This is a test of what posts that users don't want or don't think add relevant content will look like. This could be posts shared only in chat rooms or even content from some code that we need to keep around.
lets say you didnt share this post with me. well if im going thru the normal post, as i see post 720 and 722, its fair to assume that there is a post in that "missing" spot, making it alot less hidden
i dunno. it just seems that if i was nosy enough i could just iterate through the urls untill i find something with a class of alertH and content of hidden post. I get that the threat wouldnt be that big of a deal, but it is still something that someone malicious would take advantage of.
no no i get that. what i mean is that i can iterate through all the urls and just add 1 to the num, then skip over post that dont have that element but add ones that do to a list. then a person can go thru the list manually and see all the "hidden" stuff. i dont know y anyone would really want to do that but it seems just really easy to unhide stuff like this.
I would suggest making the url be say... the username of the author + a unix timestamp of post creation (now). thatway its less likley for someone to stumble (accidentally or deliberately) upon someones hidden post.
Oh i only picked alterh class because i assume its not present on non-hidden post so it seemed to be a no-brainer if i was a person wanting to scan pages for certain content
0
Welcome to Chat-to.dev, a space for both novice and experienced programmers to chat about programming and share code in their posts.
ummmmm cant i just change the number in the url tho?
can you explain it better?
lets say you didnt share this post with me. well if im going thru the normal post, as i see post 720 and 722, its fair to assume that there is a post in that "missing" spot, making it alot less hidden
the hide not for all of them, just not to be listed in the recent posts, the most voted posts and the 8 posts on the home page
i dunno. it just seems that if i was nosy enough i could just iterate through the urls untill i find something with a class of alertH and content of hidden post. I get that the threat wouldnt be that big of a deal, but it is still something that someone malicious would take advantage of.
he wouldn't be able to change this because the condition value is stored in a database. the alertH class is only used to style the text [Hidden post]
no no i get that. what i mean is that i can iterate through all the urls and just add 1 to the num, then skip over post that dont have that element but add ones that do to a list. then a person can go thru the list manually and see all the "hidden" stuff. i dont know y anyone would really want to do that but it seems just really easy to unhide stuff like this. I would suggest making the url be say... the username of the author + a unix timestamp of post creation (now). thatway its less likley for someone to stumble (accidentally or deliberately) upon someones hidden post. Oh i only picked alterh class because i assume its not present on non-hidden post so it seemed to be a no-brainer if i was a person wanting to scan pages for certain content