• Velypso@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    30
    arrow-down
    7
    ·
    edit-2
    10 hours ago

    Ah nice.

    Time to implement a social score. Those who rate highly have better access to social areas.

    Those who rate lower are fucked for the rest of their life.

    This sounds like such an amazing idea that has no shortcomings whatsoever!

    Edit: /s

  • wizbiz@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    9
    arrow-down
    34
    ·
    5 hours ago

    Lots of men in this thread real upset about this app pointing out how the majority men are shit

  • pivot_root@lemmy.world
    link
    fedilink
    English
    arrow-up
    92
    ·
    17 hours ago

    Tea was storing its users’ sensitive information on Firebase, a Google-owned backend cloud storage and computing service.

    Every time. With startups, it’s always an unsecured Firebase or S3 bucket.

    • NeilBrü@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      ·
      edit-2
      7 hours ago

      I’m certainly no web security expert, but shouldn’t Tea’s junior network/backend/security developers, let alone seniors, know how to secure said Firebase or S3 buckets with STARTTLS or SSL certificates? Shouldn’t a company like this have some sort of compliance department?

      • zqps@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        4 hours ago

        It’s a little more complex than that. If you want the app on the user device to be able to dump data directly into your online database, you have to give it access in some way. Encrypting the transmission doesn’t do much if every app installation contains access credentials that can be extracted or sniffed.

        Obviously there are ways around this too, but it’s not just “use TLS”.

        • Chulk@lemmy.ml
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          3 hours ago

          Wouldn’t some sort of proxy in between the bucket and the client app solve this problem? I feel like you could even set up an endpoint on your backend that manages the upload. In other words, why is it necessary for the client app to connect directly with the bucket?

          Maybe I’m not understanding the gist of the problem

        • NeilBrü@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          edit-2
          3 hours ago

          Encrypting the transmission doesn’t do much if every app installation contains access credentials that can be extracted or sniffed.

          Encrypt the credentials then? Or OAUTH pipeline, perhaps? Automated temporary private key generation for each upload (that sounds unrealistic, to be fair)? Can credentialing be used for intermediary storage that encrypts the data on that server and then decrypted on the database host?

          Clearly my utter “noobishness” is showing, but at least it’s triggering a slight urge to casually peruse modern WebSec production workflows. I am but a humble DNNs-for-parametric-CAD-modelling (lots of Linear Algebra, PyTorch, and Grasshopper for Rhino) researcher. Thus, I am far removed from customer-facing production environments, and it shows.

          Any recommendations on literature or articles on how engineers solve these problems in a “best practices” way that you can recommend? I suppose I could just look it up, but I thought I’d ask.

      • gian @lemmy.grys.it
        link
        fedilink
        English
        arrow-up
        10
        arrow-down
        2
        ·
        8 hours ago

        I am not sure, but I read somewhere that the developer(s) used vibe coding to create the app so…

        • Canaconda@lemmy.ca
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 hour ago

          A lot of people have speculated that.

          According to their statement their code was written in Feb/2024 and predates “vibe coding”

    • Cid Vicious@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      8
      ·
      3 hours ago

      I mean, yes, but does that take priority over women who are worried about their safety? There’s been women doing this over local Facebook groups for a long time. Defamation of this sort is not a new issue.

      • Echo Dot@feddit.uk
        link
        fedilink
        English
        arrow-up
        5
        arrow-down
        1
        ·
        2 hours ago

        It was defamation the entire time just because somebody made it an app rather than a Facebook group doesn’t make any difference. It was always a crap thing to do.

        Of course Tea took it to an entirely new level of stupid.

        • Cid Vicious@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          3
          arrow-down
          2
          ·
          2 hours ago

          It was potentially defamation when it was just women…talking to one another, too. This seems like a pretty solid case of men looking at something women do to protect each other, and saying “…but what about the men who could be negatively affected in some cases?” I also think the tone in which this is being discussed is pretty revealing about Lemmy’s demographics.

  • Bort@hilariouschaos.com
    link
    fedilink
    English
    arrow-up
    57
    arrow-down
    1
    ·
    20 hours ago

    Tea wasn’t hacked. Tea posted these images to a public file sharing site. Tea claimed that they deleted these images after verifying the applicant was a woman but clearly that was a fraudulent claim.

