4chan Sharty Hack And Janitor Email Leak

> Just with a bunch of extra features hastily grafted and grown organically, but never dealing with the insane amount of technical debt.

This describes probably 95%+ of the entire software world, from enterprise, to SaaS to IoT to mobile to desktop to embedded... Everything seems to be hastily thrown together features that barely work and piles of debt that will never get fixed. It's a wonder anything actually even works. If cars (the non-software parts) were made like this, there would be millions of them breaking down by the side of the road daily.

As far as I can tell, no real maintenance has happened since Poole sold the site a decade ago. Hiroyuki paid for it and then mostly forgot about it.

as someone who had to upgrade a stack from php 5.3 to 7.1 back in 2019... do you know what version of php they were running?

Uploading ASP as an image and having it execute server side is one thing.

But in this case, it's subtly different.

This issue relies more on a quirk of how PDF and PostScript relate (PDF is built on a subset of postscript).

Imagine you had an image format which was just C which when compiled and ran produced the width, height, and then stream of RGB values to form an image. And you formalised this such that it had to have a specific structure so that if someone wanted to, they didn't have to write a C compiler, they could just pull out the key bits from this file which looks like ordinary C and produce the same result.

Now imagine that your website supports uploading such image files, and you need to render them to produce a thumbnail, but instead of using a minimal implementation of the standard which doesn't need to compile the code, you go ahead and just run gcc on it and run the output.

That's kind of more or less what happened here.

It's worth noting here that it's not really common knowledge that PDF is basically just a subset of postscript. So it's actually a bit less surprising that these guys fell for this, as it's as if C had become some weird language nobody talks about, and GCC became known as "that tool to wrangle that image format" rather than a general purpose C compiler.

The attackers in this case relied on some ghostscript exploits, that's true, but if you never ran the resulting C-image-format binaries, you could still get pwned through GCC exploits.

These were fun times. I've been working as a pentester for the past ten years, and the job got a lot harder, with everything using frameworks and containerization.

We still get plenty of results, because the tooling also gets better, and finding just one vulnerability is enough to be devastating, which makes it kind of frustrating. There is tons of progress, but much of it is just not paying dividends.

Bobby Ignore All Previous Instructions however…

When the first-gen iPhone was out there was a TIFF vulnerability so bad that you could jailbreak an iPhone just by visiting a specific web site. I remember going to Best Buy and seeing all of the display phones had been jailbroken. (It was easy to tell - this was before the App Store, so having extra app icons on the home screen wasn't normal.)

This was a user-empowering application of the vulnerability. Obviously, a bug that allows root-level arbitrary code execution just by getting the user to load a single image could be used for some pretty bad stuff. (And perhaps was.)

The `Memory Pit` exploit for the Nintendo DSi works in a similar way - it exploits a buffer overflow in the reading of image meta data by the Nintendo DSi Camera application in order to achieve arbitrary code execution.

https://dsibrew.org/wiki/Memory_Pit

4chan, ironically enough, had something similar where steganographic images were posted designed to be copied to Paint, saved as a bmp, renamed to an .hta file, and then executed. It would then spam the board with other variations of itself.

"Bannerbomb", on the Wii, has entered the thread.

https://wiibrew.org/wiki/Bannerbomb

I would also say don't run ghostscript with the same permissions as the web server, especially not if you can just hand it your PDF through stdin and take a PNG through stdout. Sandbox it as much as possible. PDF is a really complex format which means lots of opportunities for buffer overruns and the like. (Edit: Actually, reading through Arch-TK's post above, it sounds like it was much dummer than something like a buffer overrun.)

> Don't run versions of ghostscript from 2012?

Per Wikipedia:

In February 2013, with version 9.07, Ghostscript changed its license from GPLv3 to GNU AGPL.

With the AGPL license being legal kryptonite I wonder if license compatibility drove the decision (and how many other installations of Ghostscript share this concern)?

Newer Ghostscript versions are Affero GPL, that might be problem for some people, although probably not for 4chan (they don't modify it so it should be fine)

(incidentally I am now working on compiling this old GPL ghostscript to webassembly with file isolation... it works fine... but the compilation is kind of annoying)

Does this vuln have a CVE number, or other details? Just curious, since from the posts explaining things this doesn't seem to be based on memory corruption.

Assuming US jurisdiction this would pretty clearly be at least one, probably many CFAA violations which are criminal.

