What are the cybersecurity weaknesses of the Fediverse?

Asklemmy@lemmy.ml – 127 points – 1 years ago

Most of us are Reddit refugees, and probably clicking more random links than we ever did before on websites we've never seen before. This whole experience feels like the old internet, but also throws up insane red flags with a modern internet perspective. What are the cybersecurity weaknesses we should all be looking for, and what are the best practices?

Here's my reason for posting this. As I search for new communities across instances to follow, I sometimes end up clicking a link and I'm no longer logged in. In the corner, that could be a Sign In link or it could be phishing. It's likely due to me not understanding how to properly navigate this system, but there's nothing stopping someone from setting up a sight like this as far as I know.

Thoughts?

You are viewing a single comment

View all comments Show the parent comment

I won't get tired of posting this everywhere it applies :D

I made this userscript, which rewrites all links everywhere (not only on Lemmy) to always point to your home instance. So the link in your comment actually looks like this to me:

i.e. even though you tried to link to your instance, my script rewrote your link back to my instance so it's working fine :D

But of course I can still hover over the icon to see how your link originally looked:

I Have to say that @Azzu@lemm.ee 's script is fantastic. I've been using for a few days now (I have another bug report for you@Azzu@lemm.ee )

Would be nice if third party apps implemented that functionality.

Or if there were bots that automatically identify those external links and reply to them with a link to the community/post in other popular instances.

That is very useful! Installed!

This is great, and would make for a super useful Firefox extension.

Why would or should this be a Firefox extension when it already runs perfectly well on Firefox?

I guess I've never run scripts in Firefox.

As soon as you've installed your preferred user script extension like Violentmonkey it's as simple as installing addons, you just click the "install" link on the script's page.

There are lots of different useful ones.

I'm curious, is there an advantage of running a script over an add-on? Like is it faster or takes less resources? Or did you just happen to code it like that? Not complaining though, it's been working great for me so far.

The advantage is I don't have to learn how to build an addon. It just runs code which I already can write. There's also the advantage that any browser can run JavaScript. Idk if any browser can run Firefox (or whatever) extensions.