This thread is only for feedback related to technical issues (bug reports, suggestions).
We are currently working on improvements to the site, subject to the need of the tech team to sleep and go to their day jobs. If you need more immediate feedback please join the matrix room[s] and ask around. Feel free to leave comments, concerns, and suggestions about the tech side of the site here and we will try to get to it as soon as possible
366 posts and 99 image replies omitted.okay. thanks a lot wordfilter very cool
maybe for upstream vichan, but some way of clarifying that video files are not images. Could be a special colored border on the thumbnail, a subtitle text, or a small projector icon overlaid in the corner
Please make it so that when you search like this:
https://leftypol.org/search.php?search=aaaaaa&board=techthe selected board is automatically /tech/ so if I modify the keyword I don't have to choose it again please please
I think it's just reverting this?
https://github.com/lainchan/lainchan/commit/b89fe3046bfbc0d7db8e7e8773e92c0536417450I think one of you is banning people by accident.
I reported a post but then was banned for the exact same reason I reported the post. I can only assume it was a mistake. Also, it says I made an appeal but I didn't.
>>44027There was an appeal made for spam. If it was you, it's unbanned
https://leftypol.org/leftypol/res/2660071.html#2660587>From what I can find, there's this "James" guy who's been going around in recent weeks to vichan-based boards (including leftypol) and recommending an "anti-CP" config change that actually includes blocks for all of *.ru, all of *.cn, etc., and uses DNS-based blocks based on radlib DNS-check APIs.<jannies adding random commits to the config files that they do not check but take on faith from *check notes* random internet reactionariesAr you really so dumb you did this retardo shit? Or is anon having an episode?
Please tell me this is not true.
>>44045theres CP bots posting in siberia which goes to show these filters dont even work
>>44045The vichan config is outdated, as i'm helping James encode the filter logic into a modular filter system. This system should compile a rating for a post based on multiple threat indicators, meaning operators will be able to decide with which granularity to block or hit users with a captcha and switch between various configurations on the fly.
Ideally boards will only use the system to block transparent bots, unless they need to fill a gap in moderation or they're actively under attack. In other words we're trying to do what cloudflare promises.
>includes blocks for all of *.ru, all of *.cn, etcI've already separated the blocked IP-ranges into one for VPNs and another only for VPS hosting and similar commercial providers. Residential IPs should be unaffected either way.
>uses DNS-based blocks based on radlib DNS-check APIs.I've looked through these lists and their data seems to be mostly collated from email spam reports and automated spamtraps. Do you know of any radlib-motivated blocks?
>>44046AFAIK we're not in contact with the leftypol tech team yet. James is currently doing outreach on smaller imageboards.
>>44048>Do you know of any radlib-motivated blocks?No but OP in that post i linked is claiming RT and other .ru sites are blocked as well as many .cn sites, as far as i could tell? I come here to ask if this is true or not.
i hope not. POSSIBLE EXPLANATION FOR WHY A WHOLE BUNCH OF LINKS SUCH AS RT LINKS AND X LINKS ARE SUDDENLY BLOCKED ON LEFTYPOLTo confirm the problem, try posting some random RT link (i.e., the Russian English-language news site). You'll receive a pop-up saying 'Suspicious post.' Keep the wording of this pop-up in mind. It's not wording that can be found in the site-independent leftypol source code:
https://forgejo.leftypol.org/leftypol/leftypol/search/branch/config?path=&q=suspicious&mode=exactSo it's likely come from a recent change to site-dependent files such as configuration files.
About a month ago, someone calling himself "James from netherchan" started appealing to admins/devs of vichan-based boards to include his configuration changes supposedly aimed at blocking CP. He first posted to sushigirl.cafe:
https://sushigirl.cafe/yakuza/res/1198.html#q1540 https://sushigirl.cafe/yakuza/res/1198.html#q1545https://pastebin.com/raw/CFMd97uTAs can be seen from the pastebin, his configuration changes were strangely quite broad for anti-CP, including, for instance, TLD-wide blocks on all Russian *.ru and Chinese *.cn links:
'body' => '/\.(ru|cn [snip]
'action' => 'reject',
'message' => 'Suspicious post.',
All Telegram links:
t\.me|telegram\.me
All X/Twitter links:
x\.co
(Note that this also blocks the .com links.)
And so on. Note too the multiple instances of his custom message:
'message' => 'Suspicious post.'
There was no obvious RT block at that point, but he was continually making changes.
About two weeks ago, he created the following thread here on leftypol, using the name "James from the Internet" and claiming his suggested changes were solely to defend against "automated CP attacks":
https://leftypol.org/meta/res/43906.htmlIn it, he pushed for leftypol admins/devs to accept his configuration changes and appears to have established email contact with some folks at some point. Now, all of a sudden, generals like /ukr/ are getting their OP templates blocked because of matching filter links, requiring filter-evasion workarounds.
On his Twitter account (you can find it by simply searching Google for james netherchan), he engages positively with a bunch of Russophobes like Vatnik Soup. Relevant perhaps.
>>44055>TLD-wide blocks on all Russian *.ru and Chinese *.cn linksI see what you mean. As i already said though, this config is outdated and James himself stopped using it on his imageboard. The leftypol mods never told us they were using it as well and if they were to get in touch with the github project, they would receive an updated configuration that is a lot more targeted and adaptable.
