#DropKiwiFarms

  • Want to keep track of this thread?
    Accounts can bookmark posts, watch threads for updates, and jump back to where you stopped reading.
    Create account
Status
Not open for further replies.
Marche said:
This nigga had always been so desperate for a thread and internet clout to play a victim to the point they wrote their own ED page.
Its funny to see him trying to worm his way back into any form of notoriety
Click to expand...
I’m glad other people remember this. He’s so desperate for notoriety, but he’s too much of a faggot to do anything.
 
Mojoi said:
View attachment 3681058

This is stunning, not from how brave but from how braindead this take is.

Troon in question: https://twitter.com/AnnHertzz/status/1559052994863255556/photo/1

Their twitter is full of cringe selfies but my internet is farding so if anyone is interested feel free to dig whatever.
Click to expand...

Ann Ihilation on Twitter

“@Fatal_Irony @An_alien_boi I don't know about that but if true, I condone the use of lies to get rid of kiwifarms. They've caused enough damage outside of just Keffals.”
web.archive.org web.archive.org
 
Last edited:
Tasty Tatty said:
Funny how isn't normal people celebrating our "defeat". Not only normies don't mind for this shit, but you'd think at least they would say "oh, some board stalking people is done? I guess taht's good!". Nope, nada of that.

All people celebrating happen to be the worst degenerate you'll find online.
Click to expand...
Hey if it weren't for them "celebrating" the kiwifarms being "owned" I would have never figured out it had moved to .RU

These people couldn't shut their own mouths if their lives depended on it, they are helping spread the word of the website's new home so everyone can get back to business as usual!
 
I've seen comments like that on facebook for fucks sake, some random person making a braindead fedpost doesn't mean anything. These cherry-picked comments are completely meaningless, is anyone really falling for them as a reason an entire site should be taken down?
 
Because registrations are locked, it's become clear that those who want this site shut down have moved on to the next attack vector: hijacking old / dormant accounts with insecure passwords. This represents a huge security risk to the site and should be mitigated ASAP. I would take the following steps:

  1. Beef up complexity requirements for all passwords going forward. Follow the guidance set out in NIST 800-63B.
  2. Cross-reference the existing membership's email addresses against data from the HaveIBeenPwned API. Immediately deactivate any accounts with breached email addresses and require manual, moderator-approved re-activation.
  3. Extract user password hashes from the forum database and run John The Ripper (or Hashcat) to weed out any weak passwords. Revoke active session cookies and require immediate password resets for any accounts with cracked passwords.
  4. Deactivate login credentials for all accounts that have been inactive for 30 days or with fewer than 50 posts. Require a password reset for all these users.

Bonus:
  1. Download all avatars, run them through an ML pipeline using OpenCV or YOLOv5 (e.g. https://github.com/zymk9/yolov5_anime) and immediately deactivate anyone with an anime profile picture.
 
RobertDole said:
Because registrations are locked, it's become clear that those who want this site shut down have moved on to the next attack vector: hijacking old / dormant accounts with insecure passwords. This represents a huge security risk to the site and should be mitigated ASAP. I would take the following steps:

  1. Beef up complexity requirements for all passwords going forward. Follow the guidance set out in NIST 800-63B.
  2. Cross-reference the existing membership's email addresses against data from the HaveIBeenPwned API. Immediately deactivate any accounts with breached email addresses and require manual, moderator-approved re-activation.
  3. Extract user password hashes from the forum database and run John The Ripper (or Hashcat) to weed out any weak passwords. Revoke active session cookies and require immediate password resets for any accounts with cracked passwords.
  4. Deactivate login credentials for all accounts that have been inactive for 30 days or with fewer than 50 posts. Require a password reset for all these users.

Bonus:
  1. Download all avatars, run them through an ML pipeline using OpenCV or YOLOv5 (e.g. https://github.com/zymk9/yolov5_anime) and immediately deactivate anyone with an anime profile picture.
Click to expand...
+10 on banning anyone with an anime avatar
Nothing good has ever been produced by someone with one
 
Victory Leo said:
View attachment 3681123
Tweet|Archive
Click to expand...
I like that they're now resorting to critiquing every cringe/edgy post on Kiwifarms, a forum that's frequented by thousands of people.

That's exactly what Kiwifarms does, mock stupid comments on the internet. KF has its own meta thread "Lol look at this spiderman faggot" that specifically mocks our own retarded posts here.
 
