this post was submitted on 04 Jul 2023
3 points (100.0% liked)

Lemmy

12572 readers
1 users here now

Everything about Lemmy; bugs, gripes, praises, and advocacy.

For discussion about the lemmy.ml instance, go to !meta@lemmy.ml.

founded 4 years ago
MODERATORS
 

I've been around the Internet for a while now to see people abuse forums. Per the GitHub repo, I see that EXIF data is already stripped from images, but I'm not seeing any mention of extra data detection on Lemmy.

If I was at home I'd test this myself, but it's extremely trivial to hide data in images. This is commonly used by less technical distributors of CSAM, as well as some malware, and should be looked out for if it isn't already.

top 1 comments
sorted by: hot top controversial new old
[–] poVoq@slrpnk.net 4 points 1 year ago* (last edited 1 year ago)

Not sure, but it is easy to configure the auto-conversion to another format like webp which will likely destroy any such hidden data.

Edit: https://git.asonix.dog/asonix/pict-rs is the image backend, so have a look what it can and can not do.