The bizarre secrets I found investigating corrupt Winamp skins

superkret , 14 hours ago

This is the Internet I miss!

Lost_My_Mind , 14 hours ago

What? You don’t like browsing the web, where everyone is shoving politics down your throat, and making violent hostile threats, and everybodys offended over baby names, and the web is like 3 websites big???

You don’t LOVE that?

vext01 , 14 hours ago

Please accept the cookie policy before any of that stuff…

cheese_greater , 11 hours ago

Sign it, sign it now!!!?

LittleBorat2 , 12 hours ago

Onboarding the general population was such a historic mistake

whostosay , 9 hours ago

Name verified

Psaldorn , 9 hours ago

Try finding a nice desktop background picture of something specific. It’s all just links to subscription based stock image sites.

If anyone knows places to search for freely shared images that would be amazing. Just wanted a whale shark photo in 2K…

kamiheku , 8 hours ago

If anyone knows places to search for freely shared images that would be amazing

Wikimedia Commons!

Psaldorn , 4 hours ago

Good shout, thank you

catloaf , 7 hours ago

Google image search has a rights filter.

TheRealKuni , 7 hours ago

This is how I learned that InterFaceLift was kill.

rottingleaf , 7 hours ago

Just today was looking for a seamless tile of grass for desktop background (decided to just use solid color, because eyes get tired looking at separate grass blades, though), spent like 15 minutes. On that.

Interstellar_1 OP , 5 hours ago

Unsplash is great if you want photography

MinFapper , 2 hours ago

It’s unfortunate, but AI image generators will make exactly what you want, royalty free.

kalpol , 7 hours ago

It is still there, just not picked up by Google or Bing.

Armok_the_bunny , 14 hours ago

Oh for fucks sake, now the article itself has a misplaced mobile Wikipedia link and there’s nowhere I can quickly see to put my copy paste about it.

copy paste for context:

Please, anyone who reads this, stop posting links to the mobile version of Wikipedia. It doesn’t switch automatically on PC, and I see it happen all the time. Just take the half a second to remove the “.m” from the beginning of the link, save everyone else from the pain of having to be surprised by it and taking the time to do it themselves.

hellothere , 14 hours ago

addons.mozilla.org/…/redirect-mobile-wikipedia/

Plopp , 11 hours ago

General infosec tip: keep your browser add-ons to the absolute minimum you can live with. Add-ons are attack vectors. The more you have - the more at risk you are. And only install the ones you have a reason to trust.

LainTrain , 10 hours ago

Nah, browsers are sandboxed to absolute shit it is such a pain in the ass to make an extension just to do a phishing attack or to buy the ownership of one to introduce malicious code.

At most an extension with really broad permissions like read/write contents of any page (a fact that is made obvious upon installation) can replace a link to take you to a phishing page to harvest creds, but thanks to SSL and HTTPS it won’t even work without fifty some odd warnings

Plopp , 9 hours ago

You live by that and I’ll live by the advice I’ve seen from infosec professionals that recommend as few add-ons as possible due to security concerns. But yes, browsers are getting more secure over time and that’s good.

LainTrain , 5 hours ago (edited 5 hours ago)

I’m an cybersec MSc and an infosec professional.

You obviously shouldn’t install closed source or otherwise shady extensions from dodgy authors you don’t know, but on the whole there is very little they can do that you should worry about.

Most “advice” comes from people who want to sell you something and the infosec industry is mostly a scam to drain B2B procurement budgets plus a few gay furry researchers at defcon who are incomprehensible savants and actual malware authors who do something, unless they just write crappy .NET junk.

Take for example an average “”“zero-day”“” in 2024: arstechnica.com/…/threat-actors-exploited-windows…

This isn’t even a vulnerability. It’s just phishing that requires a user to have file extensions turned off, then download a dodgy as hell .PDF file that isn’t one due to hidden extension, which then uses a milquetoast .hta trojan downloader that only works if one has IE enabled on Windows AND opens the .pdf in MS Edge to pull in reverse shell code via probably psexec of some sort.