Usually the attacker, on their own computer, or some other server they have root on, will open a port and expose it to the internet and listen. The exploit payload will then make an outbound connection to that port. Once it's connected, the exploit will give the attacker's computer shell access. Search terms include 'reverse shell'.

It takes the normal client/server architecture and turns it inside out. If you remember FTP and active vs passive, it works like active mode FTP.

That's just one way to do it. If the attacker wants to actually listen on an open port on a compromised server that's behind a firewall, look up 'NAT traversal' for like half a dozen ways to do it.

One interesting method to get a shell that I read about is (ab)using ICMP echo requests. ICMP echo requests can contain arbitrary bytes as a payload. So the exploit will poll the attacker's IP address with ICMP echo requests. The exploit will have data payloads that have the shell's output. The attacker's server will respond with ICMP echo requests that have whatever the attacker wants to type into the shell. It's kinda janky but it works. Lots of firewalls might block outbound UDP/TCP connections from internal servers that don't need to make outbound connections, or might whitelist the addresses they're allowed to connect to. But they won't block ICMP, either because it's considered harmless or they forgot or they didn't know it needs to be blocked separately with other rules.

The point is there's any number of ways to do it, each more clever than the last.

A shell's stdin and stdout can be redirected to a tcp socket which connects to the attacker. Here are some examples: https://www.invicti.com/learn/reverse-shell/

most likely "shell access" was confused with execution of "shellcode" which is a type of code, typically bytecode, that gets injected by the hacker and the server gets tricked into executing it. Once it's executed, it can do anything, leave new files, open ports, disable firewalls, change the admin password, etc

https://blog.sucuri.net/2013/07/malware-hidden-inside-jpg-ex...

Once you can run any command, you start passing in whatever commands you want.

This is a great question, one I've always wondered. "Shell access" typically requires a terminal to, you know, type stuff in, right?

Here: https://i.ibb.co/9mWLp4m9/4chanhack.jpg

search through the thread on the site where that attack came from. ctrl+f postscript and you will find the post

[dead]

eh, there's a lot of neat pdfs on the papercraft and origami board

Agreed. I would go so far as to say all the ills of modern social media are because of ranked platforms, such as upvote/downvote-based, or like-based. They turn into echo chambers, that promote witty one-liners over nuance, and any sort of controversial position is effectively censored.

That said, HN functions decently well, though in some ways it is even worse in the censoring the outliers.

So "not your personal army" == don't be a journalist?

If someone rallied a hate-mob on 4chan, though, how would people know?

Since 4chan overtly resists it, it'd rapidly move off of there, but it's still a great place to find like-minded folks that'd follow someone to another server to go brigade someone.

HN is 4chan in many ways - the smart, civilized people just come here. Whereas the smart people that are willing to act disabled go there.

Nobody on Twitter or Reddit or Bluesky or Facebook or whatever ever cared about anyone’s feelings either, they just avoid using certain no-no words.

>there’s less focus on writing the basic filler comments

I’m not sure you’ve actually been to 4chan…

How many of these used Facebook, Twitter or Reddit? They are not mentioned in mainstream media because they are popular, but I assure you there are a lot of deranged people that never even posted on 4chan and just stuck to the “good” ones.

For the record this is an example of the "Fencepost error" where the last item in a range gets double counted as the first item in the next range and is incredibly common in dyscalculia (the math version of dyslexia) as people will have "visual number lines" in their head that cover ranges of numbers but the ends get double counted, so there will be a 10-20 number line then a 20-30 number line.

I suspect TheJosh had something like that with the week where he visualized it with Sundays at both ends but lacked the self awareness to realize that this was not a universal representation.

My personal favorite rendition of this: https://www.youtube.com/watch?v=JqylqmDl0Mw (Mega64 - Flame War Theater - "Full Body Workout Every Other Day?")

If a woman ever asks what men’s locker room talk is like, just show them that post. We really are a simple bunch.

lol that was a bait thread, this is the same place that had a discussion on whether a pitbull could defeat the Sun if it snuck up on it at night

I never saw this before. Thank you to share. Truly, this is peak Interwebs.

That IS dumb -- everyone knows there are 8 days in a week. Sunday to Sunday -- you can count it on your hands!

