Post ASzUm0SXlRXPJiaaMS by lamp@mastodong.lol
(DIR) More posts by lamp@mastodong.lol
(DIR) Post #ASzUm0SXlRXPJiaaMS by lamp@mastodong.lol
2023-02-24T02:43:47Z
4 likes, 3 repeats
lole https://files.mastodon.social/?prefix=backups/
(DIR) Post #ASzUzUNpooVXtCod5U by lamp@mastodong.lol
2023-02-24T02:46:14Z
0 likes, 1 repeats
@bot no it's these
(DIR) Post #ASzV9E8T5B6OOSGszY by lamp@mastodong.lol
2023-02-24T02:47:58Z
4 likes, 1 repeats
@bot yes everyone'sthey expire after 7 days or whatever
(DIR) Post #ASzVF8iy79lnLeAChM by lamp@mastodong.lol
2023-02-24T02:49:02Z
3 likes, 0 repeats
@bot yes everything
(DIR) Post #ASzVMLZsix6JEuLl5s by meso@asbestos.cafe
2023-02-24T02:50:22.718742Z
1 likes, 0 repeats
@lamp @bot wait WHY THE FUCK ARE THEY PUBLIC
(DIR) Post #ASzVNwOHL9dxhagOFk by lamp@mastodong.lol
2023-02-24T02:50:37Z
1 likes, 0 repeats
@meso @bot :trolllaugh:
(DIR) Post #ASzVWBaKjPuh8xFjUG by meso@asbestos.cafe
2023-02-24T02:52:09.847537Z
0 likes, 0 repeats
@bot @lamp yeah but they're not listed anywhere like there isn't a list of all images in a fedi instance. that'd be stupid.
(DIR) Post #ASzVeoogkmHf8P5Fdg by lamp@mastodong.lol
2023-02-24T02:53:39Z
4 likes, 0 repeats
@bot likes and bookmarks too
(DIR) Post #ASzVnpSLkDYxizvnvc by meso@asbestos.cafe
2023-02-24T02:55:20.527787Z
0 likes, 0 repeats
@bot @lamp yeah exactly, but you have to design the system to list all of the media instead of just serving it and not having a list of it all. is it actually that bad??
(DIR) Post #ASzVrGzhobo008AwzY by meso@asbestos.cafe
2023-02-24T02:55:58.509923Z
1 likes, 0 repeats
@bot @lamp yeah it's this link https://files.mastodon.social/?prefix=backups/
(DIR) Post #ASzWMkm392j5L2nbiC by lamp@mastodong.lol
2023-02-24T03:01:39Z
5 likes, 0 repeats
@bot bruuu all i did was go to files.mastodon.social and there it is
(DIR) Post #ASzWZvN93HFfyOQkoy by n3n3tl@seal.cafe
2023-02-24T03:04:02.877159Z
1 likes, 0 repeats
understanding networking and understanding how the underlying software works because this is retarded at the admin level lmaoiirc there’s another controversy going on with cloudflare’s activitypub clone publishing DMs to the TL and they closed the issue reported as spam to shut people up
(DIR) Post #ASzX9Aw7B2VsNab2BM by meso@asbestos.cafe
2023-02-24T03:10:24.955604Z
1 likes, 0 repeats
@lamp @bot is this actually a security issue cuz like i dont get it why would something like this happen
(DIR) Post #ASzXEvwpogDDdCg9Mu by animeirl@shitposter.club
2023-02-24T03:11:27.269731Z
0 likes, 0 repeats
didn't infosec.exchange get btfo for this exact same issue a few weeks ago?
(DIR) Post #ASzXJMXqs4d1HM6a6i by n3n3tl@seal.cafe
2023-02-24T03:12:15.095665Z
3 likes, 0 repeats
lmao is this something specific to masto or did their instance admin put all their data on a public subdomain ayy dios mio
(DIR) Post #ASzXNsCF8LiMbQ9HIe by n3f_X@nicecrew.digital
2023-02-24T03:12:35.261904Z
1 likes, 0 repeats
lol dafuq ?
(DIR) Post #ASzXOYQC8rpXYr00sS by meso@asbestos.cafe
2023-02-24T03:13:11.718251Z
2 likes, 1 repeats
@n3n3tl @lamp @bot it's the exports, they're stored in that subdomain but like WHY is directory listing turned on what did they mean by this
(DIR) Post #ASzXSGh9zS3xk4hoFk by lamp@mastodong.lol
2023-02-24T03:13:50Z
2 likes, 0 repeats
@meso @bot @n3n3tl prob default :trolllaugh:
(DIR) Post #ASzXV5J6mpo1I9nZYm by meso@asbestos.cafe
2023-02-24T03:14:22.528171Z
1 likes, 0 repeats
@lamp @bot @n3n3tl shouldn't you... inform them? ask them?
