Lemmy.world and lemmy.blahaj.zone have been hit with a JavaScript injection attack it seems.

  • ImaginaryFox@kbin.social
    link
    fedilink
    arrow-up
    1
    ·
    1 年前

    Any recommendations on how to mitigate risks like this when it comes to browsing lemmy? Any lite version to see lemmy through without Javascript?

    • techno156@kbin.social
      link
      fedilink
      arrow-up
      4
      ·
      1 年前

      No. The existing Lemmy-Lite that was advertised on join-Lemmy.org appears to be massively out of date, and no longer actively maintained.

      It was a bug with Lemmy-UI, so you might be able to get away using an app or site that isn’t vulnerable. Whether that is Wefwef, one of the apps, like Jerboa, or something that is Federated, but not Lemmy, like Kbin, or Mastodon (things might be a bit clunky if you do, since Lemmy threads aren’t well handled by Mastodon).