¿Cómo podemos ayudar?

stephen.mason.jones

stephen.mason.jones hizo un comentario, 26 de julio de 2021 17:54
Thank you for the quick reply -- I'll implement that now :) Based on your experience, would you say anything above 1:10 flags:votes would be suspicious, or should I target something lower/higher? A...
stephen.mason.jones hizo un comentario, 26 de julio de 2021 16:52
One additional question, in regards to other people creating inappropriate programs through the bot, what would be a reasonable enforcement strategy? For example, if a project was shadowbanned by t...
stephen.mason.jones hizo un comentario, 29 de mayo de 2021 18:22
This is very true. I just want to avoid accusing someone who may be completely unrelated. Until we know for sure if he even is the perpetrator I think we should assume innocence :) After all, it ...
stephen.mason.jones hizo un comentario, 29 de mayo de 2021 17:27
They do, it's just that bookmarklets have complete control since they exist outside of KA's control. All KA can do is prevent people from putting new ones in their websites.
stephen.mason.jones hizo un comentario, 29 de mayo de 2021 17:25
That post message is just to trigger a editor save, it's how twitch.ka operates. Anything inside the program is incredibly safe, it's bookmarklets that have more permissions. Evan Lewis is aware o...
stephen.mason.jones hizo un comentario, 28 de mayo de 2021 18:00
Oh! And I guess the most obvious: make sure that the bookmarklet was made by a trustworthy person (an anonymous person posting a bookmarklet is very suspicious).
stephen.mason.jones hizo un comentario, 28 de mayo de 2021 17:55
A few thoughts: 1. Unminify the code with something like js prettifier 2. If there's a string of random characters it's instantly suspicious (probably storing base 64 encoded code) 3. Anything gra...
stephen.mason.jones hizo un comentario, 28 de mayo de 2021 17:35
There isn't really any reliable way though to detect javascript adding links. There's so many ways to do it, and it can be obfuscated using changing variables and eval.
stephen.mason.jones hizo un comentario, 28 de mayo de 2021 17:12
I was also just thinking, see if you can snag the program ID from your browsing history. Otherwise it might be impossible for the devs to find the program...
stephen.mason.jones hizo un comentario, 28 de mayo de 2021 17:00
But do any of you still have the bookmarklet bookmarked? That's what most likely contains the malicious code, the program was probably more of the method of delivery.

Actividad total 49
Última actividad 9 de agosto de 2021 21:14
Miembro desde 2 de febrero de 2015 18:53

Siguiendo 0 usuarios
Lo siguen 0 usuarios
Votos 10
Suscripciones 13

Actividad total 49
Última actividad 9 de agosto de 2021 21:14
Miembro desde 2 de febrero de 2015 18:53

Siguiendo 0 usuarios
Lo siguen 0 usuarios
Votos 10
Suscripciones 13