  • absGeekNZ@lemmy.nz
    link
    fedilink
    English
    arrow-up
    44
    arrow-down
    21
    ·
    18 hours ago

    Change the target to any other group and the outrage would be 100-10000 fold bigger.

    Try it out, instead of Women rating men, try subbing in various minority groups or races.

    Bonus points for the most offensive combinations…

    e.g. Russians rating Ukrainians in your area…it can get pretty bad…I can think of many worse combos.

    • Phoenixz@lemmy.ca
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      4
      ·
      5 hours ago

      I’m sorry but I’ll just say it out right: new feminists are the absolute worst

      Don’t get me wrong, I’m all for equality where possible. Where isn’t equality possible? Well I’d like to conceive a child, but the plumbing isn’t exactly useful for that. That sort of thing. Beyond that, were all the same, and IDGAF about your skin color, sexual preferences or whatever. I live by live and Let live, don’t be an asshole, it’s not that hard to be respectful

      New feminists though are the ones coming up with ideas like this website. On the surface, anyone could say that it’s not a bad thing to have a place for women to talk about how to protect themselves. In reality though, it’s a place where men, innocent or not, get doxxed and made to be rapists.

      There are some subs here on Lemmy as well that were very sad to see this shitshow of a website go, lamenting the fact that now they need a different place to dex people. Try not to tell them that doxxing is bad, it gets you banned.

    • AmbitiousProcess (they/them)@piefed.social
      link
      fedilink
      English
      arrow-up
      39
      arrow-down
      10
      ·
      15 hours ago

      I think the key reason this was seen as not being terribly offensive was the fact that women are disproportionately more likely than men to be on the receiving end of tons of different negative consequences when dating, thus to a degree justifying them having more of a safe space where their comfort and safety is prioritized.

      1

      However I think a lot of people are also recognizing now that such an app has lots of downsides that come as a result of that kind of structure, like false allegations being given too much legitimacy, high amounts of sensitive data storage, negative interactions being blown out of proportion, etc. I also think that this is yet another signature case of “private market solution to systemic problem” that only kind of addresses the symptoms, but not the actual causes of these issues that are rooted more in our societal standards and expectations of the genders, upbringing, depictions in media, etc.

      • DancingBear@midwest.social
        link
        fedilink
        English
        arrow-up
        20
        arrow-down
        11
        ·
        edit-2
        13 hours ago

        I’m always reminded of the fact that women on dating sites rate 80% of the men as below average….

        And the dating advisors who have written numerous articles about how women don’t really know or aren’t really honest with themselves about what they are looking for in a partner….

      • absGeekNZ@lemmy.nz
        link
        fedilink
        English
        arrow-up
        10
        arrow-down
        6
        ·
        13 hours ago

        I was making the point, that despite the fact that this is mildly ok. The test for anything that gives one group power over another, is to switch the groups.

        If it’s still reasonable, than it is probably OK to keep it. If however it seems wrong after the switch, the bar to keep the power imbalance should be very high.

        • floofloof@lemmy.ca
          link
          fedilink
          English
          arrow-up
          10
          arrow-down
          12
          ·
          edit-2
          12 hours ago

          That’s a very superficial test that deliberately omits the social and historical context that makes sense of these categories. You can’t just insert one party for another in statements about a relationship where one side has more power and privilege than the other, and look at your feelings about the result to evaluate the statements. White people have historically mistreated everyone else and robbed them of freedom and power. Men have historically abused women. To say “let’s swap the words and see how we feel then” is not a reasonable way of evaluating statements about the relationships between these groups.

          What this article says about the importance of entrenched power structures in racism also holds true about the relations between men and women:

          https://www.aclrc.com/issues/anti-racism/cared/the-basics-level-1/myth-of-reverse-racism/

          • absGeekNZ@lemmy.nz
            link
            fedilink
            English
            arrow-up
            10
            arrow-down
            6
            ·
            11 hours ago

            You can, and do.

            It helps set the bar, it is a tool for determining how to assess what level of imbalance is reasonable.

            It’s not the only tool, nor an I arguing for it to be.

