this post was submitted on 13 Jun 2023
29 points (96.8% liked)

Technology

1928 readers
7 users here now

Rumors, happenings, and innovations in the technology sphere. If it's technological news, it probably belongs here.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

It seems like they are down for a longer time now. How will they recover? Does longer down mean they will have to do more catching up with other instances? Can I get updates somewhere?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (1 children)

Sites don't store passwords, they store password hashes. There is no reason to give any personal info you aren't comfortable giving. You can use the site just fine without posting any

[–] [email protected] 2 points 1 year ago (1 children)

Hacking an account is still a valid concern though for various reasons , and hashes can still be used against password lists. Additionally, Two factor authentication is a necessity for sure. Now don’t get me wrong, I completely understand this feature is coming and that this is a developing service but many of these concerns do seem valid to me.

[–] [email protected] 1 points 1 year ago (1 children)

Hacking an account is still a valid concern though for various reasons

Let's assume you're doing the best practice thing and using a long and unique password for each service you use.

What benefit does a hacker have hacking your lemmy-based account? Considering that everything you post is public... There's simply nothing of value that you would obtain by "hacking" an account here... The only thing I can think of is if your a moderator of a community or an admin of an instance.

I just don't see any value to it... But even then.. 2fa is slated for v0.18 which is probably coming out in the next few weeks.

[–] [email protected] 1 points 1 year ago (1 children)

Mostly thinking impersonation, spamming, deletion or modification of history…. Although I’m sure there are probably other reasons too.

[–] [email protected] 1 points 1 year ago

Impersonation - Not sure this matters unless you're a mod or admin. Spamming - Just make the accounts yourself.... it's going to be infinitely easier to just make spam accounts from nothing (since it's free anyway) than to designate resources to cracking a password. Deletion/Modification of history - modlogs allow reverting ALL changes outside of full account deletion. Full account deletion - Well that's annoying at the very least. But not like it's the end of the world or has any actual cost associated with it.

It's a lot of work to do so little actual damage. It's not like twitter where hacking Elon's account can actually lead to monetary gain.