With so many variations of Lemmy and fediverse instances, are there any defenses against a malicious server running altered code? Is there a way to prove what code is supposed to be running on each instance?

    • taladar@sh.itjust.works
      link
      fedilink
      arrow-up
      1
      ·
      7 months ago

      I am not talking about defederation, just straight blocking of that website in a corporate or similar network if it is used to target your employees which is what watering hole attacks are all about.

      • dislocate_expansion@reddthat.comOPB
        link
        fedilink
        arrow-up
        1
        ·
        7 months ago

        Yeah, but the average internet users doesn’t understand these concepts. And with the use of “random-lemmy.random” it seems like it might be an easy attack to fall for