      • rottingleaf@lemmy.world
        link
        fedilink
        English
        arrow-up
        7
        arrow-down
        12
        ·
        10 hours ago

        Stats depend on perception. Where a woman reports abuse, a man often spends an evening drinking or something similar. Not reporting abuse.

        Expectations of men are too somewhat cruel. You should be grenadier-tall (or gorilla-wide, point being, you should look fit), with facial features like those of Kianu Reeves, with voice like that of Orlando Bloom, confident like some CEO, honorable like a samurai from some movie, yet able to override that honor at her whim and do any atrocity to make the world better for her. Like some picture of 1930s’ propaganda.

        If you don’t deliver, then she silently pities herself and silently looks down at you for that. But God forbid you seem like that picture in some regard and then inevitably turn out to be more human, that deceit she won’t forgive.

        It was a problem a century ago that women were mostly right-wing and chauvinist and traditionalist. Most of that has been undone, but not how women in average see gender relations.

        OK, so about the app - I won’t be surprised if it was an intentional honeypot, honestly, to expose those who will use it. And it’s a bad idea, there’s no way to verify anonymous accusations, which means it’s a tool for defamation of any man, and a way to discredit things of the kind written there at the same time.

        • Balerion@piefed.blahaj.zone
          link
          fedilink
          English
          arrow-up
          9
          arrow-down
          3
          ·
          9 hours ago

          These alleged high standards women hold are largely imaginary. It’s only kind of like that on dating apps, and that’s because they’re 80% male, so women HAVE to be picky.

          • rottingleaf@lemmy.world
            link
            fedilink
            English
            arrow-up
            5
            arrow-down
            1
            ·
            8 hours ago

            I agree. High standards and common ideas of “right” are generally present among people insecure and easily gaslighted.

            Such as those that would use this app. Point?

    • surewhynotlem@lemmy.world
      link
      fedilink
      English
      arrow-up
      9
      arrow-down
      7
      ·
      17 hours ago

      Russians rating Ukrainians

      Interesting analogy. You realize you have it backwards, right? Women are the Ukrainians on this scenario.

    • Vanth@reddthat.com
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      11
      ·
      14 hours ago

      Might want to read up on the origins of Facebook before turning this into a gender wars thing.

      • absGeekNZ@lemmy.nz
        link
        fedilink
        English
        arrow-up
        16
        arrow-down
        1
        ·
        13 hours ago

        Nothing about gender wars here.

        Just because Facebook is shit, doesn’t make this any better.

    • betterdeadthanreddit@lemmy.world
      link
      fedilink
      English
      arrow-up
      111
      arrow-down
      3
      ·
      21 hours ago

      You sign up and then a while later, your personal information gets leaked to the public. Not sure what its other purpose is.

      • ORbituary@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        30
        arrow-down
        2
        ·
        20 hours ago

        That’s corporate social media/apps in general. Does this thing basically let people list crappy things that happened to them by specific humans?

          • Nima@leminal.space
            link
            fedilink
            English
            arrow-up
            18
            arrow-down
            6
            ·
            20 hours ago

            it seems its an app that helps women flag potential dating candidates as being dangerous or red flags.

            there is the potential for doxxing that comes with that, but I can absolutely understand its use and need when not abused in that manner.

            i wonder if there’s the potential for a different app with more encryption and a way to prevent doxxing and abuse.

            • Echo Dot@feddit.uk
              link
              fedilink
              English
              arrow-up
              1
              ·
              2 hours ago

              i wonder if there’s the potential for a different app with more encryption and a way to prevent doxxing and abuse.

              You would have to have everyone take a polygraph or something (not that they actually work but a lot of people don’t know that so maybe it would prevent them from lying in the first place). There’s no way to prevent people from lying for whatever reason they have and there’s no way to detect whether or not the thing they have posted is truthful.

              The truth is as much benefit as the app may have when used properly the risk of abuse is far too high for it to ever be workable.

              If you have a smoke alarm in your house that occasionally explodes and sets your house on fire, but the rest of the time actually works as a fire alarm, then it’s not a useful product, as even if the chance of it exploding was less than 1% it would still eventually blow up your house, whereas if you never installed the alarm there was every possibility your house will never catch fire. So game theory suggests that you are better off without it.

