I code as a hobby, and for a living 👨‍💻

Creator of Leomard App 🐱

Join the !leomard@lemm.ee!

  • 17 Posts
  • 12 Comments
Joined 1 year ago
Cake day: June 30th, 2023
  • athlon@lemm.eetoMeta (lemm.ee)@lemm.eeNew bot rules, Lemmy 0.18.3, and a message about alternative Lemmy frontends on lemm.ee
    2·
    1 year ago

    As an author of one Lemmy front-end, I can confirm that you are potentially sharing your username and password. Unfortunately, there is no way for Lemmy front-end developers to, say, open a web socket to Lemmy instance and have you login through a web browser (which would be much prefered from security standpoint, but it is what it is).

    Furthermore, from what I see, many of such front-ends store your password, instead of just the Bearer token. Unfortunately, from what I get, there is also no way of invalidating the Bearer tokens right now, so in the event of it getting stolen - you’re f***ed.

    Now, couple of tips:

    • USE 2FA AUTHENTICATION. In the event of malicious app actually stealing your credentials, you are at least a little bit more protected by this layer.
    • Use password manager - do not use your banking password, please.
    • Only use trusted front-ends, and in the even of an app, only download versions from official sources maintained by the app author.
    • Make sure the instance you’re registered at has a valid HTTPS certificate.
  • athlon@lemm.eetoGenZedong@lemmygrad.mlMy experience with Chinese social media
    4·
    1 year ago

    Whenever I hear people saying that moon landing was staged… Just go watch 2001: Space Odyssey, it came out the year before moon landing. The physics of Space Odyssey is good, but just look at the scene of people walking on the moon - they move nothing like the real astronauts.

    Besides, if it was fake, don’t you think USSR, at the time the space rival would try to claim it, instead, you know, congratulating the USA?

Moderates