this post was submitted on 01 Aug 2024
87 points (100.0% liked)
hexbear
10235 readers
56 users here now
Now that the old Hexbear fork has been officially abandoned, this community will be used as a space for meta-discussion on the site itself.
founded 3 years ago
MODERATORS
Regex is scary. I view it like the dark side of the force. I did a bunch of work taking "the length of the phrase after the comma until the next ' ' in the string" instead of trying to decipher regex.
regex is awesome ngl.
regexr.com is a great resource
I've never seen it spelled out like that. It might change everything for me on a rainy day. Thank you!
Still to this day I have not bothered to learn regex
And what if i like posting tracker links, as a hobby? 
Thank you for your service 
Good bot, even if it's a little annoying. It'd be cooler if Lemmy had an integrated auto-replace tool for this.
There is an issue open for this exact thing: https://github.com/LemmyNet/lemmy/issues/4905
CleanURLs provides repo of rules: https://github.com/ClearURLs/Rules that can be used for this task.
I'm working my way through the Rust book to learn more about how Rust works so I can add this into the server backend of Lemmy once I feel confident.
Will be following that issue closely! Thanks for sharing
Tracking TikTok links should be completely banned, huge security risk. Admin(s?) can you please consider it?
if they can be detected using a simple regex (no lookaheads/behinds iirc) I think the slur filter can remove them.
Damn, this was on my list of things to do, lol. I have to ask, is there a Hexbear Coding Collective, maybe a publicly hosted Gitea server or even just a Github Organization? I would love to contribute to these projects, and help give back to the Hexbear tech infrastructure in some practical way.
Also, I just want to point out that there is a repo of tracking rules independent of CleanURLs that can be used for this task.
https://github.com/ClearURLs/Rules
That way, you do not have to come up with these regexes yourself.
The robots will save us
Curious to hear input from people who have mod powers on this. What makes the most sense? To mod this bot, or to have the bot point out posts and comments, maybe have the bot reply to tracking links publicly... or something else entirely?
Superb post, ty. Does InsidiousTrackers not provide a comment removal reason though? Just checked the modlog and I think it should show "reason: tracking" or smth.
good catch
Just thought it was weird seeing a buncha removed comment without a "reason" field =)
Can hexbear be made to automatically strip tracking from links?
So if I give someone a tiktok link even if I delete the ? and everything past it, do I still get doxxed? I just have this feeling like I do.
You just want to avoid sharing the URLs that are formatted www.ticktok.com/t/abcd12rfd, as well as the ones that have a ? in them. See my post: On Sharing TikTok Videos.
I will check this out. That makes sense and is crystal clear. Thank you!
Anytime comrade!
if the link is just www.tiktok.com/@username/video/numbers without a ? the url doesn’t have tracking. if it’s the vm.tiktok ones can either open in a browser to get www. version or use a site like urlex.org to get the www. link then remove the ? and everything after. (also works on the tracking reddit links)
I encourage everyone to check this android app that helps cleaning links
https://f-droid.org/packages/com.trianguloy.urlchecker/
Some people here are terrible with link hygiene, but people irl are so much worse
I found a YouTube link in your comment. Here are links to the same video on alternative frontends that protect your privacy:
Please don't have a bot DM me. That's very annoying.
I get that there's some technical challenges that would need to be solved for those tracking links to be stripped out by lemmy itself but I'm just annoyed by a 
saying uhhhh excuse me you used a youtube link instead of some dodgy YouTube frontend that will disappear in a year, or how dare you use a twitter link instead of some twitter proxy that will shut down in 3 months.
Like why not spend the coding time actually fixing the issue instead of just annoying people
It's not about a frontend, we have that already in HexReplyBot. It's about removing a parameter tacked on at the end in your YouTube/Instagram/TikTok links.
It's the same technique. A bot that just replies with 'oh sweaty you should have done something different'
One complains about YouTube or X links and other complains about tracking info in URLs.
It's annoying and instead there should be code in Lemmy that does the URL sanitizing
I agree with you. Seems like there's an active issue in Lemmy for this, so it'll get implemented eventually. Then it'll take a while for Hexbear to update.
Sharing the wrong TikTok link can and has doxed users before, and some users have unsafe living situations if they got doxed.
uhhhh excuse me you used a youtube link instead of some dodgy YouTube frontend that will disappear in a year
You fundamentally do not understand what this post is talking about.
Comrade, operational security is what this post is about, not anticapitalist frontends for media services. TikTok will dox you if you are not careful.