Banned abuser
amasad (2272)

You all may have seen that someone has been going around posting unsavory content (to say the least) to various apps and challenge entries.

With the help of @TheDrone7, we've been able to locate the abuser and ban them from the site for life. We also have all his information and IP address and if the person in question were to return we'll be escalating to the authorities.

I wanted to share this publicly so that:

1- you know that we don't tolerate behavior like this
2- you secure your apps and websites preferably with Repl.it auth (which allowed us to catch the attacker)

Read more about Auth here: https://repl.it/talk/learn/Authenticating-users-with-Replit-Auth/23460

You are viewing a single comment. View All
[deleted]

the banned user is @haltosan

roylatgnail (843)

@sanjaykdragon How did you find out who it was?

[deleted]

@TaylorLiang
EDIT: this link does not work:
http://dolya.me/CHANGES.txt

go to https://repl.it/@Zavexeon/dolyame
and check the public folder, and CHANGES.txt

bossotron13 (65)

@sanjaykdragon You might want to remove it, people might actually login the phishing site.

[deleted]

@bossotron13 how is it a phishing site? what? this is a project by someone on this site

bossotron13 (65)

@sanjaykdragon So why did u link it if the person asked “How did you find out who it was?”, i though it was a phishing site because it asked for my username and password for repl.it.

[deleted]

@bossotron13 oh ok, you can just read CHANGES.txt in https://repl.it/@Zavexeon/dolyame
its in the folder called public

TheDrone7 (938)

@bossotron13 It's not a phishing site LMAO, we just make a request to repl.it to verify the user and get their Email ID, username and avatar icon. It is open source to let those who worry that their credentials might be stolen know that their credentials are as safe as they can be.

Also, it's trust-able enough to win the entire Massively Multiplayer Hackathon.

TheDrone7 (938)

@sanjaykdragon It's supposed to be https://www.dolya.me/CHANGES.txt The www is compulsory if you wish to directly access one of our static files. As when you visit the regular link i.e. https://dolya.me we just have a permanent redirect to https://www.dolya.me irrespective of path. We had to do this because repls can be linked to only CNAMEs and most DNS Management services don't allow CNAMEs at root level so we choose www to be the CNAME.

bossotron13 (65)

@TheDrone7 ask i said in the post above, I though it was phishing because i had no context.