Laughing my head off reading through this. Thank you

> Obligatory post about the dumbest argument to ever be had online

Jon Bois did an amazing video about this one: https://www.youtube.com/watch?v=eECjjLNAOd4

> In 2015, Vice News contacted mathematician Joanna Nelson for a resolution, and she said that TheJosh would have to schedule his workouts in two-week chunks, claiming a week is seven days from Monday to Sunday.

Why was a mathematician necessary for this assertion?

I love this thread so much

I need to thank you for the web archive post. The argument was amusing as it was dumb.

All of this sentiment is many years out of date. "Alt-right" hasn't been a term of self-identification for almost a decade, and hasn't been used as an identifier by pretty much anyone for at least half of that. /pol/ is not the epicentre of the radical online right and has not been for years - it's a backwater in that regard now.

The most notable radicalisation happening on /pol/ nowadays, in my opinion, is a kind of hyper-masculine third-worldist ideology that is anti-semitic in its foundation and deeply misogynistic. While those two traits might sound superficially similar to the 2015 "Alt right", this new ideology has a significant pro-Islamist tendency, and has an almost comprehensive disdain for the west and its ways of life, in favour of authoritarian regimes like like Russia, Iran, and China. Also, as is being corroborated by other online circles like the Nick Fuentes "Groyper" movement, this faction of the online far-right is an increasingly post-racial one, with more traditionally white supremacist views disappearing, to be filled in by antisemitism.

Personally, I think this cultural political shift in the imageboard represents the increased representation of developing countries online, and is an important case study in how quickly cultural foundations can shift inside the borderless land of the internet.

I like /pol/ and although I'm not really interested in defending it (I 100% understand why people don't like it) I will give my opinion of it because I think most people don't get it and take the board wayy too seriously.

/pol/ isn't trying to be like the millions of other politic discussion forums online. It's literally intended to be politically outrageous so when people like yourself complain that it's full of outrageous alt-right content you're typically missing the point.

It's full of things that appear to be alt-right because stuff like racism, sexism and transphobia is extremely politically incorrect. While far-left views might be equally reprehensible, these views are not seen as equally politically incorrect. It's actually quite hard to hold politically incorrect far-left views unless you incorporate some far-right views – being so pro-trans that you hate biological women or something stupid. This is why you tend to see less left-wing content there. It's hard to be offensive and left-wing.**

But even then I think it's wrong to say /pol/ is full of alt-right content to be honest. There are alt-right people there for sure, but huge amount of the political memes posted on /pol/ are mocking the alt-right and the right more broadly. The board is constantly roasting the MAGA movement, for example.

As a brit my favourite threads on /pol/ are the brit/pol/ threads which basically just post politically incorrect memes mocking Brits and joking about how shit the UK is. These threads largely just Brits shitposting with each other and it would be wrong to assume the existence of hateful anti-British content on /pol/ is somehow evidence that /pol/ is xenophobic against Brits. People should take a similar views of the racist/alt-right threads – the vast majority of people there are just trolling and being offensive for a laugh. You don't have to like the humour, but most of it is just people shit posting.

> they actively delete and ban posts that go against alt-right.

Loads of stuff gets removed... If you're posting content that "goes against the alt-right" you're probably taking the board way way to seriously and you probably should be banned.

** Interestingly another commenter in the thread asked about why there's so much interracial porn on /pol/ if it's so racist, which kinda highlights my point here. Just hating white people isn't politically incorrect – there's people doing that all over Reddit. To make hating white people offensive you basically have to incorporate racist stereotypes about about how whites are genetically inferrer to blacks in various way, but then in doing this you'll get viewed as racist and alt-right because you're using racial stereotypes about how blacks are more athletic, etc.

If you're up for it I challenge you to be politically incorrect from a left-wing perspective without it being possible to argue that it's actually far-right.

[flagged]

I worked for a major internet company until 2020. HN would be aghast how much "if we failed to provide this service a good chunk of the internet would either go down or sites wouldn't function properly and the stock market probably would dip" stuff runs on redundant pairs of LAMP stacks and other unsophisticated old stuff HN would turn up its nose at.

Should have had updated dependencies though.

Nobody that is over 30 thinks any of those things are necessary because we all remember them not existing and websites handling plenty of traffic fine.

I think no algorithmic curation is its strength. It means that even if an echo chamber appears anybody can still post their opinion and it doesn't get downvoted into oblivion when people disagree.

otoh the entire site is no longer running because they fell behind on updates

This absolutely was the case for a long time. It was the cultural center of the internet where nearly all memes sprang from or gained traction and context before leaving orbit for the greater internet.

