Hi Beeple!

Here’s a vague version of events :

  • 11PM EST: Lemmy.world got hacked

  • 12:20AM EST: Blahaj.zone got hacked

  • 12:25AM EST: I shut down the server

  • 12:30AM EST: I make announcements to tell people about this

  • 12:45AM EST: I have an idea of what the problem is but there is no fix

  • 2:20AM EST: I go to sleep

  • 8:50AM EST: The server is booted back up, steps are applied to mitigate issues (Rotating JWTs, Clearing DB of the source of vulnerability, deleting custom emoji), UI is updated with the fix, CSP and other security options are applied

  • 11:40AM EST: We start testing things to make sure are working And well, now here we are.

If you have issues logging in or using an app:

  1. Log out if you somehow are still logged in

  2. Clear all cache, site data, etc.

  3. Hard refresh Beehaw using CTRL+F5

  4. Log back in.

If you still have issues, write to us at [email protected]

To be clear : We have not been hacked as far as we know, we were completely unaffected. This was done preemptively.

Oh yeah, in case, you haven’t, this is a good opportunity and reminder to follow us on Mastodon as the communication line was still up despite Beehaw being down : https://hachyderm.io/@beehaw

  • Retronautickz@beehaw.org
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    I’m gonna say this only once, but that’s an incredibly rude thing to say. I was giving you the benefit of the doubt in my previous reply but it’s obvious now that you’re just treating me like an idiot.

    Yeah, because you haven’t been rude from the beginning (you were)

    People (including me) explained to you how you could have reached the admins and stay in touch so this kind of thing wouldn’t take you by surprise. When you had been explained several times this things and you keep insisting you don’t have any option because “you couldn’t google it”, one has to begin to think that you’re doing this in bad faith.

    • Pepper@beehaw.org
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      I’m not going to apologise for stating that there should have been a page I could have reached via a Google search.

      One has to begin to think that you’re doing this in bad faith

      I said you were rude because you started talking down to and attacking me directly as a person. That’s not ok.

      • Retronautickz@beehaw.org
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        You acted as if there weren’t ways of reaching, only because it wasn’t the one you wanted to have.

        I suggest you to stop relying on google, because in general it doesn’t give good result for Lemmy (less for Beehaw in specific), and start to follow/join at least one of the alternative groups/accounts

        • Gaywallet (they/it)@beehaw.orgM
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          This has devolved into a back and forth argument, lets kill the conversation here please. I think you’ve both made your point.