this post was submitted on 09 May 2024
29 points (96.8% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54772 readers
222 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
 

Why does qBittorrent download search indexes when I click update, and do I need to worry about being infected because of it?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 6 months ago (1 children)

Are you talking about search plugins? If you are, that's expected behaviour.

"Note that python plugins/scripts are, by its nature, not considered to be safe. Therefore any use of the unofficial plugins is at your own risk. It is a good practice to audit/take a look at the plugin/script before you install." (From the link)

Have a look at Jackett or Prowlarr (and the rest of the arr suite), it would greatly reduce your attack surface if you are worried about that and they are very easy to set up if you look for the servarr wiki.

[–] [email protected] 2 points 6 months ago (1 children)

It seems like the gif of how it looks wasn't included here it is https://postimg.cc/nXRSKTYZ any drawbacks or disadvantages of using Jackett and Prowlarr.

[–] [email protected] 2 points 6 months ago* (last edited 6 months ago) (1 children)

Yeah, that's happening because you installed and enabled those plugins, and as long as they are maintained, they will be getting updates from time to time.

any drawbacks or disadvantages of using Jackett and Prowlarr.

Not that I know of. You'd have to configure flaresolverr because of certain websites cannot be accessed if you don't pass the CAPTCHA, and that's about it.

Edit: Yeah, I checked now that I was on the computer and seems that I was wrong. Checking for updates installs and enables a small list of plugins without any more input from the user, and even though they are open source, that is not cool.

If you are on the "Search" tab and click on "Search plugins" and check for updates (like on the gif above) you can check if they are installed and if they are enabled, from there right click them to do whatever you want.

[–] [email protected] 3 points 6 months ago (1 children)

I had the same thing, I never installed a piratebay plugin but when I clicked check for update it magically appeared

[–] [email protected] 2 points 6 months ago (1 children)

Yeah, I was wrong before. I don't like this one bit, but I very much doubt there is any malicious intent from anyone at qBit.

Hopefully someone more knowledgeable than me will step in and offer some insight.

[–] [email protected] 2 points 6 months ago* (last edited 6 months ago) (1 children)

I don't believe there are any malicious intentions, but there are two other things that i don't like. Their forum only permits sign-ups with Gmail and Outlook, and their website has a very strict Cloudflare DDoS protection police. I understand the rationale behind Cloudflare's DDoS protection policy, but I would prefer if they used another DDoS protection provider.

[–] [email protected] 2 points 6 months ago (1 children)

Their forum only permits sign-ups with Gmail and Outlook

I went to see if it was true because I found it hard to believe, but you are right. I don't understand why it is like this, given the nature of the program and the whole philosophy behind it.

I guess that we can consider ourselves lucky that they don't use Google's CAPTCHA.

Tomorrow I will raise an issue on their repo, I want to see what is the official stance on all this bullshit.

[–] [email protected] 1 points 6 months ago (1 children)

Thanks for making a issue. Can share the link with us so that we can follow the discussions.

[–] [email protected] 2 points 6 months ago (2 children)

When it is done I will post it here!

Had to create an account, but GitHub does not accept my self hosted email, so went to create one on protonmail, which asked for an email to verify I'm not a bot, so I went to tutanota, which is asking for a 48 hour period previous approval of my account in which I can't neither sent nor receive any fucking email.

Dude, I really hope that someone comes up with an alternative to this fucked up internet we have today.

Sorry for any mistakes, english is not my first language and my blood is boiling right now.

[–] [email protected] 2 points 6 months ago* (last edited 6 months ago)

Yes if the issue tracker worked more like Git, it would be way better.

[–] [email protected] 2 points 6 months ago (1 children)

You can utilize a temporary email service to receive the account confirmation for ProtonMail. Just ensure you use one that has not been blocked by ProtonMail, so you might need to try a few different ones search something like temp mail and go to page 3 or 4.

[–] [email protected] 1 points 6 months ago (1 children)

Read it too late!

This is the one regarding the forum and this is for the plugins.

What OS are you using? Right now I only have access to a Windows PC, would like to know if it is the same in a GNU/Linux environment.

[–] [email protected] 2 points 6 months ago (1 children)

I use a GNU/Linux environment. And qbittorrent also installs and enables 8 plugins for me.

[–] [email protected] 2 points 6 months ago (1 children)

I tested it on Debian too and it's the same. Doesn't seem to have picked any interest in GitHub, though.

[–] [email protected] 2 points 6 months ago

I don't think the issue is receiving any replies, but I do think that the one i discussions may get some replays they are quite slow to respond.