That has not been the case for years though. I'd say it shifted to twitter as things shifted to inseparably political on almost all of 4chan maybe 6-8 years back and then shifted away from twitter a while after elon bought it and a lot of people started to bail. and I honestly don't know where exactly it's shifted to now, but I'd have to guess tiktok and similar new platforms.

But regardless I do think 4chan has lost nearly all of it's cultural influence, but still maintains it's notoriety.

I think this was true at one point but not for the past 5-10 years. Based off of using the site I feel like now a lot of things start on other sites (particularly smaller accounts on twitter), get aggregated and popularized on 4chan, and then get picked up on other sites (often regurgitated back to twitter). Knowyourmeme shows this for a lot of things that people typically attribute as original to 4chan. There was definitely a time when a ton of stuff originated on 4chan but these days everything is so interconnected with the same people posting on twitter, reddit, and 4chan that I think 4chan gets a lot of unearned credit

Don't forget the slurs. They have some unique slurs in there that have backstories too.

> how much terminology, slang and other culture originate and spread there

Could you give some examples? The more unexpected, the better.

Preferably with sources, because tracing word origin is difficult enough on its own.

I thought culture was a “solved problem” now that we have AI.

I can’t keep up anymore.

it is, and unfortunately from 2016 onwards it kind of outgrew the rest of the site like a tumorous growth until the whole site became markedly more neonazi and less goofy. something to do with donald trump i suspected

It is - https://en.wikipedia.org/w/index.php?title=/pol/&oldid=12855....

I feel too many people who conflate /pol/ with the whole website are just regurgitating information they heard from other social media sites. The most popular boards, by far, since 2020 have been the video game and vtuber boards. With Video Game generals being the most popular board for the past five years outside of the occasional political season. You can check this on 4stats.

People who still complain about /pol/ look a little like people who would still complain about ebaumsworld: Completely out of touch individuals who equate everything to a tiny phenomena.

> /g/ was the origin of Chain of Thought for AI

Is this documented?

I used to hang out at Head-Fi a lot in the early ‘00s. It’s a headphone and headphone accessories (amplifiers, DACs, etc.) forum, and people nerd out about building their own stuff. I recall writing a review on some obscure Chinese brand of sound card that people liked, because it happened to have a really good DAC for the rear output (it was a surround sound card, back when that was something interesting).

I gradually lost interest when they started heavily pushing commercial sponsors. I get it; sites aren’t free to host, and moderator time isn’t free / unlimited, but it’s still sad.

Bodybuilding.com's misc board was essentially the same sort of raunchy teen hangout as /b/, sans the porn. It wasn't anything goes, but a lot did, and of course you were dealing with the kinds of meatheads (said lovingly) who would happen upon bb.com in the first place.

> How do replies work

Reply references the post it is replying to by ID, most boards will turn that ID into a link or even create a UI to view a chain of replies.

> How do you know it's actually the person you're replying to who's replying back?

You shouldn't, an anonymous imageboard invites you to engage with ideas, not people. However, on most boards you can enter a password with your post, which is displayed as a hash, changing you from anonymous to pseudonymous (although this is generally considered attention-seeking and is frowned upon).

Not hidden gems, no, but some of big titles originated from /agdg/, both Risk of Rain and VA-11 Hall-A started as progress posts in /agdg/ before hitting combined >1M sales.

I remember one user who made a really fun arcade flight simulator.

4chan is more moderated than you'd imagine.

I like that there can be wild places on the internet where people can pieces of shit. 4Chan had communist trolls, Jew-hating trolls, Zionist-trolls, pro-Christian trolls, anti-Christian pro-pagan trolls. It didn't foster any fascism in society. It was just a place where people could say mostly what they want.

That is what has saved Reddit. You cannot find society fascism coordination there because the mods are strong. If 4chan followed that model bronies might still be a thing.

Ragusea is an idiot, though and I arrived at that conclusion without any help from 4ch.

I'm not looking for corporate sanitized social media site #102032. Imageboards if nothing else allow people to be people and you know what? Sure sometimes people suck, but I don't want some overvalued social media companies in America deciding what I can and can't see.

Sure I've encountered awful people on imageboards, but I've also encountered very nice, helpful people, some of which I've stayed in contact with long term.