>>44049I made that post. I can confirm that RT and X links are still blocked, but the tests I did for *.ru, *.cn, and at least one Telegram domain passed without blocks, so these filters likely got removed by someone along the line. (I'm maybe like, eh, 50% sure that a Telegram test got blocked for me around eight hours ago, but I can't reproduce that now…)
>>44056Yeah, as noted in
>>44057, I can confirm that the *.ru and *.cn filters haven't applied here on leftypol for any tests I've done. If you have access to the latest configuration, can you see whether there's an rt(dot)com block?
>>44058We never had an RT block to begin with. I only see patterns for url shorteners, pastebins and various TLDs spammers could be using (which i personally find ill-advised) in our repo. If the leftypol mods banned other sites, because they're banderites or zionazis or whatever, then that's their thing to clear up.
>>44059I can confirm that qt(dot)com gets blocked but not qy.com. It looks like someone may have unwittingly (?) created a broken filter somewhere.
>>44061 (me)
Found it:
|t\.co|
This filter directed at a Twitter shortener also blocks rt(dot)com, qt(dot)com, etc.
>>44062 (me)
So filters like t\.co and x\.co are problematic because they're going to match for all .com sites (not just .co) whose domains end with a 't' or an 'x'.
>>44062>>44063Sure, i can fix that. The solution is to surround each url pattern with "(^|[^a-zA-Z0-9-])" and "($|[^a-zA-Z0-9-])"
>>44045I believe I saw the filters you are talking about. They were really aggressive, but potentially useful, so took only a few that looked like the less intrusive ones.
>>44052>leftypol.org isn't using our infrastructureI don't even know what infrastructure you're talking about tbh.
I've been working on and off on my own IP information microservice for the past month or so.
Also I've been less active in general cuz work lately, so I'm a bit out of the loop.
>>44055Yup those are the links I was given. They're really aggressive indeed which is why I only installed some after a quick review.
> In it, he pushed for leftypol admins/devs to accept his configuration changes and appears to have established email contact with some folks at some point.Never heard of the guy, but maybe he contacted the mod which gave the pastebin to me.
>>44064I'll look into it
>>44064Looks reasonable enough to me on little sleep.
>>44064I don't think that's a good idea, it's going to make the regex engine match the whole text, which could have bad perf implications.
Use \b if you can
https://stackoverflow.com/questions/7605198/how-does-b-work-when-using-regular-expressions#7606358 >>44065I invited you to the bbs-guard project repository on github.
Flood detected; Post discarded. >>44068I've seen lex/yacc documentation mention the complement bracket expression being slow, but the above expression should never match more than one character directly surrounding the domain. "\b" is also not in POSIX, which is bad form.
>>44069Thanks man. Do you happen to have matrix? There's a tiny Vichan developer group I could invite you to.
>>44070> "\b" is also not in POSIX, which is bad form.Yes but our reference here is the PHP engine
>>44071Communication over github would be preferred, but you can reach me at glaive at chat.hashi.sbs. Also, James is the vichan developer, i only write the board-agnostic stuff.
>>44068>>44064Is filtering the entire .co space too aggressive (I only ever see it used by shorteners, phishing sites, and weirdos lmao)?
>>44072…there's a way to communicate on github (beyond issues I mean)?
>>44074There is a forum feature and we currently use one thread as a glorified chatroom.
>>44077Admittedly I don't see any malice now that I've found the problematic t\.co filter responsible for the RT block.
It's those .ru and .cn filters (which weren't active on leftypol) that triggered my initial
schizo paranoia suspicions. I knew that a lot of Westoid IT boomer bros block
IP traffic from Russia and China countries, but I didn't see the utility of aggressively blocking all Russian and Chinese
posted links, especially not as an anti-CP measure.
>>44093If you have an android try putting it through FFMPEG, might be an encoding issue.
>>44093I don't know what version of ffprobe is on the server, but if you know someone who can run (I can't right now):
ffprobe -v quiet -print_format json -show_format -show_streams YOUR.mp4
Post the output you get.
>>44077>CP bot likes to use link shorteners which sometimes contain .cn and .ru>I blocked them entirely on this reasoning nothing political. lmao, utter moron.
it never ceases to amaze me, a manual labourer, how legitimately retarded over-educated tech guys are without fail.
>>44137It sounds like a case under-education actually, as they didn't know those wher chinese and russian domains.
"over-education" just sounds like heter theil brainworms.
Posting on Tor currently broken.
Tor is broken. god knows for how long.
hcaptcha on tor no workie
>>44240nvm it seems to only not work in /leftypol/ but fine in /siberia/ or in here. fuck em jumping cocks
Is there a way we could get syntax for ordered and unordered lists?
>>44254The right thing would be to add
https://wakaba.c3.cx/docs/docs.html#WakabaMark style lists to markup() in inc/functions.php, but the mutiline-sensitive nature of the syntax and the awkward pattern matching functions in php make this far more annoying than it needs to be.
>>44255While I'm not too sure how thing work server-side, isn't there a way for the server to get a plain text of a message, and then use a non-php application for that, then stdout back to the php?
>>44257Tinyboard/vichan already is a slow piece of shit, but introducing a fork() for something like this would be bad practice.
Unique IPs: 17