(DIR) Post #ASzXW2oLYKqlq7rqwS by lamp@mastodong.lol
2023-02-24T03:14:30Z
2 likes, 0 repeats
@bot @meso @n3n3tl only if you export, otherwise it's only attachments which dont have any info about who posted them
(DIR) Post #ASzXXpIGmU96UmiIr2 by lamp@mastodong.lol
2023-02-24T03:14:51Z
0 likes, 0 repeats
@meso @bot @n3n3tl i did, but it's 4am and gargron is sleeping
(DIR) Post #ASzXZM2yUTMIMrHvhg by n3n3tl@seal.cafe
2023-02-24T03:15:08.964550Z
2 likes, 0 repeats
but they shelled enough out for aws ? I’m fucken dead
(DIR) Post #ASzXcvHTwpHGVqm8Uy by lamp@mastodong.lol
2023-02-24T03:15:46Z
1 likes, 0 repeats
@n3n3tl @meso @bot it's not aws it's just s3-compatible service
(DIR) Post #ASzXijAVtVbogUHecK by a1ba@suya.place
2023-02-24T03:16:50.244905Z
1 likes, 0 repeats
@lamp @Gargron pls
(DIR) Post #ASzXs1CYDZUJDbfPlI by FailurePersonified@chudbuds.lol
2023-02-24T03:18:31.450113Z
0 likes, 0 repeats
Well then you can play the game, “who isn’t a pedo?” Which is great fun lol
(DIR) Post #ASzXzCc8BVMQdo3cum by Gargron@mstdn.social
2023-02-24T03:19:39Z
1 likes, 1 repeats
@a1ba @lamp @Gargron@mastodon.social oh shit
(DIR) Post #ASzXzqbTVMbSfM3fRg by a1ba@suya.place
2023-02-24T03:19:56.008678Z
0 likes, 0 repeats
@Gargron @lamp @Gargron exactly.
(DIR) Post #ASzYIJ0scIfZzQk6s4 by lanodan@queer.hacktivis.me
2023-02-24T03:22:54.906519Z
1 likes, 0 repeats
@lamp Wait… are those user takeout archives?
(DIR) Post #ASzYILeenNfyBNMu9I by lamp@mastodong.lol
2023-02-24T03:23:13Z
1 likes, 0 repeats
@lanodan ya
(DIR) Post #ASzYPgp0UnJ9rEi5x2 by meso@asbestos.cafe
2023-02-24T03:24:36.291827Z
2 likes, 0 repeats
@bot @lamp @n3n3tl nah you just hang out with people who know about it. AWS is just a hosting company, it's generally SHIT
(DIR) Post #ASzYQjNcTB1S57Odmq by meso@asbestos.cafe
2023-02-24T03:24:46.075949Z
1 likes, 0 repeats
@bot @lamp @n3n3tl hosting company = Amazon Web Services
(DIR) Post #ASzYR92x2dwFgXvVBI by meso@asbestos.cafe
2023-02-24T03:24:51.780608Z
0 likes, 0 repeats
@bot @lamp @n3n3tl they're used pretty widely
(DIR) Post #ASzYl8sBOg6wwEQPYG by lanodan@queer.hacktivis.me
2023-02-24T03:28:02.165120Z
2 likes, 0 repeats
@lamp @bot There is stuff from 2018, so I guess they actually don't?
(DIR) Post #ASzYs8mA9lAefEwjQG by lamp@mastodong.lol
2023-02-24T03:29:42Z
0 likes, 0 repeats
@lanodan @bot some got stuck i guess; after those the oldest are few months ago.
(DIR) Post #ASzZLWnZv2u5ZFcaaO by animeirl@shitposter.club
2023-02-24T03:35:03.409993Z
1 likes, 0 repeats
https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjects.html
(DIR) Post #ASzZPJeUjuGpx8B9YO by animeirl@shitposter.club
2023-02-24T03:35:44.088071Z
1 likes, 0 repeats
just know the apis for s3 and other services. eugen is retarded so allows unauthenticated requests to list objects
(DIR) Post #ASzaQdmNUbKwcU3suG by animeirl@shitposter.club
2023-02-24T03:47:10.831523Z
3 likes, 0 repeats
knowing what to look for by knowing/working in the industry, basically. a lot of things on the web use the same underlying technology so if you know how s3 or sql or whatever works you can look for common mistakes
(DIR) Post #ASzaZx2HGbtkwswEIS by n3n3tl@seal.cafe
2023-02-24T03:48:52.308710Z
3 likes, 0 repeats
in terms you may understand better, it’s the same reason Null has been able to get away with pretending he’s competent at PHP, because the documentation for Xenforo is extensive
(DIR) Post #ASzbx6KuxAUwPPG9lA by Hoss@shitpost.cloud
2023-02-24T04:04:14.685538Z
0 likes, 0 repeats
I miss the good ol' days when you could find SQL injection and XSS vulns all over the place. It was the script kiddy golden age.