2y ago

It's just faster....

35 comments

expired
- Fair point, I made the meme to be silly, and, yes, this is one of the many reasons why tokens in general should expire after some point in time.
  Also the meme isn’t wrong, memes don’t need logic, they’re supposed to give people a giggle.
  
  expired
- Look at this guy over here, nerding out about the WiFi.
  Jk, glad to find someone in the comments correcting the misinformation in the meme. OP is probably a hacker who likes to do session hijacking.
  
  Not a hacker, just a silly goofball.
- JWT sounds great on paper until you have to deal with logout and revocations. Might as well use standard session cookies.
  
  expired
- Fr my thoughts exactly
- And what happens next time they load the site?
  
  expired
- Yeah you really should do both. Some session cookies can just be used as tracking cookies later.
  
  expired
Automatically clear cookies on browser exit, only whitelist the couple of websites you use regularly.
Has the added benefit of making tracking cookies fairly (but not completely) useless
- what if I already block all third party cookies? is there a point?
  
  That's still good practice but first party cookies aren't exactly trustworthy either. IMO, best to whitelist what you trust and use, permablock what you don't, and auto-wipe the rest.
Only ever using private windows and then alt F4ing to automatically delete all session data.
- This is what I do
I have a script called cookie_monster.sh
- Can you post it here, or link to a git?
Doesn't work on every sites, weirdly enough
- These days you'll need to clear localStorage, sessionStorage, and localDb to really do this. The rise in tokens means some sites only use those.
fuckin hate that drake meme
- shows up on a sunny day
  "I fucken hate the rain!"

35 comments