Maybe today's social media. It's basically early xbox live tier banter. A relic of a different time on the internet that is incomprehensible to the outsiders who weren't around for it.

What is the good reason?

Where I'm sat the only reason our three (?) social media companies restrict none illegal speech/content is to make it more appealing to advertisers.

I miss the internet before it was driven by advertisers and their investors.

It wasn't hard to find things no, but the narrative one often reads is that it's the mainstream consensus there to the universal opinion rather than a fringe opinion which exists and isn't banned from having.

Do people also treat Reddit the same way?

/g/ genuinely was one of the worst boards on the website, but there were a handful of lurkers who made good posts in some of the general threads. the site as a whole was still was a diverse place up until yesterday, with only a few boards being unusably bad, and it was getting increasingly better.

it's a bit sad really. zero-barrier to entry, no login gates, no accounts, and traffic was so high that it moved really fast. it was like a dive bar covered in grime. will be sad to see it go. none of the other imageboards still kicking are quite the same, most are even worse tbh.

Yeah, after 2015 it became impossible to go to any of the boards if you weren’t a pol poster. They made it their mission to spread their vile shit everywhere.

Let me be bold: transphobia is counter-culture nowadays (at least in Western societies). Counter-culture is not always a good thing.

Gamergate and Donald Trump was a 4-6 year period depending on where you put the needle. There were 10 years before it and now close to 5 years after it. The people who continue to hammer about it are just announcing that they don't understand the site and are complaining about ancient history. The most popular board right now is the video game generals board, and second place belongs to the regular video games board.

You can but I think it would make you quite dull

They in fact, do it for free.

Like it or not, 4chan was a major hub of Internet culture. Especially early on some of the best stuff on the internet happened on 4chan (and a good chunk of the worst, of course)

Why? I am not pleased with the government forced pills such as TikTok, Twitter and other such shite shoved down my throat.

You may enjoy the walled garden, I for one don't. Such sites gave you a hole to get away from the dystopian view that these gardens hold.

They gave independence away from forced control.

I'm reliably informed they do it for free.

> Isn't it a running joke that the Jannies don't get paid?

You're think about reddit and why it is the way it is from an editorial perspective and what kind of people have the time to mods 100+ subs for free...

But that ceased to be true long ago. While some of the supermods aren't paid by reddit directly, they might be paid by other orgs to mod and influence reddit, corporate or 'grass root'...

Some others simply hijack subs to sell their own products.

"Old Internet" doesn't have a very defined meaning, but I think it has more to do with design and functionality than a hard date. While I don't think relevance matters, 4chan is much more relevant than you think. Having a niche is part of the old Internet. Websites used to be niche, but deep, instead of websites like Wikipedia, which are broad and shallow (compare the Castlevania dungeon [0] to the Wikipedia article for Castlevania, for example). Then compare 4chan's limited number of boards with reddit's endless subs. 4chan's design is early web 2.0, doesn't require you create an account, allows (pseudo) anonymous posting, content is mostly unfiltered, unmonetized, free & thought of as ephemeral, etc.

0 - https://castlevaniadungeon.net/dungeon.html

Geocities was going strong in the late 90's too! My first homepage was hosted there on Tokyo Towers.

22 years is old. Nobody knows what geocities is, it has no relevance. It’s like talking about brands of telegraph wire.

It is not very niche at all. 4chan served a gigantic volume of traffic.

Side note: When you google "Geocities" the results are in comic sans

Web 2.0 and before is now considered the old internet.

[dead]

>Creative irreverence was replaced with regular childishness.

I’d suggest taking off those glasses as they are a bit too rose-tinted. I was there, just like you, and the humor was way more “childishness” than “creative irreverence” well before 2010.

Considering that the people posting this "creative irreverence" were the same guys calling you a "stupid f*gg*t n*gger piece of sh*t" on Halo 2/3 and CS when they got noscoped from across the map or whatever, "It's just a joke" has always been somewhat suspect. It would be wrong to say that there was no element of tongue-in-cheek-iness and hyperbole, of course. It just wasn't completely innocent, broadly speaking.

Of course, in a post-Bioshock Infinite world, there's really no excuse for not grokking how time and distance from the origins of a cultural behavior pattern can warp even well-meaning notions that aren't regularly re-examined and tuned to align the intention with the zeitgeist. If the Sarah Silverman-esque posters ever looked up and realized, "Oh, they don't know it's a joke, they're ACTUALLY Nazis," it was too late to shift things back. (Unless you were in a Boondocks thread on /co/, in which case correction was freely forthcoming.)

