Submissions

Comments

9

emma wrote

Pretty good incentive for universal healthcare imo.

3

emma wrote

D I A L E C T I C A L
I                   A
A                   C
L                   I
E                   T
C                   C
T                   E
I                   L
C                   A
A                   I
L A C I T C E L A I D
2

emma wrote

There's also the issue of external resources which can track users. Also, some browsers apparently allow for scripting within CSS.

We could use half-assed measures like checking for the presence of URLs/dangerous properties in the CSS code, but honestly I'd sleep better at night if we had a proper CSS parser and allowed things on a whitelist-basis.

4

emma wrote

We plan to implement custom CSS once we figure out how to do this safely. This will allow complete control over the colour scheme, fonts, many aspects of the layout, etc.

Custom HTML is a no. All the HTML code lives in templates, and user-submitted templates would be capable of doing some truly malicious stuff (e.g. crashing the server, possible account takeovers) using the objects they have access to. Even with the sandbox mechanism of our templating engine, it would still be risky, and with too little benefit to justify it.

Edit: spelling

3

emma wrote

There was no danger of XSS. However, changes were persisted to the database when they shouldn't have been, which is a bug.

2

emma wrote

I've set up a hidden service now. The link is in the sidebar.

3

emma wrote

There used to be an Android app which was little more than raddit.me being loaded inside a browser widget. I'm unsure if it still works.

Neither of those GitHub accounts are related to us.

2

emma wrote

It might be necessary to clear cache for it to work, sorry.

In any case, this is how it's supposed to look.

2

emma wrote

This should be fixed now. Please let me know if there are more issues.

3

emma wrote

The problem with this idea is that it wouldn't really be a hidden service, since both the normal site and the .onion would be hosted using the same infrastructure. If one went down, so would the other.

Is there any benefit to running .onions for not-really-hidden services that I'm not aware of?

2

emma wrote

FYI, if the video doesn't load, it's because CBS somehow reached the conclusion that blocking some countries from viewing its trailers is a good marketing strategy.

4

emma wrote

I've finally added night mode, but it's unfinished and ugly. Go to User Settings to enable it.

I'd really appreciate if someone better at design than me would step up and take care of making it look good.

4

emma wrote

Lawyers will always say the most fucked up shit in efforts to swing public opinion in favour of their clients. I'm unsure if this devotion to the cause of their clients should be considered admirable, or if we should condemn lawyers for being powerful, blood-sucking leeches who shit on vulnerable people.

2

emma wrote

I just changed things around. Hopefully this is good for now, I'm personally not very happy with it.

5

emma wrote

Gender abolishment is cool. Critique of gender is cool. Denying that transgender and/or non-binary people exist, or perpetuating harmful stereotypes about them, will not be tolerated.

3

emma wrote

I'd like to see this guy get hit by ransomware, then get hit by a Tomahawk missile before deciding which one is worse. This is full liberalism.

3

emma wrote

I plan to add this as a user preference. It'll be disabled by default, both because that's the default behaviour of clicking links in a web browser, and because it'll be more familiar to people coming from reddit. I also want to make this a per-device setting, since tabs could be preferable when you're on desktop, but not when you're on mobile.

Thoughts?

2

emma wrote

The solution I propose is to make only the 25 latest submissions/comments available on the profile page. This would allow mods to quickly determine if someone is a troublemaker, whilst better preserving privacy.

Thoughts?

emma is a moderator on: