the objects from reddit to a new lemmy object.
Adjust the URL and /r/ to /c/
Might have to fiddle with the User view code a bit
But other than that, everything else code wise should be a drop in replacement from what I can tell.
Its not working on a project “for me” or “for nothing” its for the lemmy/fediverse community as a whole. Like every other lemmy open source extension, most clients, lemmy itself.
merv.news
Hot