Probably didn't help that at least one mod wanted 4chan to become more racist, on purpose.

Incredibly spot-on and well-put.

> mistook offensive humor for conservatism

Something happened in the post-2010 times along with the Tea Party, and offensive humor - especially overt racism - became a mainstream part of conservativism, all the way to the White House.

> "jokes" where the punchline is "I hate my political enemies"

Hence the laughter in the White House at refusing to follow the court order to return their political enemies from the overseas prison.

4chan may have died, but Trump is more the first 4chan President than Howard Dean was the first "internet candidate", and especially Musk the Twitter Presidential Vizir is the heir to this culture.

the mechanics are old

there's no other online community i know of that still allows fully anonymous posting

the culture changed, but the "environment" causing the culture there to be the way it is still same as the original.

the bump/delete mechanics work well to promote the most controversial, most engaging content, without any advanced statistics or ML.

despite being a shitty place, i don't feel advertised to, spied or in any way abused _by the software itself_ while browsing it

every board had it's own independent archiving service after a while, so board culture ended up stickier than the original design. there's some interesting stuff in there

Posts always got auto deleted. Maybe you aren't familiar with how it worked.

As far as image boards go, 4chan is the first successful (and longest surviving) English-speaking 2chan clone.

2chan is a japanese site.

> them and their close ones are certainly going to be exposed to a whole lot of viciousness soon

Isn't viciousness the notorious bread and butter of 4chan?

Damn, the culture they have bred and actively maintained is now going to be turned against them?

It might end up making them more sympathetic people on the long term. They might realise the seriousness of what they have done to others.

I'm not up to speed - but isn't that a free-speech absolutist site?

I have leftist friends who grew up looking at memes on 4chan. As adults they remember it fondly.

As bad as Trump is, most of the opposition to him is just tribalism. To paraphrase Kurt Vonnegut, about 10% of people are always cruel, 10% are always kind, and 80% are in play. From your comment I think you would fit right in on 4chan since you seem to advocate anonymously destroying people that you don't know, without any process, if you vaguely (without really knowing anything about it or bothering to check) think they have crossed you in some way.

[flagged]

I lied about my age and was given janitor access in the mid 2000s. There was a special /j/ board to coordinate on, but it broke relatively early, and you mostly had to hang out in the #janiteam channel on Rizon. I think almost everybody else was underage as well. There was a minimal web overlay that let you delete/escalate posts. You couldn't see people's IPs, but you could see how many outstanding ban requests they had. These numbers helped me deduce that many boards' most infamous personalities were all the same guy.

We were all offered the chance to become mods in 2010, but moot wanted to see our faces on a Skype call. I thought that was a step too far and just gradually stopped caring after that. Seems like I made the right choice.

On the whole it was barely held together technically and organisationally, mostly run by moot's personal friends, and fun all around. Things were far less serious then.

And the checks arrived on time every month: $0.00

Well... A full dump of the board exclusive to moderators and janitors was leaked too so now you could take a look yourself.

I would've taken you less time to find the 'sinister' content yourself than leave this sprawling reply

To your point:

It's more likely than not real, it contains configs for the entire site.

Given a set of characters, find the shortest string with all permutations of that set. With 2 characters a,b the answer would be "aba", length 3 (not 2! like you suggested).

You shouldn't be logging in to a server via SSH using a user+password combo, instead use a public/private key combo which is considerably more complex and can't effectively be bruteforced like a user+password.

Most web servers don't really come with any built in defense against brute force attempts vs Basic Auth gates, so unless you've set something up to protect it, someone with enough time will eventually get in.

I haven’t used it for many years now, but phpMyAdmin was long a source of compromises. Lots of security holes.

A password is just plain text, which apart from being bruteforced, can easily be phished. There are so many things wrong with using a password even if it's fairly complex. Instead, stick to passkeys and SSH keys

This stuff is still packaged with cPanel, which is probably the most common way to manage web servers on the internet.

Only if it's only accessible via proper TLS (otherwise it's easy to read the user/pass with MITM as basic auth doesn't encrypt the user/pass).

If there is no throttling/rate-limiting/banning then this setup allows for a lot of attempts, wether brute-force or dictionary.

moot hasn't been relevant for years.

