Somebody give me the rundown on this place
-
@mikeTheLiar said in Somebody give me the rundown on this place:
Where is the lounge anyway?
It's a hold-over from Discourse, where access was granted automatically based on statistics regarding one's level of participation in the community. Famously, @blakeyrat lost his access due to a change in the requirements. He could have gotten access easily just by liking 10 posts; mods even offered to manually give him access, but he chose to throw a year-and-a-half long temper tantrum, instead.
As has already been posted, access is now granted manually by the mods; you just have to ask.
-
@Groaner said in Somebody give me the rundown on this place:
he was so caustic and abrasive that he made blakey's persona seem like an unfailingly compassionate guy.
I was on the receiving end of that a couple of times, and was a bit offended by it. But once I smoothed my ruffled feathers, I realized that what he said was at least partly right. Mostly, I liked him, and it was pretty entertaining to watch him rip idiots apart (as long as I wasn't the idiot in question).
-
@mikeTheLiar said in Somebody give me the rundown on this place:
I was looking for an old post of mine
@ben_lubar had to disable the search feature because it crashes the site.
-
@fbmac NEW?!
There was a thread for mention-spamming him long before the current situation unfolded.
-
Don't forget to go to the IRC (#thedailywtf on freenode) when the forums are on their daily hour of downtime!
-
@Groaner said in Somebody give me the rundown on this place:
@Fox said in Somebody give me the rundown on this place:
Out of curiosity, I clicked his profile to see what this allegedly horrible embodiment of everything terrible posted back when he came around here, since I'd never actually done that. Scrolling through dozens of posts, all I can see is that he had some stupid assumptions about depression. Why would a discussion between the two of us be interesting? Or particularly terrible?
You'd have to go back much further than that, to the CS days. I was mostly a lurker back then and only had some brief encounters with him, but basically, he was so politically conservative that he made @boomzilla seem center-left, and he was so caustic and abrasive that he made blakey's persona seem like an unfailingly compassionate guy. The funny thing about that is that neither of those traits really annoyed me in particular. What I couldn't stand was his arrogance.
He didn't think much of OSS, which is a reasonable opinion, but he would say things like, "For a personal project, it costs about $9X per hour of my time to set something up, but when it comes to something for my employer, it's more like $2XX per hour of my time." He was later arguing with some guy about that guy's skills, and when that guy mentioned that his skills had kept him employed at small companies without an issue, he said something like, "Well, if large companies paying market rates haven't hired you for your skills, what does that say about your skills?" Another time, I was arguing with him about C++ and he dropped a blanket statement about how game developers were idiots - as if he knew better than the entire industry.
Now, I will concede that he was occasionally witty, and there's a possibility that he was a persona and IHBT, but that would only change whether this would be a critique of him, or of the persona.
Awww man I forgot how awesome Morbs was. With Blakey the human elements come through sometimes but Morbs was just pure bridge dweller. Good times.
-
@aliceif
It's back
-
@HardwareGeek said in Somebody give me the rundown on this place:
and a few of our more conservative trolls.
Hey, HEY!
I'm not very conservative.
As for the rest, I have nothing to add. I'm just here to spam the thread.
-
@aliceif said in Somebody give me the rundown on this place:
@fbmac NEW?!
There was a thread for mention-spamming him long before the current situation unfolded.that was the joke
-
@aliceif said in Somebody give me the rundown on this place:
@ben_lubar had to disable the search feature because it crashes the site.
It's back on now, though. The crash was fixed pretty quickly.
-
@ben_lubar yeah i never had that big of a problem with @morbiuswilters but i don't usually give a crap about anything but the code.
-
@darkmatter and i didn't post enough back in the CS days to end up in an argument with him about anything which probably helps.
-
@Onyx Everyone is as conservative as it's conceivably possible to be when having a discussion with uber-satan over there.
-
@Tsaukpaetra said in Somebody give me the rundown on this place:
@Tsaukpaetra said in Somebody give me the rundown on this place:
happily serve it up on click!
Psst, this includes js and html!
I actually did that on Discourse and it wouldn't let me upload .js, but changing the extension to .txt fixed that. It was back when the Discourse XSS exploit with the YouTube titles not being sanitized correctly was discovered.
I don't know whether NodeBB will or not, without the extension changed. I do know that @ben_lubar set the Content Security Policy to not allow scripts, although clearly that doesn't prevent the resource from being used as the
src
of a script. It does prevent scripts from running in an uploaded .html file, though.In any case, there's really not a whole lot you can do to close the "user pastes javascript into the console without being sure what it does yet" security hole.
-
@Magus Some of us aren't even wrong-pondian so it's lucky we can all be pigeon-holed so easily.
-
@coldandtired Specter runs quickly to the elephant.
-
@mikeTheLiar said in Somebody give me the rundown on this place:
you're probably letting in all sorts of riffraff
[...]
New members?I've posted more than once so presumably I count?
-
@anotherusername said in Somebody give me the rundown on this place:
In any case, there's really not a whole lot you can do to close the "user pastes javascript into the console without being sure what it does yet" security hole.
Well, partially. We have half of an XSS attack here. The script is loading an uploaded file with a txt extension, which is being hosted on the what.thedailywtf.com domain. This means that if we can get a script tag injected, it won't be restricted by any CSP mechanisms in place.
