tryagain@lemmy.ml to lemmy.ml meta@lemmy.ml · 1 year agoI'm going to assume the admins here all have 2FA on their accounts, right?message-squaremessage-square26fedilinkarrow-up157arrow-down12file-text
arrow-up155arrow-down1message-squareI'm going to assume the admins here all have 2FA on their accounts, right?tryagain@lemmy.ml to lemmy.ml meta@lemmy.ml · 1 year agomessage-square26fedilinkfile-text
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up11arrow-down1·1 year agoYeap, that is the first thing you do for any privileged account.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up8·1 year agoIt doesn’t matter if they are directly stealing cookies though.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up4·1 year agoHmm, that is the reason you should have addons in your browser to prevent XSS, like uBlock.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up4·1 year agouBlock prevents XSS? I didn’t know that.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up3·1 year agoIt blocks bunch of JS from being executed, and if it detects XSS, it gives you a popup to inform you.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up8·1 year agoAre you thinking of NoScript? That’s what gives me the XSS popups.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up3·1 year agoAh, you are correct, My coffee hasn’t kicked in yet.
Yeap, that is the first thing you do for any privileged account.
It doesn’t matter if they are directly stealing cookies though.
Hmm, that is the reason you should have addons in your browser to prevent XSS, like uBlock.
uBlock prevents XSS? I didn’t know that.
It blocks bunch of JS from being executed, and if it detects XSS, it gives you a popup to inform you.
Are you thinking of NoScript? That’s what gives me the XSS popups.
Ah, you are correct, My coffee hasn’t kicked in yet.