tryagain@lemmy.ml to lemmy.ml meta@lemmy.ml · 2 years agoI'm going to assume the admins here all have 2FA on their accounts, right?message-squaremessage-square25fedilinkarrow-up156arrow-down12file-text
arrow-up154arrow-down1message-squareI'm going to assume the admins here all have 2FA on their accounts, right?tryagain@lemmy.ml to lemmy.ml meta@lemmy.ml · 2 years agomessage-square25fedilinkfile-text
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up11arrow-down1·2 years agoYeap, that is the first thing you do for any privileged account.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up8·2 years agoIt doesn’t matter if they are directly stealing cookies though.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up4arrow-down1·2 years agoHmm, that is the reason you should have addons in your browser to prevent XSS, like uBlock.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up4·2 years agouBlock prevents XSS? I didn’t know that.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up3·2 years agoIt blocks bunch of JS from being executed, and if it detects XSS, it gives you a popup to inform you.
minus-squarecpp@sh.itjust.workslinkfedilinkarrow-up8·2 years agoAre you thinking of NoScript? That’s what gives me the XSS popups.
minus-squareThe Tux@lemmy.runlinkfedilinkarrow-up3·2 years agoAh, you are correct, My coffee hasn’t kicked in yet.
Yeap, that is the first thing you do for any privileged account.
It doesn’t matter if they are directly stealing cookies though.
Hmm, that is the reason you should have addons in your browser to prevent XSS, like uBlock.
uBlock prevents XSS? I didn’t know that.
It blocks bunch of JS from being executed, and if it detects XSS, it gives you a popup to inform you.
Are you thinking of NoScript? That’s what gives me the XSS popups.
Ah, you are correct, My coffee hasn’t kicked in yet.