School of Fish
kiwifarms.net
- Registrado
- 17 de Mar, 2019
Now I know how Mister Metokur feels. We have our own 'Lucky Dox' now and most of us here are probably not even Irish. Now pay us.
Última edición:
Sigue el video de abajo para ver cómo instalar nuestro sitio como una aplicación web en tu pantalla de inicio.
Nota: Esta función puede no estar disponible en algunos navegadores.
It was a TOR exit node.
Better idea: just search for your user ID, visible in the user page URL like https://kiwifarms.net/members/username.id/Tip: If your name contains spaces, hit CTRL+F and put underscores where your name is, for example: GLOW IN THE DARK, becomes, glow_in_the_dark-account.txt
fucking BOO
i didn't bother using a vpn and used private trash email thats connected to everything but my actual name and was quite frequently online during the period and still im not on the list at all i feel purposefully ignored
I wonder if he'll tell us whether he uses redis or mongoDB, or something entirely different? Both known to have vulnerabilities, and both are "in-memory cache" databases. It may be time to change tech.
He specifically mentioned Redis and, I believe, that it was related to the event.
Think Null already forced a login.... I had to log back in earlier today.He does the best he can keeping this site alive on the limited resources he has - however isolation of a redis database to make it not publicly reachable is quite an oversight.
BY THE FUCKING WAY - YOUR SESSION TOKENS ARE IN THE ACCOUNT.TXT LEAKS. IF YOUR ACCOUNT ARE IN THOSE LEAKS, LOG OUT AND LOG BACK IN. NULL SHOULD FORCE LOG-OUT EVERYONE TO RESET SESSIONS.
Example of a session key (that can be used to hijack that account):
Ver archivo adjunto 931713
TL;DR: Please log out and back in to reset your session to make sure your session doesn't get hijacked.
Null did that. I've seen at least 2 people in this thread who said they had to make new accounts because they didn't remember their passwordsHe does the best he can keeping this site alive on the limited resources he has - however isolation of a redis database to make it not publicly reachable is quite an oversight.
BY THE FUCKING WAY - YOUR SESSION TOKENS ARE IN THE ACCOUNT.TXT LEAKS. IF YOUR ACCOUNT ARE IN THOSE LEAKS, LOG OUT AND LOG BACK IN. NULL SHOULD FORCE LOG-OUT EVERYONE TO RESET SESSIONS.
Example of a session key (that can be used to hijack that account):
Ver archivo adjunto 931713
TL;DR: Please log out and back in to reset your session to make sure your session doesn't get hijacked.
Null did that. I've seen at least 2 people in this thread who said they had to make new accounts because they didn't remember their passwords
Just saying.... an achievement looking like a pizza slice that just says 9-10-19 Never Forget would be dope.
Think Null already forced a login.... I had to log back in earlier today.
Based Null.
Naw, pretty sure forced login coz he did a fresh install of the forum software. Session data wouldn't be saved & imported.
Well, i'm in the list, will i get a trophy?![]()
So barely over a month apart there's a massive dox due to basic security incompetence, and a huge faildox due to yet more incompetence.
![]()