RobertDole said:
Because registrations are locked, it's become clear that those who want this site shut down have moved on to the next attack vector: hijacking old / dormant accounts with insecure passwords. This represents a huge security risk to the site and should be mitigated ASAP. I would take the following steps:

  1. Beef up complexity requirements for all passwords going forward. Follow the guidance set out in NIST 800-63B.
  2. Cross-reference the existing membership's email addresses against data from the HaveIBeenPwned API. Immediately deactivate any accounts with breached email addresses and require manual, moderator-approved re-activation.
  3. Extract user password hashes from the forum database and run John The Ripper (or Hashcat) to weed out any weak passwords. Revoke active session cookies and require immediate password resets for any accounts with cracked passwords.
  4. Deactivate login credentials for all accounts that have been inactive for 30 days or with fewer than 50 posts. Require a password reset for all these users.

Bonus:
  1. Download all avatars, run them through an ML pipeline using OpenCV or YOLOv5 (e.g. https://github.com/zymk9/yolov5_anime) and immediately deactivate anyone with an anime profile picture.
Click to expand...
Good ideas, yet one step further needs to be taken for it to work.

Any accounts that fail a set amount of the following criteria:

-More than 30 days old
-Have been active in the last 30 days
-Have more than 50 posts
-Have more than 10 posts in 2022

Should automatically, without exception, be unable to post in either Stinkditch or the Matthew Prince Lied thread for a week.
 
RobertDole said:
Because registrations are locked, it's become clear that those who want this site shut down have moved on to the next attack vector: hijacking old / dormant accounts with insecure passwords. This represents a huge security risk to the site and should be mitigated ASAP. I would take the following steps:

  1. Beef up complexity requirements for all passwords going forward. Follow the guidance set out in NIST 800-63B.
  2. Cross-reference the existing membership's email addresses against data from the HaveIBeenPwned API. Immediately deactivate any accounts with breached email addresses and require manual, moderator-approved re-activation.
  3. Extract user password hashes from the forum database and run John The Ripper (or Hashcat) to weed out any weak passwords. Revoke active session cookies and require immediate password resets for any accounts with cracked passwords.
  4. Deactivate login credentials for all accounts that have been inactive for 30 days or with fewer than 50 posts. Require a password reset for all these users.

Bonus:
  1. Download all avatars, run them through an ML pipeline using OpenCV or YOLOv5 (e.g. https://github.com/zymk9/yolov5_anime) and immediately deactivate anyone with an anime profile picture.
Click to expand...
I’d add making email (rather than the choice of username OR email) a required log in credential.

My account was one of the ones that returned a ‘locked out due to too many failed attempts’ response on Tor. My email is secret and unique to this account so, barring some Tor weirdness, anyone attempting to access my account was relying on my username.
 
Account said:
Has Null posted any stats or info on attempts to hack into KF accounts? I couldn't sneed because someone tried to break into mine and it locked my account from further logins.
Click to expand...
So far nobody has tried to hack mine. I feel slightly insulted that nobody wants to pretend to be me.

One thing that warms my cold lil' potato heart is knowing that whether the site is up or not, WE will still be everywhere.
I mean, I know I could look someone in the eye and say "Kiwi Farms? I've never heard of that, but they sound terrible! I'll be sure to stay away!" with a straight face. Hell I could even do it while wearing one of the KF shirts I own.

They... DO realize that we're everywhere, right? That we don't wear a uniform or anything?
Just think, one of these twitter twits might have chatted with one of us today! LOL!
 
Crescent Fresh said:
Good ideas, yet one step further needs to be taken for it to work.

Any accounts that fail a set amount of the following criteria:

-More than 30 days old
-Have been active in the last 30 days
-Have more than 50 posts
-Have more than 10 posts in 2022

Should automatically, without exception, be unable to post in either Stinkditch or the Matthew Prince Lied thread for a week.
Click to expand...
at least i'll go back to shitposting on games lifestyle threads until that stormy week passes.
RobertDole said:
Bonus:
  1. Immediately deactivate anyone with an anime profile picture.
Click to expand...
I was 100% with you, now i'm 200% with your idea.
Niggernerd said:
>posts faggot furry comment
>neg stickers
Pretty sure you just ruined your own argument that KF supported christchurch.
Click to expand...
one detail that passed by the faggot, keffals at least hide it to not show that kiwis dislikes those things and will laugh at anyone doing it.
 
Last edited:
Status
Not open for further replies.
Back
Top Bottom