Media
- Tweets
- Tweets & replies
- Media, current page.
-
"A murderous system is being created before our very eyes" https://www.republik.ch/2020/01/31/nils-melzer-about-wikileaks-founder-julian-assange …pic.twitter.com/vPPbifJtsk
Show this thread -
An article discussed on HN's front page (https://news.ycombinator.com/item?id=21604825 …) has the following footnote (see pic). Browsers have their own DNS cache, and extensions can create their own cache so as to avoid having to DNS-lookup every network request. The statement ignores this fact.pic.twitter.com/HdfZkfztQu
Show this thread -
Adblock (from BetaFish) is also be affected: it's using the ABP filtering engine code and enforce Eyeo's "Acceptable Ads" -- which I guess makes "X-Adblock-Key" a requirement.pic.twitter.com/c9Jikixz0A
-
I don't see the site being broken with EasyPrivacy enabled. Requests to `report-uri .com` were not blocked, except for only one because of the filter `ga.min.js`.pic.twitter.com/VoL1y0JRIO
-
As per GitHub, Adblocker Ultimate is from "Secure Download Ltd". I found a Bulgaria commercial registry for that company: https://papagal.bg/eik/202448602/f749 … (Google-translated in pic)pic.twitter.com/80jdcyIg2R
Show this thread -
Activity in issue tracker -- Adguard left, AdBlocker Ultimate right. (AdBlocker Ultimate's activity fits in one pic)pic.twitter.com/58ZDHMvXEJ
Show this thread -
First page of commit history -- Adguard left, AdBlocker Ultimate right. (AdBlocker Ultimate's history fits in one pic)pic.twitter.com/pcAwYhv4bX
Show this thread -
Overview of commit history -- Adguard left, AdBlocker Ultimate right.pic.twitter.com/qanhSieiQ9
Show this thread -
So a week ago or maybe more I filed an issue at https://github.com/mozilla/addons-server/issues … about their policy of forbidding 'unsafe-eval' on AMO not being enforced, along with those extensions as example. The issue disappeared and I haven't heard a word about this. The extensions are still there.pic.twitter.com/KzOOzmSftJ
Show this thread -
I reported this one and others weeks ago because of remote code execution ability, using the "Report this add-on for abuse" button. The extensions are still there. https://twitter.com/kingslyj/status/1165536089517330432 …pic.twitter.com/y4iiXj8P1F
Show this thread -
It's a rip-off of an old AdBlock version. Removed: GPL license/copyright notices. Added: permissions for explicit remote code execution in extension context and ability to modify proxy settings.pic.twitter.com/pdi2mzzpgV
-
Authors who nurture the confusion with such mistake highlighting lack of basic research get a share of the blame when users are fooled into installing the sleazy AdBlock-owned "uBlock":pic.twitter.com/dTkAt1zsUm
Show this thread -
Serious mistake in your article
@maxwillens: https://digiday.com/media/just-four-dudes-inside-easylist-community-run-adblocking-list-disrupting-internet/ … You confused "uBlock Origin" (w/ more than 15 millions active users) with AdBlock-owned "uBlock", despite the prominent warning to dispel confusion. See https://twitter.com/gorhill/status/1019975271443771392 …pic.twitter.com/4lXsMJQLSj
Show this thread -
Nowadays it's best to presume the world wide web is highly hostile to users, and installing a *trusted* content blocker is the best mitigation.pic.twitter.com/iK78ODisqJ
Show this thread -
Meanwhile, ignoring the more important issue of remote code execution in extension context opens the door to dubious advice. Don't be fooled: it's possible to have more trust in an extension than the browser on which it runs, or the websites which you visit.pic.twitter.com/EbpnZjLvu0
Show this thread -
So something is not being said in this article and the report makes no mention of this either: For an extension to be able to execute remote code in their own context, they need to explicitly declare `unsafe-eval` in their manifest.json.pic.twitter.com/7DCo8yADTg
Show this thread
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.