Comment on Slrpnk instance is down till mid July; they might relaunch their server on piefed.
GreenKnight23@lemmy.world 3 weeks agoyes, but those frontends are typically tied closer to the backend than a public API.
things like CSRF can help block abuse of the back end.
tfm@europe.pub 3 weeks ago
Nope they all use the public API. Even the default Lemmy web client.
GreenKnight23@lemmy.world 3 weeks ago
well that’s poor planning and why bots are such a problem.
I know CSRF tokens aren’t a silver bullet, but doing nothing to stop them does nothing to stop them.
tfm@europe.pub 2 weeks ago
CSRF protection is a security feature not bot prevention. A bot would just need to get a token first.