jeffalo admin beta

creator of the hit website wasteof dot money

wall

posts

jeffalo — 8/30/2024, 4:33:30 PM

having your flashlight on accidentally is the modern equivalent of having your fly down

♥ 21 ↩ 1 💬 5 comments
jeffalo — 8/28/2024, 6:02:29 AM

this is what no notepad does to a programmer

original post deleted
♥ 15 ↩ 0 💬 2 comments
jeffalo — 8/25/2024, 12:46:43 PM

i guess we doin circles now

♥ 18 ↩ 2 💬 6 comments
jeffalo — 8/24/2024, 9:30:14 AM

1600 here we go!!!!! (I got at least 3 questions wrong lol)

♥ 15 ↩ 0 💬 2 comments
jeffalo — 8/22/2024, 6:03:24 AM

am I weird if I say that as much as I love music, I’d want to work without headphones?

↩ repost
wahsp — 8/21/2024, 10:59:36 PM

somewhat related but I’ve been at my first desk job which means I can have headphones while working and wow choosing my own background noise makes 40 hours go by so much easier

↩ repost
allyz — 8/21/2024, 4:09:25 PM

love that i can choose the background music at work

♥ 15 ↩ 1 💬 0 comments
♥ 8 ↩ 1 💬 0 comments
♥ 12 ↩ 1 💬 6 comments
jeffalo — 8/20/2024, 8:51:18 PM

actin’ goofy; comic sans.

♥ 15 ↩ 0 💬 9 comments
jeffalo — 8/17/2024, 4:34:19 PM

also yes, wasteof (and everything else i host) is currently slow for everyone, for some reason past my modem there’s 50%+ packet loss to the internet. it could be up to a week before we see any improvement.

♥ 25 ↩ 2 💬 2 comments
jeffalo — 8/17/2024, 10:08:53 AM

bad news everyone, wasteof is actually EXTREMELY insecure because this guy just listed a bunch of vulnerabilities from the first page of google.

↩ repost
disease — 8/16/2024, 2:18:20 PM

warning!

From the tests i have done, there are many vulnerabilities on this website, there are also a lot of bugs. Example: when posting something, if you spam click `post` it will create a post for every time you click the button, there should be an implementation to limit the time between posts and to make the button a one time click. (THIS BUG MAKES THE SITE LAG!). its also a pain to delete all of the posts if you accidentally do so as the site refreshes but will still lag and there is a small chance that the post will not be deleted. There is also a password vulnerability… maybe don’t have the user’s passwords get stored as a plain document.

THERE ARE VULNERABILITIES IN THE REPO!; Yes, even tho the repo is the legacy site and isn’t used anymore it is still good to state the vulnerabilities on the repo as people might use the template to make their own site like this and wont know of the vulnerabilities in the code:

List of the vulnerabilities on the repo: SQL Injection, Cross-Site Scripting (XSS), Insecure Direct Object Reference (IDOR), Lack of Input Validation, Insecure, Outdated Dependencies, Lack of Error Handling, Insecure Session Managemen, Storage of Sensitive Data(user and password information: Insecure Password Storage, Weak Password Hashing, Lack of Password Salting, Insecure Password Verification, Missing Password Complexity Requirements, insecure Password Reset Token Generation, insecure Password Storage in Sessions), Lack of Secure Communication… sry <3

♥ 6 ↩ 7 💬 26 comments
♥ 23 ↩ 0 💬 7 comments
jeffalo — 8/10/2024, 12:29:45 PM

you can’t follow my scratch account @Jeffalo, it’s broken

♥ 23 ↩ 2 💬 9 comments
jeffalo — 8/6/2024, 8:32:44 PM

fool me once, shame on -- shame on you. fool me -- you can't get fooled again.

gotta be one of the sayings of all time

♥ 20 ↩ 2 💬 1 comment
jeffalo — 7/29/2024, 8:34:35 AM

todays my last day on the scratch team, i really enjoyed working with the people who make scratch possible and im excited for whatever comes next :)

♥ 39 ↩ 0 💬 20 comments
jeffalo — 7/27/2024, 8:33:03 PM

this Scratch project has lived rent free in my mind for the last decade

https://scratch.mit.edu/projects/12223209/

♥ 17 ↩ 0 💬 3 comments
jeffalo — 7/26/2024, 6:55:56 AM

guys i was under the impression that i am the president of wasteof

♥ 37 ↩ 3 💬 20 comments
jeffalo — 7/20/2024, 9:10:35 PM

THIS IS COOL!

↩ repost
live — 6/20/2024, 11:19:08 PM

Episode 1: Introductions!

In this episode, @skylar, @radi8, @siliconecb_ and @flex discuss wasteof.money’s past, and what is yet to come!

Tune in: https://linktr.ee/wasteof.live

♥ 27 ↩ 3 💬 9 comments
♥ 17 ↩ 0 💬 7 comments
jeffalo — 7/20/2024, 9:59:19 AM

crowdstrike sounds like the name of a domestic terrorist organization

♥ 27 ↩ 0 💬 5 comments