Comment

Comment on YSK: If you set up a Lemmy instance, and follow the Docker setup instructions to the letter, it will send lemmy.ml your admin password during the setup process

<- View Parent

lorty@lemmy.ml ⁨3⁩ ⁨months⁩ ago

Why are you assuming malice when this is probably just a mistake/oversight?

source

Sort:hotnew top

socsa@piefed.social ⁨3⁩ ⁨months⁩ ago
Because of the way Dessalines and Nutomic consistently act?

Watch. They won't apologize or admit wrongdoing here. They never do.

source
- eugenevdebs@lemmy.dbzer0.com ⁨3⁩ ⁨months⁩ ago
  They did patch it just now.
  
  source
- InternetCitizen2@lemmy.world ⁨3⁩ ⁨months⁩ ago
  I wonder what their answer for this will be in the coming days.
  
  source
  - TachyonTele@piefed.social ⁨3⁩ ⁨months⁩ ago
    Everyone here will be ml banned for five months.
    
    source
    SatansMaggotyCumFart@piefed.world ⁨3⁩ ⁨months⁩ ago
    And nothing of value would be lost.
    
    source
    InternetCitizen2@lemmy.world ⁨3⁩ ⁨months⁩ ago
    Just the normal entropy of things
    
    source
  - lorty@lemmy.ml ⁨3⁩ ⁨months⁩ ago
    They fixed it.
    
    source
Semi_Hemi_Demigod@lemmy.world ⁨3⁩ ⁨months⁩ ago
Because “when someone shows you who they are, believe them the first time .”

source
- lorty@lemmy.ml ⁨3⁩ ⁨months⁩ ago
  All I see here is a mistake. If that’s unforgivable to you then so be it.
  
  source
  - Semi_Hemi_Demigod@lemmy.world ⁨3⁩ ⁨months⁩ ago
    If it wasn’t .ml I would not assume malice
    
    source
    Miaou@jlai.lu ⁨3⁩ ⁨months⁩ ago
    Lol you’re on .world, what are you on about
    
    source
    -> View More Comments
    Saleh@feddit.org ⁨3⁩ ⁨months⁩ ago
    As someone pointed out, as the admin of .ml is also the main lemmy developer, he could have obscured something like this way better in the code directly.
    
    source
DeathByBigSad@sh.itjust.works ⁨3⁩ ⁨months⁩ ago
[deleted]
source
- Redjard@lemmy.dbzer0.com ⁨3⁩ ⁨months⁩ ago
  This issue here is very different to the xz backdoor.
  The xz backdoor was well obfuscated, planned out, and inserted by another actor.
  
  This here is easy to notice, can reasonably be explained as a mistake, and can only benefit the og main devs of lemmy.
  
  A “huh this is odd, also change yalls admin passwords” is appropriate here. Even if we got further indication it was malicious, it would still be far less crazy than the xz backdoor.
  
  source
- InternetCitizen2@lemmy.world ⁨3⁩ ⁨months⁩ ago
  Both a strength and weakness of FOSS. There is also the solar winds hack for a proprietary analog in case anyone is curious.
  
  source
cm0002@lemmy.world ⁨3⁩ ⁨months⁩ ago
Uh huh, just like how the instance/user block being horribly implemented to where it’s just a barely functional mute is just a (4 year) “oversight”

lemmy.world/post/29072279

source