Kjwon15 @kjwon15@mastodon.social
Kjwon15
boosted
"What makes an image NSFW, according to Yahoo[/Tumblr]?"
(CW: synthetic pseudo-nudity)
USB 3.0 should be just 3.0
USB 3.1 Gen 1? Fxxk you
I found a mastodon security bug(XSS, But not that serious)
@Gargron is streaming API dead now?
it returns 502.
Some Korean named service used "md5(incremental number)" as access token..
🤦♀️
WHY!?‽⸘
OMG I have to set this option to prevent to set my posts' language as EO because of recent patch.
(Related with CLD's problem)
Kjwon15
boosted
Kjwon15
boosted
transformation crossover...
I published an example html to reveal what's inside on tootdon's indexing server.
Try searching "qdon.space". Then you'll find toots which are over 30 days old. Yes, #tootdon lied.
And they said "You can search the latest toots for 30 days, and those older than 30 days will be automatically deleted from the server."
Then why this toot published on Jan 1 is still searchable??
@tootdon Did you worked correctly?
#tootdon said "we excluded your instance.", But existing toots are still searchable on tootdon.
Funny thing about #tootdon tos
http://tootdon.club/tos
At 9-13:
"Do not decompile, Reverse engineering, or something"
me: 😂 😮 nooo, I'll do it. Absolutely.
Every "OAuth token"????
How mad it is... I couldn't imagine this
Kjwon15
boosted
@tinker basically, it communicates with a server hosted in the US, where it sends at least:
- every public toot seen by the app
- every OAuth token of its users
Kjwon15
boosted
OK, so #tootdon communicates with this server: https://api.tootdon.ooo
This server is hosted in the USA(!!!)
There are several endpoints: /api/v1/instances gives a paginated list of instances, and seems to be the *only* one that doesn't require authentication.
There's also /api/v1/statuses and /api/v1/users. Not sure how authentication to this API works yet...
By the way, it also appears to be tied with this company: http://mobirocket.com/
Kjwon15
boosted
