this post was submitted on 28 Nov 2023
21 points (100.0% liked)
Technology
37603 readers
532 users here now
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Or we could take a look at the javascript ourselves, like they say to do?
Everyone's asking for a writeup, but like... there's not any other JS programmers who could take a look and verify?
Nobody wants to trust this guy, but also nobody wants to do the legwork to verify it.
Most JS shipping on the web is minified, with variables renamed to random names, you can't just open it and search for
maliciousFunction.Also their claim of Twitch doing network sniffing in a browser should be impossible unless Twitch has found and is actively exploiting a security flaw in modern web browsers.
Technically, twitch could sniff all the traffic exchanged with their user. It would be pointless as they already know the content of the transmission, though
They want the writeup, because the claims are too vague to falsify.
Yeah, that's why I asked in the first place. I'm zero interested in the credibility of that person. Just somebody check if it's factual. I'm not a Javascript-person but I bet there are debugging-tools and de-minifiers available. Or just someone press Ctrl+Shift+I and look at the inspector.
Edit: Nevermind. Maybe the credibility of an account sometimes is enough.