              Same with this app, sure it might prevent you experiencing a bad date but there’s every possibility that it will also cause you not to date somebody who’s actually a nice person. You are far better off just making that judgement yourself as you always did. And to be clear given human nature, the likelihood of the “fire alarm exploding” is probably a lot higher than 1%

            • 0x0@lemmy.zip
              link
              fedilink
              English
              arrow-up
              5
              arrow-down
              1
              ·
              7 hours ago

              i wonder if there’s the potential for a different app with more encryption and a way to prevent doxxing and abuse.

              Encryption, sure.
              Preventing doxxing? I highly doubt it. But hey, it’s women doing it so it’s ok and anyone who criticizes that is an incel.

            • Ilovethebomb@sh.itjust.works
              link
              fedilink
              English
              arrow-up
              29
              ·
              19 hours ago

              There’s definitely a use case, but there’s an inherent power imbalance to these products that makes sure they will always be misused. The submitters are anonymous, and it’s up to the person being reported on to prove the accusations are false.

              Or, they’re supposed to be anonymous.

              • 0x0@lemmy.zip
                link
                fedilink
                English
                arrow-up
                7
                arrow-down
                1
                ·
                7 hours ago

                it’s up to the person being reported on to prove the accusations are false.

                The person doesn’t even know they’re mentioned in the app.

                • Ilovethebomb@sh.itjust.works
                  link
                  fedilink
                  English
                  arrow-up
                  5
                  arrow-down
                  1
                  ·
                  7 hours ago

                  Which is even worse, because unless someone tells them, they’re blissfully unaware.

                  With most forms of Libel, at least the victim will see it in a timely manner.

            • grue@lemmy.world
              link
              fedilink
              English
              arrow-up
              22
              arrow-down
              5
              ·
              18 hours ago

              How do you warn people about a potential dating candidate being dangerous without doxxing the potential dating candidate? “Hey, watch out for [anonymous person]” doesn’t sound very useful.

              • Nima@leminal.space
                link
                fedilink
                English
                arrow-up
                6
                arrow-down
                2
                ·
                16 hours ago

                …you know? that’s a fair point. I’m not sure how it would work. but it would be nice to know some stuff if its important.

        • don@lemmy.ca
          link
          fedilink
          English
          arrow-up
          3
          ·
          20 hours ago

          Having no experience with the app whatsoever, I can only guess, and I’d guess that it does as you suggest, though there may be varying levels of specificity involved.

        • Nima@leminal.space
          link
          fedilink
          English
          arrow-up
          6
          arrow-down
          8
          ·
          20 hours ago

          it also lists criminal history that might not be disclosed on a dating profile. and other information that might be a red flag.

            • Nima@leminal.space
              link
              fedilink
              English
              arrow-up
              10
              arrow-down
              3
              ·
              19 hours ago

              indeed. there’s the potential for abuse and doxxing. but I think the app could be done in a safe way. and with much less leakery.

              • AwesomeLowlander@sh.itjust.works
                link
                fedilink
                English
                arrow-up
                23
                arrow-down
                1
                ·
                19 hours ago

                How would you implement the app in its current concept, without the possibility for abuse? It seems inherent to the very idea of it.

                • Lfrith@lemmy.ca
                  link
                  fedilink
                  English
                  arrow-up
                  4
                  arrow-down
                  2
                  ·
                  9 hours ago

                  Meowmeowbeans social pressure where people will refuse to meet or associate with people who have not been vetted and verified by meowmeowbeans members. So people who want to meet meowmeowbeans users would have to join to get screened otherwise they can get lost.

                  Solves the issue of people who never signed up to the social media site having strangers uploading personal photos, videos, names, and stories to a profile page they never consented to. Which is reminiscent of doxing in its current state.

                  So meowmeowbeans certification among consenting members would be the better route to go and socially making those not in meowmeowbeans outcasts. At least there is choice now for people to not be part of the community driven database of people.

                • FauxLiving@lemmy.world
                  link
                  fedilink
                  English
                  arrow-up
                  19
                  ·
                  18 hours ago

                  Yeah, the entire point of the app is that you go there and talk about the bad things a person has done.

                  That seems pretty hard to identify them without posting their image without their consent and discussing private details of their life so others can identify them. It is creepy as hell, at a minimum.

