00:16:18 status meeting notes are up 00:16:20 https://wiki.mozilla.org/SeaMonkey/StatusMeetings/2021-11-14 00:16:21 https://wiki.mozilla.org/index.php?title=SeaMonkey%2FStatusMeetings%2F2021-11-14&type=revision&diff=1239110&oldid=1239052 02:32:53 Now we have this https://www.theregister.com/2021/11/18/firefox_cookies_github/ 02:38:36 why would anyone post there cookies.sqlite database on github? 04:11:42 why would ya wanna use github ? when the evil M$$$$ owns it 16:50:18 because it is better than GitLab 17:01:01 and it's free including issue tracknig 18:54:00 GiggityHub and GiggityLab are both terrible, also heavily influenced by Silly Valley 18:54:35 "Thousands of Firefox users accidentally commit login cookies on GitHub" 18:54:41 ...and why is this GitHub's fault!? 18:55:32 as much as I hate SV and modern tech, PEBKAC is no reason to shoot the mesenger 18:55:37 but hey, clickbait! 18:56:38 "Aidan Marlin, a security engineer at London-based rail travel service Trainline, alerted The Register to the public availability of these files after reporting his findings through HackerOne and being told by a GitHub representative that "credentials exposed by our users are not in scope for our Bug Bounty program."" 18:56:46 ah, a sekuritah researcher 18:57:10 stopped taking those guys seriously since Spectre/Meltdown and Ryzenfail 18:57:28 all they want is spotlight to get hired by a SV giant 18:57:49 > Marlin acknowledges that affected GitHub users deserve some blame for failing to prevent their cookies.sqlite databases from being included when they committed code and pushed it to their public repositories. "But there are nearly 4.5k hits for this dork, so I think GitHub has a duty of care as well," he said, adding that he's alerted the UK Information Commissioner's Office because... 18:57:50 ...personal information is at stake. 18:58:02 once again, WHY is GitHub's fault that their users are dumb!? 18:58:59 do people actually backup their home directories over Git to a public service!?!?!? 19:50:04 tomman: kind of my thought exactly but must be some kind of thing we need to understant that enticed popele to do something this stupid. 19:51:45 thye fact that gitub says not my fault i won't help seems not the correct answer should have been not my fault but i will try if i can to assist in figuring out how this happened would be a more useful approach. 19:57:42 something incredibly stupid/silly must be happening for someone to commit his/her/its/whatever cookies.sqlite (or anything private - could be a spreadsheet with all their website passwords) to a public git repo 19:58:29 And if we put measures in force to prevent people from doing that, not only you screw up with people with legitimate needs (say: carefully curated test cases), and of course, the paranoid nutters will scream "GitHub is spying on MEEEEE!!!" 19:59:12 dealing with stupid is dangerous 20:02:51 tomman bug seems to be github related they should be trying to thelpin what must have started from gitub to entice idiots to act so stupidly. 20:03:33 the we are not heping in trying to figure this out is what I blame github for. 20:04:10 ., 20:16:57 i posted this elsewhere... https://www.mmnt.ru/int/get?st=cookies.sqlite 20:17:16 i guess i can get hired now ;-)