I should have used a better example to support my point.

I was referring to the website it self allowing gay and trans content, and even other non mainstream content (furry, MLP). The content is not just porn related (though a big chunk of it is).

On the porn front, I don't agree with liking 'lady dick' twink lovers only. There's 'normal' gay content (male on male).

On the non porn content, lots of posts will begin with 'Im a gayfag' (fag here I used as a catch all self deprecating term, some users will say I'm a oldfag, even seen ladyfag). Never seen any outright harassment of gay people when they post.

Having said that, there is straight gay, trans, minority hating posts and content.

4chan is a wild jungle. Or was.

The pompous tone of your comment exemplifies what actually makes most social media platforms awful, which is how people act on them. Inconsistent moderation is everywhere, and most people getting banned from X absolutely deserve it. If you posted something like this on 4chan, people would quickly tell you to get off your high horse (in more vulgar terms). The nice thing about an anonymous message board is that without a name or upvote count attached to your name, you don't get positive reinforcement for putting on a show of moral superiority, and struggle sessions via petty call-outs or pile-ons are not a thing beyond the lifetime of a thread. And on the other side of the same coin, people are not afraid of damaging their reputation by being uncouth, which helps not take anything too seriously, and enables direct feedback instead of passive-aggressive behavior.

I dont understand why twitter is so prevalent in the tech community; and it's not like you can just 'not use it' - you are at a true disadvantage if you aren't on twitter because of how much discourse around new tech, private equity, etc transpires on it.

I'm surprised a literal echo-chamber in which free speech is suppressed for disagreeing with the party line is responsible for so much productivity because of how many techbros are active on it. What happened to the time where being a techbro meant you were an open source libertarian like Stallman?

Everything happens on X now.

Even when I’m forced to go back to Reddit, all the niche subs I follow just post back to X links where the actual discussion is happening.

It's not just that there's no voting system it's that there's no names. It's pointless to argue on a site like Reddit, but it's ridiculous to argue back and forth on a site like 4chan where you can't even know if you're arguing with the same person from post to post.

Likewise an outside observer can't assign any identity to a series of posts in an argument, so you really have to take every post at face value.

Might I add, 4chan's implementation isn't even particularly good one

All content that violates the law of the United States is banned on 4chan. I don't know where you got that idea.

>a copy of the existing 4chan content

4chan's content is ephemeral. Most of it is gone every few days.

It sounds like everything was running on one server, fwiw.

Good point.

It's not what you think.

Let me give you an example. /k/ is the weapons/military forum, and it's unironically run by US government authorities. Vulgar racial slurs are wholly permitted -- but if you question certain aspects of US military or foreign policy, or suggest that Russia/China/etc. aren't houses of cards that will topple the moment the US wills it, your comment will probably be deleted and you'll be hit with a 3-day ban.

Free. In practice whatever a given janny doesn't like gets the boot. The moderation can get REALLY schizophrenic depending on time zone, and there are persistent rumors that certain boards are controlled by groups of interest (notably the cesspool known as /pol/ is very astroturfed).

If you post "What are your favorite snacks at the movie theater?" you can get a 3 day ban from /ck/ which is too short to appeal. I posted a thread on the Television and Movie board asking what people thought of Matt Walsh's movie What is a Woman and got a 3 day ban which was too short to appeal for posting off topic

Are you genuinely curious, or do you already know this kind of complaint refers to offensive, racist, hateful speech (otherwise known as the type of speech that requires protection, since civil speech that agrees with the popular worldviews does not need protecting)?

My comment wasn't completely serious and should be taken with a grain of salt. But for example there is / was a German janitor or moderator that that treated the German general on /int/ as his personal safe space

It's a web forum, not a Superfund site.

Instead of burning personal time and energy on trying to clean up 4chan, a person can always just... Not.

Let it burn and sink into the swamp. Stop making that DNS query.

4chan janitors aren't victims of anything no matter what happens to them.

The arrogance and better than thou attitude. He was like the male version of Ellen Degeneres.

Honestly, that didn't help. There's a wide type of "controversy" there, and I don't see how 4chan are inherent to any of them, they could've been done via any forum. Or maybe I missed something, specificity would be good.

>Ask HN: Why is nobody using [obscure niche technology from the 80s]?

>Why [popular technology] is [unexpected opinion]