                • Nima@leminal.space
                  link
                  fedilink
                  English
                  arrow-up
                  3
                  arrow-down
                  2
                  ·
                  16 hours ago

                  off the top of my head, I don’t know. i just feel the concept is intriguing and that the idea is a nice one.

                  just the abuse potential is far too high I suppose. but it would be nice to know if someone had stalked someone else, may have spoken or behaved in a violent manner, etc.

                  but I suppose at that point you might as well fingerprint and process any potential suitors lol. 😅

                  the sentiment is great, however.

  • PotatoesFall@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    13
    arrow-down
    39
    ·
    edit-2
    10 hours ago

    Wow just two days ago I see a post about how Lemmy is dominated by men and how that could become a problem, and today I see a comment section where all the incels come out of the woodwork.

    “waaa somebody wants to solve a problem that has never affected me I’m the victim”

    “omg what if people talk behind my back they might find out I’m an asshole? literally 1984”

    “wadabout if this app was racist?!? checkmate”

    I’m not saying this app is good or bad (I can definitely see the problems) but if an article about cybersecurity gets posted and this is our first reaction, makes me lose hope in Lemmy.

    • 9bananas@feddit.org
      link
      fedilink
      English
      arrow-up
      20
      arrow-down
      2
      ·
      edit-2
      7 hours ago

      i mean…an app directly copying a black mirror episode (but almost exclusively targeting a specific demographic) does ring some very, VERY loud alarm bells…

      like, this is literally the plot of nosedive.

      it’s a social credit system.

      and none of the people even know they HAVE a score, so it’s somehow even worse than the fictional scenario.

      this will, absolutely, hurt innocents and it will do so by design.

      “fuck them innocents!”…just because they happen to be men?

      how is that anything other than misandrist?

      how is that defensible?

      how is doxxing, mass libel, and targeted harassment a solution to sexism and rape culture?

      I’d be really interested in hearing anything about how this is supposed to help women, because i struggle to see how sowing massive, unearned distrust between men and women is going to make anyone any safer…

      I’m really, REALLY glad that the GDPR would nuke this sort of nonsense from orbit…uploading pictures of strangers, for the explicit purpose of gossiping about them behind their backs, spreading awful rumors?

      what. the. actual. fuck. is wrong with you people?

      and i don’t mean women, or men: i mean americans and their total disregard for privacy and digital safety. what the hell…

    • rottingleaf@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      1
      ·
      7 hours ago

      “waaa somebody wants to solve a problem that has never affected me I’m the victim”

      Everyone has the problem that they’d want to discuss others behind their back. It’s not accepted because it doesn’t work to any good end.

      “omg what if people talk behind my back they might find out I’m an asshole? literally 1984”

      You won’t find out anything from this. People sometimes lie, especially in such situations.

      but if an article about cybersecurity gets posted and this is our first reaction, makes me lose hope in Lemmy.

      Human adequacy is a big part of cybersecurity.

    • Ilovethebomb@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      2
      ·
      7 hours ago

      You make a valid point, this platform absolutely shits on anyone without technical knowledge, just look at the hundred or so smug replies telling you what flavor of Linux they run if you mention a problem with Windows. So, no surprise everyone is focusing on that, and not the human aspect here.

      Having said that, there is a power imbalance to this that I really don’t like, the accuser gets to hide behind a veil of anonymity, and the accused has their name published, and is forced to defend themselves.

      • suburban_hillbilly@lemmy.ml
        link
        fedilink
        English
        arrow-up
        7
        ·
        7 hours ago

        So, no surprise everyone is focusing on that, and not the human aspect here.

        This is a technology community and the article is specifically about a security breach that exposed massive amounts of sensitive user data.

      • ScoffingLizard@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        9
        arrow-down
        2
        ·
        8 hours ago

        Thanks for looking out for us. However, I, too, am a bit concerned. This is how Facebook started. The tech industry has zero ethics. I recommend women, AND men, have a trusted safety buddy when dating. When I met my spouse, I had two people who knew where I was, the person’s name, photo, employer, and where we were meeting.Do some internet stalking. If I don’t call you in an hour, come looking for me. If I call, I might ask for another hour, but you get the point.