As we feared, the owner of the old domain has already betrayed the community and redirected the domain. After the redirect propagates, hundreds of thousands of loyal patriots may not know where to find home!
Spread the word that we've moved! Gab, Twitter, etc! Here's an example (Also, new Gab account for the new domain name):
https://gab.com/PatriotsDotWin/posts/105594470022099271
Edit-
A lot of concerns have actually been answered by more technically savy users in the comments,
No, they said if you were logged out, that was bad. And that the new site would likely blindly accept the first password provided. I was not logged out. My browser does not remember passwords, so it could not have logged me back in. Or... It's all bullshit and it's been compromised for a while already. Probably back when that 'hold the line' lie started.
the cookie is still valid, which means that the front end hosts are the same, the back end db is the same. URL may be different, but everything else is the same. Even the ssl cert is the same.
Yep. The fact the domain changed and SSL didn't freak out is a good thing. To every pede that doesn't know what that means... it means a ton of extremely annoying extra measures on your computer designed to warn you if something's amiss, aren't ringing. And trust me, they got super annoying the past 2 years. So I feel safe. The token is still valid, the cert is good, AND the domain name changed... even the most secure site will freak out if you change a domain name, unless you've set up a line of trust. Well it looks like they setup a line of trust. So there.
EDIT-
Dusted off the old poorly underused, but verified, thedonaldreddit Gab account for additional verification:
https://gab.com/thedonaldreddit/posts/105595244151890950
Edit- As far as media posts go, it's fixed for new posts, being worked on for old ones.
I didn’t need to log back in, personally.
Me neither. I think this was an unsuspected development. After the explanation about why the domain switch happened, I think this place is still legit. I didn't need to log back in either.
Either we've been compromised or MAGAlikethis is just stupid.
How are you making this comment then?
SSO?
I didn’t need to log back in either. This is a webpage redirect its different.
Site being compromised means the site name stays the same in an effort to remain covert but suddenly you are being asked your username and password. This is when you try a different password other then your normal one and if it allows you in then you know we are fucked.
Please explain. Everyone else says SSO is fine.
Agreed .. does anyone get asked to confirm the bikes or boats anymore ?
Not for me. And even still, so what?
I also didn't.
Me neither. I just went to TDW and it said go to Patriots.win, here I am
that only says "the servers didn't log you out", not "the BLMNSAFAANGLGBQT" are running it now
No, they said if you were logged out, that was bad. And that the new site would likely blindly accept the first password provided.
I was not logged out. My browser does not remember passwords, so it could not have logged me back in.
Or... It's all bullshit and it's been compromised for a while already. Probably back when that 'hold the line' lie started.
the cookie is still valid, which means that the front end hosts are the same, the back end db is the same. URL may be different, but everything else is the same. Even the ssl cert is the same.
Yep. The fact the domain changed and SSL didn't freak out is a good thing.
To every pede that doesn't know what that means... it means a ton of extremely annoying extra measures on your computer designed to warn you if something's amiss, aren't ringing. And trust me, they got super annoying the past 2 years.
So I feel safe. The token is still valid, the cert is good, AND the domain name changed... even the most secure site will freak out if you change a domain name, unless you've set up a line of trust.
Well it looks like they setup a line of trust. So there.
working for a very large corp, ssl certs are the most annoying part of updating integral applications, the smallest change, even if a wildcard, breaks literally everything.
and I've never been stickied, or part of a stickied post, feelin pretty privileged right now.
All that means is they got a new cert for the new domain. Not like the old one carried over to the new one.
^This
nice to see the pthc posting feds be transparent instead of being covert like they were with playpen
Lol
I'm gonna go with option numero uno.
Trust me, I'm an expert!
I might be reading between the lines here, but...
I already got logged out once, that was months ago.
NOT A VPN SALESMAN - but your right we all need protection
Express VPN and ProtonVPN appear to be the patriotic choices for now.
You get protonvpn if you sign up for their plus package, right? Is Switzerland part of 14 eyes?
i went with Nord but they are all the same me thinks?
I have confirmed that patriots.win does NOT blindly accept incorrect passwords for accounts that have not logged in for weeks.
Is this reassuring though? If the directory structure of td.win was cloned and the redirect mapped to the clone site, wouldn't the passwords be retained as a part of the new directory with the same filepath?
I just did a test. I have two accounts here because I forgot my password on the first account. I tried to log into my old account with a random password and it did not let me in.
Thank you! This performs the test the mods told us to.
Anyone worrying that ALL our mods are really Federal bastards, well then either they always have been or they aren't now. They didn't all switch because Bidet got installed as OWG puppet.
Come on, man!
I know, I saw it.
I never entered a password.
Makes you wonder where and how the site is hosted. Shared solutions typically used Apache2 while if you got your own servers you'll typically use Nginx because it's more efficient. I'll also find the choice of GNU+Linux distribution rather interesting. RHEL is an enterprise dist, commonly used commercially. Communities and non profits on the other hand typically uses Debian, Ubuntu or CentOS.
AFAIK it's hosted with Epik, same as gab.com
Dude you're fucked in the head.
Read the thread.
No, they talked about the site being compromised if users were logged out. I and others logged out and attempted the ‘use bad PW’ login that Doggos recommended, and it didn’t work, so I believe we are good. But I only have Doggos’ word to go on.
Just saying they have been consistent.
I'm willing to bet there are other ways the site could be compromised outside of the narrow guidelines set forth by Doggos. Several questions. Could the AWOL mod have absconded with our personal login data? How secure is our data moving forward? Do we have a way of knowing the legitimacy of the current mods' accounts?
If they "absconded with our personal login data" so what? They could post random bs to our account, but nothing else. How is that worth the trouble?
my login is still valid here
They said it's compromised if we are logged out.
They said if we are ever logged out, to sign in with a different password. If it works, then you know the site is compromised.
I logged out and put in a fake password. It didn't work. So, everything seems to be working for me.