There are so many steps one wonders why not just send a iamnotavirus.exe uac prompt and all to download, compile and run ransomware from vxunderground source code then and there.

Worrying about stuff like this in browser is akin to using a VPN on public WiFi to avoid MITM attacks, there’s nothing wrong with it but there’s basically nothing to actually worry about there.

Plopp , 4 hours ago

You obviously shouldn’t install closed source or otherwise shady extensions from dodgy authors you don’t know, but on the whole there is very little they can do that you should worry about.

Sorry if I’m nitpicky or confused here. You just said it’s obvious that you shouldn’t install closed sourced or otherwise shady extensions. Do you think a normie knows and cares if an extension is open source? And how do they know if an extension is “shady”? And what about legit extensions that get bought by shady people and turned into shady ones long after they’ve been installed and the user base trusts it?

kuberoot , 8 hours ago

I mean, couldn’t an addon just read the password you put into a login field, or send in a request, and send it off to their servers?

LainTrain , 5 hours ago

If an add-on is modifying contents of pages it shouldn’t or of the clipboard when it shouldn’t, you would have to give it explicit permission at install time, i.e. “This extension can: Read and Modify Data on all sites you visit: Read and Modify contents of the clipboard.”

Obviously a simple URL redirector for wikipedia requesting access to this data is absurd and would be an immediate red flag. The reason this very thing doesn’t happen more often, is because frankly you’d have to be so computer illiterate to get to that stage that it is much easier to just phish you with basic Facebook profile info for much greater gains.

This is also the reason most “hacks” nowadays are either supply-side or phishing, shit is just too secure, no fun. We should bring back ActiveX.

Plopp , 4 hours ago

Obviously a simple URL redirector for wikipedia requesting access to this data is absurd and would be an immediate red flag.

To you, yes it should be. But it does require knowledge about how websites and browsers work that most people don’t have. I’d be very surprised if 50% of people have any idea what those permissions actually do and what would be reasonable for different extensions to have.

victorz , 14 hours ago

People not having the Wikipedia app baffles me. Sharing from there gives you reasonable links.

Cheradenine , 14 hours ago

Yes that works, and you can also use something like URLCheck and just drop that path

victorz , 11 hours ago

What is that, an extension?

Cheradenine , 11 hours ago

Yes it is f-droid.org/packages/com.trianguloy.urlchecker/

mr_satan , 13 hours ago

Why use an app when there’s a web site? In case of Wikipedia I fail to see any functional benefit for an app.

victorz , 11 hours ago

Better reading experience overall. Compartmentalizing all my Wikipedia reading so as not to mix it with my other many open tabs. (Wikipedia app has tabs, too.) Sections are not collapsed by default. Easier to search on the page by default than in the browser.

I can probably go on it I made a more in-depth comparison after using the web version for a bit…

bitfucker , 9 hours ago

The app has offline capabilities and to save articles on a named list. I use it as a reference when forgetting something or to save the list type article as a starting point when researching a software to use. Or just generally a reading material when on the go (yes, I find reading wikipedia articles entertaining)

mr_satan , 4 hours ago

Ok, offline functionality does make sense

Plopp , 13 hours ago

There’s a Wikipedia app? I find that baffling.

victorz , 11 hours ago

Try it. It’s great.

Plopp , 11 hours ago

How much time do you spend on Wikipedia?

bitfucker , 10 hours ago

My man, I think I have over a hundred tabs and saved wikipedia articles alone that I always refer to when needed. The app works great for me

Plopp , 9 hours ago

I would assume, and hope, it works really well for such usage. I only tend to end up on Wikipedia a couple of times a week, and 95% of that is on my desktop to have a quick look at something I won’t be getting back to ever again.

victorz , 2 hours ago

Then the app is not for you. 😊

victorz , 2 hours ago

Time? Pff, no clue. But I look things up all the time and don’t have time to finish articles the first time round, ever (two kids under six).

So it’s great to have and get back to articles.

hexagonwin , 14 hours ago

nice findings!

Mrkawfee , 15 hours ago

Nice find. Really whips the Llamas ass.