Forwarded from @durovleaks 🇮🇳
@durovleaks 🇮🇳
+ verified support: @trustchannel_support
Due to Telegram Premium users being able to set custom emoji in their status, they often choose one that resembles the real verification badge.
👆 The profile above clearly shows the genuine badge (not custom emoji).
👆 The profile above clearly shows the genuine badge (not custom emoji).
Forwarded from Trust Channel Support
Добрый день. Стандартный срок верификации в перечне Роскомнадзор и получения отметки "A+" составляет 10 рабочих дней. Сейчас большая нагрузка, не все каналы ещё получили отметку. Но вы можете уже проверить @rkn_tg
Forwarded from Yuan的记事本 📚✍🏻 分享 软件 新闻 Yuan's Notepad
#Telegram 联合 俄罗斯政府 推出 A+ 认证
翻译: ru-zh-CN
在电报中,频道标签系统开始运行,其所有者在RKN中注册。要获取A⁺标记,请使用 @trustchannelbot bot。该说明是可以理解的,整个过程需要几分钟,因此,标记出现在通道名称的左侧。
https://t.me/webstrangler/4133
В Telegram начала действовать система маркировки каналов, владельцы которых прошли регистрацию в РКН. Для получения отметки А⁺ нужно воспользоваться ботом @Trustchannelbot. Инструкция понятная, весь процесс занимает несколько минут, и в результате отметка появляется слева от названия канала.
Теперь у пользователей Telegram появилась возможность быстро и наглядно убедиться, какие каналы можно репостить, а у рекламодателей – где размещаться. Думаю, со временем эта отметка станет еще и понятным маркером ответственного отношения автора канала к своему контенту.
翻译: ru-zh-CN
在电报中,频道标签系统开始运行,其所有者在RKN中注册。要获取A⁺标记,请使用 @trustchannelbot bot。该说明是可以理解的,整个过程需要几分钟,因此,标记出现在通道名称的左侧。
现在,电报用户有机会快速,清楚地确保可以更换哪些频道,以及为广告客户(将其放置在哪里)。我认为,随着时间的流逝,这个标记也将成为作者对其内容负责任的态度的可理解标记。
https://t.me/webstrangler/4133
🖕3👏1😁1
Forwarded from yzqzss|一座桥在水上's Note (yzqzss |一座桥在水上)
👍1
Forwarded from Hubert Chen
yzqzss|一座桥在水上's Note
TG 小功能:魔术搜索词 搜索 @ 可显示所有别人 @ 了你或者回复了你的消息的消息。 搜索 + 可显示所有消息。 由 @Ovler 发现。
iOS 客户端一个不知道是 bug 还是 feature 的情况,在聊天内选中一个用户,然后搜索某些词,可以搜到一段文字中的这个词
Forwarded from Hubert Chen
yzqzss|一座桥在水上's Note
TG 小功能:魔术搜索词 搜索 @ 可显示所有别人 @ 了你或者回复了你的消息的消息。 搜索 + 可显示所有消息。 由 @Ovler 发现。
从搜不到指定用户的内容来看,是 bug
从能搜到 CJK 词来看,是 feature
从能搜到 CJK 词来看,是 feature
👍1
Forwarded from Eleven严选 (Eleven Zhang(Semibisexual))
关于近期Telegram的内容审查
目前已知的消息:
1. 图片、视频、文本都会被检测
2. 公开/有用户名的频道/群组内容会被 AI 扫描来自动检测违规内容从而导致爆破
3. 私有频道/群组/私聊的内容会被使用哈希自动匹配已知的违规内容从而导致爆破,但不会使用 AI 检测以前未见过的内容
4. 哈希数据库是全局的,只要任一公开频道的内容被检测违规,即使自己是私有频道也可能被哈希匹配从而连坐
5. 违规申诉的成功率不到 10%
6. 外部链接相对安全,任何形式的URL均不会被屏蔽
建议:
1. 使用私有频道
2. 发布图文内容时使用小差异规避哈希匹配
3. 敏感内容可以考虑以外链形式发布
本条可自由转发
https://tginfo.me/esafety-analysis-en/
https://www.esafety.gov.au/sites/default/files/2025-03/BOSE-responses-to-mandatory-notices-tvec-March2025.pdf
目前已知的消息:
1. 图片、视频、文本都会被检测
2. 公开/有用户名的频道/群组内容会被 AI 扫描来自动检测违规内容从而导致爆破
3. 私有频道/群组/私聊的内容会被使用哈希自动匹配已知的违规内容从而导致爆破,但不会使用 AI 检测以前未见过的内容
4. 哈希数据库是全局的,只要任一公开频道的内容被检测违规,即使自己是私有频道也可能被哈希匹配从而连坐
5. 违规申诉的成功率不到 10%
6. 外部链接相对安全,任何形式的URL均不会被屏蔽
建议:
1. 使用私有频道
2. 发布图文内容时使用小差异规避哈希匹配
3. 敏感内容可以考虑以外链形式发布
本条可自由转发
https://tginfo.me/esafety-analysis-en/
https://www.esafety.gov.au/sites/default/files/2025-03/BOSE-responses-to-mandatory-notices-tvec-March2025.pdf
Telegram Info
Some Details About Moderation in Telegram From Australian Regulator’s Investigation
An excerpt of the most interesting facts from eSafety's investigation into how Telegram moderation works
Forwarded from 2.5次元日常
Forwarded from 2.5次元日常
省流 (补充版)
① TG员工没几个, 全靠自动审核
② 群成员发送的违规内容会被临时封停, 再通知管理员解决问题
③ 如果频道/群组管理员发送违规内容, 那么频道会被封禁, (而且应该会连坐群主?)
