We must react about Hexbear.net domain loss
Hexbear.net is probably going to be sold to a complete stranger, and this is a big OpSec issue because there will be rare visitors who can be honeypotted into a malicious Hexbear clone. I think we need to request all mobile Lemmy apps to ban hexbear on the client code side. Or at least add the code to alert anyone connecting to Hexbear.net that it is not safe to visit this domain anymore
We don't know anyone would bother to make a malicious clone. Most likely some anarchist or liberal (heh) will buy it and do something silly like put an anti-ML screed or some NATO propaganda or something else simple there to "troll the tankies" so all this talk is a bit premature.
Also I wouldn't count on all lemmy apps to necessarily cooperate. There have been other instances that have gone offline permanently for instance, is there any precedent to banning closed instances to prevent re-use? If not that would need to be discussed as an official suggested lemmy best practice. Otherwise the app devs, most of whom are probably not that sympathetic to places like that if not potentially outright hostile are unlikely to comply.
Personally I think you're begging to open a whole can of worms proposing app-side site-bans. What's to stop a liberal dev of a big lemmy mobile client from just adding "tankie" domains to prevent tankies from using their app? Once you plant the idea that it's necessary to maintain a ban-list and do so, the temptation to abuse it is immediately there whereas right now it would be at least a little hassle.
Not a site ban. Just put a warning that the domain changed its owner in the past or can be malicious
Most likely the dork who keeps bidding higher is a crypto fanboy. Hexbear is also the name of a shitcoin.
Should be a post about how much it is towards the end of the auction. Could reasonably get it if it's below a thousand; depending on the situation in the coming weeks.
1921 currently lol
Edit: 2345
One of the highest bidders is literally peepee, I assume this is a funny joke from someone who intends to bet infinite amounts and 100% does not intend to pay up
Very good point.
I'm also curious to know if this means anything with regards to registration data.
TL;DR unless the shitlib did a Mission Impossible style heist, all the registration data is just on someone's server, likely in a massive data center wherever they were paying to host the site from. It's probably encrypted (well, it should be) and effectively inaccessible to anyone without the proper keys to access it.
The domain name is just the domain name
When you type in a domain name your DNS resolves that name to an IP address
Without dragging this out overly much, it's like someone stole your phone number. Not your phone.
When people call your stolen number they expect that Illuminati answers. The thief could fake being you, if they were good enough and wanted to.
But they don't have your data. That resides on your phone. The server(s) that were being used to host hexbear, to leave the analogy behind.
There's currently nothing to worry about data theft side of things.
However, with minimum due respect, whoever managed to let the domain registration expire is a top tier... dingus. I honestly don't even know how they let that happen. 🤷♂️