Great job jabronis - attached picture is what the site looks like on an old phone. All the buttons are broken and do nothing, except for the Modlog which somehow is still accessible. Tried different browsers on the phone, tried clearing all the cookies and cache, still doesn’t work.
EDIT: This came off a bit hot and aggro - it just sucks since pre-migration the site worked fine on my dinosaur phone, so I’m pretty frustrated. Makes me appreciate communist web-design (like marxists.org and redsails.org) even more.
Related, I still think for a community like this, needing javascript to be enabled is a big issue opsec-wise.
yeah I’ve literally had someone else’s username/pronouns randomly pop up in the top right corner (on desktop) when I load a new page. As though I was logged in as someone else. Usually it switches back but I also see upvote data and thread titles and other such stuff randomly get substituted for the data that is supposed to be loaded. I only ever experience these kinds of weird glitches on javascript-heavy websites. to this day idk why javascript has this problem but it’s very disorienting and bizarre
Not inherently so. It can be used maliciously, and it can be used usefully. Web browsers are designed to at least contain potential damage by sandboxing the browser processes and by limiting how the javascript can speak to the rest of the computer.
That said, basically 95+% (I make this number up but it’s probably correct) of user ad tracking, which is a nicer term for legitimized spyware, will be written in javascript. The mitigation strategy on desktop is to use the ublock origin extension. The mitigation strategy for cellphones is a big fat “it depends.”
Almost the entirety of exploitable flaws in browsers these days go through javascript; and it’s all of them if considering only the ones that can actually allow you to execute code (in or outside the sandbox).
JS can also be used to fingerprint you far far more precisely than without it.