④ 敏感内容可以考虑带加密的压缩包以规避哈希匹配
⑤ 除了极端主义和儿童虐待 其他的举报选项应该没啥用
图1 Telegram 成员构成
图2 对端到端采用腾讯同款方式 (碰上伪造你不就炸了)
图3 群组封禁准则
建议:
① NSFW 频道/群组与主频分开 (最好不接受NSFW)
包括Owner和管理员尽量全部分开避免连坐
Bot最好单独开个号放 (可能会连坐Bot Owner)
② 群成员使用人工审核成分
③ 及时备份数据
发NSFW会炸吗 包炸的
① TG员工没几个, 全靠自动审核
② 群成员发送的违规内容会被临时封停, 再通知管理员解决问题
③ 如果频道/群组管理员发送违规内容, 那么频道会被封禁, (而且应该会连坐群主?)
参考 美图与沙雕
④ 敏感内容可以考虑带加密的压缩包以规避哈希匹配
⑤ 除了极端主义和儿童虐待 其他的举报选项应该没啥用
图1 Telegram 成员构成
图2 对端到端采用腾讯同款方式 (碰上伪造你不就炸了)
图3 群组封禁准则
建议:
① NSFW 频道/群组与主频分开 (最好不接受NSFW)
包括Owner和管理员尽量全部分开避免连坐
Bot最好单独开个号放 (可能会连坐Bot Owner)
② 群成员使用人工审核成分
③ 及时备份数据
发NSFW会炸吗 包炸的
Forwarded from @adurovleaks
⛔️ Swiftgram’s possible tracking
One of Swiftgram’s (unofficial Telegram client) feature is to show users’ registration date.
But when it sends request to fetch this registration date, it also includes current user’s payload (identifier of Telegram account) and device’s unique ID in request (and the last one passes only in this request!)
1. With first parameter (user’s payload) they can track which profiles did you open.
2. With second parameter (device’s unique ID) they can track all of current user’s accounts and link them.
UPD: Swiftgram's official response — link
Anyway, be careful using unofficial Telegram clients and configure them correctly.
One of Swiftgram’s (unofficial Telegram client) feature is to show users’ registration date.
But when it sends request to fetch this registration date, it also includes current user’s payload (identifier of Telegram account) and device’s unique ID in request (and the last one passes only in this request!)
1. With first parameter (user’s payload) they can track which profiles did you open.
2. With second parameter (device’s unique ID) they can track all of current user’s accounts and link them.
UPD: Swiftgram's official response — link
Anyway, be careful using unofficial Telegram clients and configure them correctly.
Forwarded from Swiftgram
@adurovleaks
⛔️ Swiftgram’s possible tracking One of Swiftgram’s (unofficial Telegram client) feature is to show users’ registration date. But when it sends request to fetch this registration date, it also includes current user’s payload (identifier of Telegram account)…
Swiftgram uses official Apple DeviceCheck tokens to ensure requests are coming from the Swiftgram app and not abused by other devs like Nekogram did. Swiftgram generates new token on each request. Since tokens are single-use and ephemeral, Apple makes it impossible to fingerprint devices by design.
App will cache registration date data. In the mean time it's 12 hours. So no requests will be made in the next 12 hours for the profiles you've already seen.
The same DeviceCheck token is used in another request - validating purchases of Swiftgram Pro.
Any server will know the IP of your device and can potentially match requests by the IP address - this is how internet works. So there's no need to go through hoops of user payload, device tokens, etc to create another ⚡️exclusive reveal post.
I admit it might be redundant to pass the payload for this request, but that's some basic authorization - an additional API protection measure, so I see no harm there. It was working in a similar way since I've first introduced it in Nicegram in 2019.
Swiftgram server does not store IP addresses, Registration Date requests and does not link any users or devices together. That's an enormous amount of data for ~400k MAU app with no value at all.
If you're paranoid, you can simply disable Registration Date and no requests will be made.
If you're paranoid enough, you can build the app yourself from source code (which you didn't even bother to check) and modify it the way you feel safer.
App will cache registration date data. In the mean time it's 12 hours. So no requests will be made in the next 12 hours for the profiles you've already seen.
The same DeviceCheck token is used in another request - validating purchases of Swiftgram Pro.
Any server will know the IP of your device and can potentially match requests by the IP address - this is how internet works. So there's no need to go through hoops of user payload, device tokens, etc to create another ⚡️exclusive reveal post.
I admit it might be redundant to pass the payload for this request, but that's some basic authorization - an additional API protection measure, so I see no harm there. It was working in a similar way since I've first introduced it in Nicegram in 2019.
Swiftgram server does not store IP addresses, Registration Date requests and does not link any users or devices together. That's an enormous amount of data for ~400k MAU app with no value at all.
If you're paranoid, you can simply disable Registration Date and no requests will be made.
If you're paranoid enough, you can build the app yourself from source code (which you didn't even bother to check) and modify it the way you feel safer.
Forwarded from Durov's Code
Anonymous Telegram numbers are now priced at a minimum of $1,788 — the highest they’ve ever been.
@durovs_code
Please open Telegram to view this post
VIEW IN TELEGRAM