Recent comments in /f/meta
hollyhoppet wrote
Reply to comment by emma in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
yeah, for real
hollyhoppet wrote
Reply to comment by flabberghaster in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
ok
emma wrote
Reply to comment by hollyhoppet in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
in a just world, one would be paid a living wage for sitting in an office and hitting the "update postmill" button all day
emma wrote
Reply to comment by flabberghaster in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
please add your -----BEGIN PGP SIGNED MESSAGE----- block so i can just assume your messages belong to you without actually verifying this
flabberghaster OP wrote
Reply to comment by hollyhoppet in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
I'm gonna cryptographically sign all my posts.
hollyhoppet admin wrote
Reply to Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
i wouldn't say it's a security risk as it isn't really a vector for acquiring another user's personally identifiable information, but it isn't really the best thing. if we were a larger site i'd be more concerned about it but it's something i keep an eye out for.
that said even if mods were prevented from editing others' posts i can still edit the database so there still needs to be some trust when using a site like this. not that i'd ever want to do that unless something was broken from a technical standpoint ew. i'm not interested in being a bad person. it is important to think about when you use sites run by someone who isn't you though (read: corporations).
hollyhoppet wrote
Reply to comment by emma in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
it was hard to upgrade last time i tried due to some edits i had to make to make things work on heroku
BUT... i have between christmas and new years off and was planning on giving it a go again then
flabberghaster OP wrote
Reply to comment by twovests in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
There should be a way to mark a post as being the cause of a ban without editing it.
I was thinking the use case would be like, if someone doxxed someone it could be scrubbed for example. But if it did get edited by a mod it should be marked as such. Iunno.
twovests wrote
Reply to Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
So, we have moderation logs, but AFAIK they don't mark edits. This is good for, say, scouring the site of spam links or porn posts or whatnot.
For the health of a larger site run by postmill, I'd say it's definitely bad. Forum mods should not be able to edit someones post. Admins would have the power but probably shouldn't.
Not to be a "muh freeze peach" chud, but I think it's plainly icky for mods and admins to edit posts, even in jest. The only exceptions I could see are syntactically-clear mod edits, a-la "USER WAS BANNED FOR THIS POST".
flabberghaster OP wrote
Reply to comment by emma in Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
We value our traditions, don't erase our culture.
emma wrote
Reply to Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
no longer allowed in later postmill versions, btw. imagine the advancements of society if this website ran a postmill version that wasn't from 2018
twovests OP wrote (edited )
edit: fuck
Dogmantra wrote
clever trap!
flabberghaster OP wrote
Reply to Can't post a comment that's just a "🤗" by flabberghaster
🤗
hollyhoppet wrote
Reply to comment by hollyhoppet in Can't post a comment that's just a "🤗" by flabberghaster
zero width joiner claims another sanitizer 😏
hollyhoppet wrote
Reply to Can't post a comment that's just a "🤗" by flabberghaster
🤗
flabberghaster OP wrote
Reply to comment by emma in Can't post a comment that's just a "🤗" by flabberghaster
Yeah I sort of figured it had to do with sanitizing inputs not recognizing some emojis. Input sanitizers hate joy.
cute_spider_ni_srsly wrote
Reply to comment by cute_spider_ni_srsly in Can't post a comment that's just a "🤗" by flabberghaster
omg that actually worked.
I did 🤗&nb sp; (without the space between the b and s)
<br/><br/><br/><br/>do other html things work here?
cute_spider_ni_srsly wrote
Reply to Can't post a comment that's just a "🤗" by flabberghaster
🤗
emma wrote (edited )
Reply to Can't post a comment that's just a "🤗" by flabberghaster
Well, you see, 🤗 is a joyful emoji, but Postmill is a miserable piece of software which sees no joy in this world.
Also, https://3v4l.org/DE9dM
hollyhoppet wrote
devtesla OP wrote
Reply to comment by hollyhoppet in SPAMB by devtesla
I made screenshots if you want
cute_spider_ni_srsly wrote
Reply to Does it seem like a security risk to have mods be able to edit other people's posts? by flabberghaster
dear admins,
please write this post for me
just replace all this with something you'd think I'd say
thanks