[ home ] [ qa2 / q / soicuck / vip2 / weab / hrp / ] [ login / overboard / rules / faq / flags / bans / pph ] [ updates / booru / legacy / bunker ]

/q/ - TRR Meta

Name
Email
Subject
Comment
Verification
Flag
File
Embed
Password (For file deletion.)

File: 1727552678695.jpg (41.88 KB, 653x564, 437 - fly pepe.jpg)ImgOps Yandex

 No.672[Reply]

There's a very important vulnerability I'd like to report about the Trumpflare Captcha.

One thing I've noticed is that the letters that are used are very easily to manipulate. By malforming the GET request's "extra" parameter, I can make it only return the numbers "1488", the letter "q", or anything of that sort. Here's an example:

>A soicuck makes the captcha only return the letter "ö"
>Thus, every single captcha will have the result "ööööö"
>Captcha is bypassed and the soicuck will now spam /qa2/

My solution to this, is to stop any sort of tampering with the parameters. The default Captcha letters are "abcdefghijklmnopqrstuvwxyz", and every time a request is sent to the captcha entrypoint, compare the extras parameter from the request and the string "abcdefghijklmnopqrstuvwxyz".

 No.673

informative

 No.681

well, this isnt really a problem, as it wont let you submit

 No.682

You should test a vulnerability next time before assuming it

 No.683

File: 1727632714791.png (16.54 KB, 735x208, 1703250588757.png)ImgOps Yandex

kek, its keyed


File: 1720229767583.png (134.49 KB, 550x535, 1612796623935.png)ImgOps Yandex

 No.272[Reply]

filter g*g back to kek
53 posts and 1 image reply omitted. Click reply to view.

 No.482

geek

 No.521

Test soy

 No.637

KEEEEEEEEEEEEEEEKGGGGGGG

 No.638

>>637
fix this

 No.639

>>638
whats the issue?


File: 1726527079359.png (320.1 KB, 798x697, pepe hyperlink.png)ImgOps Yandex

 No.621[Reply]

move some of the older threads on /qa2/ to another board or something, I know having infinite pages helps stop shareblue raiders but the catalog freezes sometimes when I open it.

 No.622

never open the catalog
i removed the catalog link at the top to discourage people from opening it


File: 1726110568572.png (102.16 KB, 594x594, 1712922207506892.png)ImgOps Yandex

 No.609[Reply]

Add /hrp/ back to the homepage.

 No.610

File: 1726111924257.jpg (35.77 KB, 716x624, 1720904803411.jpg)ImgOps Yandex

its on the top bar now


File: 1726089699039.jpg (114.8 KB, 978x1094, 1712549220246.jpg)ImgOps Yandex

 No.607[Reply]

deleted /blog/ cause its dead
>archive
https://files.catbox.moe/gh299d.zip

File: 1725831243153.png (663.1 KB, 978x1094, IMG_4198.png)ImgOps Yandex

 No.604[Reply]

The nusoiretards already forgot about the thread that we absolutely BFTO’d and are spamming froal elsewhere

 No.605

Unlocked.


File: 1725144540242.png (81.8 KB, 240x240, pepe-apu-turning-into-schi….png)ImgOps Yandex

 No.576[Reply]

I deleted my pepe stash a long time ago and I am too lazy to go find pepes

 No.577

https://booru.theribbitrally.org

 No.579

>>577
Thx fren


File: 1724965897159.png (535.87 KB, 1000x871, ClipboardImage.png)ImgOps Yandex

 No.565[Reply]

when will you add a flag that matches the country from your IP like that other soicuck website

 No.566

you mean geolocation?

 No.568

I dont have any plans to add one, cause a proxy/vpn is encouraged


File: 1723299306665.png (33.84 KB, 158x199, ngqmo4.png)ImgOps Yandex

 No.524[Reply]

Considering the fact that the internet is now heavily censored and drops happen by the minute, we need to be ready for any bullshit takedown campaigns.
Example: Encyclopedia Dramatica frequently switches domains due to excessive email spam from jews.

Let's take it from Kiwi Farms, who almost got booted off THEIR OWN IP ADDRESS by the IP ADDRESS REGISTRY, something that would change internet censorship FOREVER.

ISP: Exatel, Orange, Telia (Arelion), Liberty Global
Colocation: Fiberhub
DDoS: C0nW0nk's DDoS Mitigation Script, DDoSGuard (unless an american tech giant employee tries to scare them, in which they will freak out and piss themselves)
DNS​: DNSPod (managed by Tencent unfortunately)
Domain Registrars​: .ST domain registry, Dreamhost (unless someone kills themselves and pins it on the site)
TLDs​: Verisign (bad for piracy, good for speech)
VPS / dedicated servers: Mevspace, Virtual Systems (Kiwi Farms referral URL: https://vsys.host/aff.php?aff=166), Incognet, iHostArt
Other hosting services: HostSlick, Terrahost, BuyVM, Versaweb, HosTeam
Misc​: Telegram (though they will block previews if pressured to)
Additional information: https://kiwifarms.st/threads/nulls-tier-list-for-internet-services.129513/
5 posts omitted. Click reply to view.

 No.555

rally

 No.556

>>555
checked

 No.557

>>555
kek wins it

 No.558

>>555
keyed

 No.559

>>555
basado


File: 1724253948437.jpg (81.2 KB, 1106x1012, 1694040807287270.jpg)ImgOps Yandex

 No.546[Reply]

Would you mind adding an 18+ rule or something or is that a little too much

 No.547

this site is family friendly tho

 No.548

File: 1724254418516.jpg (26.82 KB, 377x593, 1694938734822.jpg)ImgOps Yandex

frogposting comes in all different sizes and ages. frogposting is for everyone.

 No.552

no
porn is not allowed, and gore is spoiled


Delete Post [ ]
[1] [2] [3] [4] [5] [6] [7]
| Catalog
[ home ] [ qa2 / q / soicuck / vip2 / weab / hrp / ] [ login / overboard / rules / faq / flags / bans / pph ] [ updates / booru / legacy / bunker ]