-
@HardwareGeek said in Somebody give me the rundown on this place:
A 17500-post (and still going strong) flame war between a SJW lib-tard and a few of our more conservative trolls.
Oh no, it is WAY better / fucktardidly stupid than that. Okay, here:
- It started a a teeny tiny thread, less than 90 posts, of people discussing the comments about an article about trans people
- The thread would have just ended there BUT
- The aforementioned SJW lib-tard appears, and calls everyone involved in the transphobes who are complicit in real, literal murder
- People don't take kindly to libelously being called murderers (SHILCPMO) and at first legit argue
- But SJW lib-tard doubles down on lib-tardedness over and over, to the point where lib-tardedness has grown, exponentially, large enough to get it's own solar classification
- At that point everyone just gives up and resorts to shredding his paper thin logic, arguments, and just trolls him
And to give you an idea of "everyone", I do mean he managed to alienate all his allies and get EVERYONE trolling / legit hating him. Including, but not limited to:
- Every liberal in the thread (it isn't just the conservatives trolling him)
- actual trans people
- actual gay people
It'd be great if there was a way to read that thread where you only saw posts that were -8 or less, and posts that were +8 or higher. It would give you a good summary, even if you only read every 10th page and skimmed a lot.
-
@pydsigner said in Somebody give me the rundown on this place:
@mikeTheLiar said in Somebody give me the rundown on this place:
you're probably letting in all sorts of riffraff
[...]
New members?I've posted more than once so presumably I count?
Fuck you, give me money.
-
@Lorne-Kates The real is that some people have. Well, I suppose there is some pleasure to be derived in reading the
artwork of an expert driver.
-
@Lorne-Kates said in Somebody give me the rundown on this place:
At that point everyone just gives up
In my case, IGNORE! (Thank $diety for that option)
-
@dcon said in Somebody give me the rundown on this place:
In my case, IGNORE! (Thank $diety for that option)
I was ignoring that topic successfully for months, even before we had a working ignore feature. Then BraFox has to mention me.
@mikeTheLiar — New (to you) meme: Calling @Fox BraFox because at first his avatar was a fox wearing a bra; he claimed it wasn't a bra, but it was.
-
@Lorne-Kates And as soon as you agree with @fox on something, even if just partially, everyone suddenly belittles you and associates you with him.
It makes me sick.
-
@aliceif said in Somebody give me the rundown on this place:
@Lorne-Kates And as soon as you agree with @fox on something, even if just partially, everyone suddenly belittles you and associates you with him.
It makes me sick.
Now, in all fairness, that's because even if someone agrees with him in that thread, they will disagree with him out of spite.
That falls under the "alienating all his allies" note.
-
@Lorne-Kates Is the thread still going? I've been blissfully ignorant of it since the ignore feature landed
-
@Jaloopa said in Somebody give me the rundown on this place:
@Lorne-Kates Is the thread still going? I've been blissfully ignorant of it since the ignore feature landed
Maybe.
-
@anotherusername said in Somebody give me the rundown on this place:
In any case, there's really not a whole lot you can do to close the "user pastes javascript into the console without being sure what it does yet" security hole.
Go on Facebook and open the console. They have a pretty standard way of "closing" that security hole.
-
@error said in Somebody give me the rundown on this place:
it won't be restricted by any CSP mechanisms in place.
NodeBB doesn't send any CSP headers, so uploading text files won't help with any XSS.
-
@ben_lubar Firefox also has the "feature" that if you haven't typed enough in the console it won't let you paste without typing "yes I know what I am doing and please allow me to paste in here you stupid browser".
Or something like that anyway
-
@ben_lubar said in Somebody give me the rundown on this place:
@anotherusername said in Somebody give me the rundown on this place:
In any case, there's really not a whole lot you can do to close the "user pastes javascript into the console without being sure what it does yet" security hole.
Go on Facebook and open the console. They have a pretty standard way of "closing" that security hole.
Right. A big sign! That's gonna stop them.
You can try, but some users are just criminally dumb.
-
@Jaloopa said in Somebody give me the rundown on this place:
@ben_lubar Firefox also has the "feature" that if you haven't typed enough in the console it won't let you paste without typing "yes I know what I am doing and please allow me to paste in here you stupid browser".
Or something like that anyway
There was something like that at one point. They figured out that was a really dumb trick and they did away with it.
-
The one thing I miss about Discourse: this thread would have long ago been titled "Someone give me a rubdown in this place "
-
@anotherusername said in Somebody give me the rundown on this place:
@Jaloopa said in Somebody give me the rundown on this place:
@ben_lubar Firefox also has the "feature" that if you haven't typed enough in the console it won't let you paste without typing "yes I know what I am doing and please allow me to paste in here you stupid browser".
Or something like that anyway
There was something like that at one point. They figured out that was a really dumb trick and they did away with it.
I mean, with Firefox, it actually almost kinda makes some sense, given that there is a developer edition and non-developer edition. Except that everyone uses the standard edition for everything. So yeah...
-
@sloosecannon paging @aliceif
-
@Magus I use FFDE at work and I don't even really know why.