FWIW: these types of password rules are discouraged by NIST -
Eliminate Periodic Resets
Many companies ask their users to reset their passwords every few months, thinking that any unauthorized person who obtained a user’s password will soon be locked out. However, frequent password changes can actually make security worse.
It’s difficult enough to remember one good password a year. And since users often have numerous passwords to remember already, they often resort to changing their passwords in predictable patterns, such as adding a single character to the end of their last password or replacing a letter with a symbol that looks like it (such as $ instead of S).
So if an attacker already knows a user’s previous password, it won’t be difficult to crack the new one. The NIST guidelines state that periodic password-change requirements should be removed for this reason.
They also recommend implementing 2FA, but not OTP or TOTP as they are now considered not secure enough. Use 2FA that is FIDO2 compliant such as biometrics or fobs like Yubikey.
2FA: two factor authentication. So using a password (something you know) in combination with something else, like something you are (biometrics) or something you have (security token, phone with authenticator app)
OTP: One-time password. A password you can only use once. Can be a list of passwords where you have to use the next one on the list with each login or any other mechanism that provides a unique password for each login.
TOTP: Time-based one time password. An OTP scheme where the password is derived from a shared secret and the current time. Like Google Authenticator.
FIDO2: Fast IDentity Online version 2. A standard that lets you use an authentication device to log into online services. This can be in the form of a USB key or something built into your computer (e.g. on a Mac you can use the built-in fingerprint scanner).
2FA - Two factor authentication, you get asked a second secret besides your password. Banks used to give users a card with codes that you had to find and input when authenticating with them.
OTP - one time password, you receive a code over SMS or mail.
TOTP - Time based one time password, you have to have an authentication app that creates a clock based cryptographic code.
FIDO2 - fast identity online standard version 2, is a set of ID verification technologies. Usually you’re asked to confirm access on another certified device. Like google asking you to check your phone for a notification when logging into a new browser.
How is a TOTP not secure? It’s a random string that changes every 30 seconds. I mean shit, I am LOOKING at it, and sometimes fail a login because I run out of time.
Evil.com phishes a user and asks for username and password for Good.com
Evil.com immediately relays those credentials to Good.com
Good.com asks Evil.com for TOTP
Evil.com asks victim for TOTP
Evil.com relays TOTP to Good.com and does a complete account takeover
The various physical dongles prevent this by using the asking domain as part of the hash. If you activated the dongle on Evil.com, it’ll do nothing on Good.com (except hopefully alerting the SOC at Good.com about a compromised username and password pair).
I’m now going to exhaust the interesting things I know about this by saying: he won a competition with his design of the Anglican cathedral despite being a Catholic himself; the Catholic cathedral in Liverpool was conversely designed by an Anglican. The city was a lot more sectarian then than it is now and the cathedrals stand at either end of a road called Hope Street.
Welcome to the corporately controlled internet where marketing firms, public relations agencies and communications firms constantly try to manipulate the public discourse.
If you use filters … you can actually hear and read what people want to talk about.
Well, you can definitely narrow it down to what you want to read and talk about. I’m interested in doing that with politics (US), and I’m very far away from any kind of PR or marketing person. People can genuinely want to talk politics, it’s not always a corporate conspiracy.
The best kind of marketing is the type you are completely unaware of.
The world runs on money … money is made by convincing people to give it to you … our modern world is built on convincing people … but people don’t like being convinced … so you have to convince them without letting them know they’ve been convinced.
It’s not a corporate conspiracy … it’s just business.
GNOME allows scrolling through workspaces with the mouse, making it criminally based. No keyboard shortcut hand movements, plus quicker and better for multiple windows.
I would have said god is a fascist. There’s a real “do what I’ve decided is best for you, or there will be hell to pay” (pun intended) vibe throughout his interactions with humanity.
But he does always seem to need money, so maybe you have a point.
Quite a few people have trouble imagining what pigeons did before humans built cities for them to live in. Someone even said pigeons in trees look “creepy” lol
I refuse to believe pigeons ever existed in the “wild”. Also no cars to shit on? Must’ve had a short life span holding that shit in for centuries til the first Model T rolled out.
If I’m walking along—on the ground like a normie—then I see a pigeon in a tree, I’m immediately anxious of being ambushed by highwaymen, zombies, or charity workers. Whatever it is, it can’t be good.
If the performance of a modern Mac isn’t enough for you, you’re probably installing a million background bloatware apps and run them all in the background without knowing, like a boomer.
No, I was denying the fact that “If you don’t use Apple you’re poor”.
I am paying top dollar for a laptop that has the specifications I want, an exposed PCIE port for arbitrary PCIE devices to be dropped on the bus at any given time, perfect Linux support, and every part designed to be able to upgraded and repaired at will. Yes, if I ever need to, I want to be able to have 96 GB of RAM and 6 TB of storage installed. Apple simply does not allow this. In my case, my total configuration will be 32 GB of RAM and 3 TB of storage with a 8 core / 16 threads CPU with enough onboard graphical compute units to be usable even for some graphically intensive tasks with the eGPU unplugged. Even with its most expensive option, Apple does not sell a laptop that can be specced this far. I want to be able to connect Oculink eGPUs and not be bound by Thunderbolt’s max transfer speed as well - and Apple does not offer this feature.
Apple doesn’t offer this. It would be cheaper to buy Apple in my situation, but it simply doesn’t offer the features I ask for.
Now the small challenge is: guess what laptop I have on order? ;)
You don’t actually need those specs, you just like to brag that you have this and that. Meanwhile thousands of others run circles around whatever you do on lesser machines.
The most expensive iPhone is $1600, and the Galaxy Fold 5 with the same storage option is $2160, disliking Apple has nothing to do with poverty.
Even if I were a billionaire, I wouldn’t want an iPhone. You can’t sideload apps, that’s an automatic disqualifier in my mind for a smartphone.
Edit: Also, you’ve edited your comment from “Wanna know how I know you’re poor” to “Wanna know how I know you’re cool” without indicating it, which is a dick move.
I’d hardly call F-Droid dangerous, these apps are generally safer than many apps on Google’s Play Store. Sure, if you get some apk files from some shady website for the purpose of piracy, you are likely to get malware, but stop acting like installing apps outside of the default appstore is some dangerous and irresponsible thing. Your phone is a computer that lives in your pocket, treat it like you would treat a PC and you’ll be fine.
Tbh, I sometimes don’t care and just throw them into the Workspace environment. As I am using Graphene OS, there shouldn’t be a purpose for the workspace as every app is inside a heavy sandbox on default.
Open Source apps tend to be more secure because you can see, change and audit the code.
There were too many hacking Attacks for normal apps that contain mostly adware or Malware for both brands… As many are greedy and need to have some purpose to pay 100€ for just showing up on the store.
With sideloading Open Source apps, you can enjoy a life many people call as the only free life you can have. Richard Stallman makes nearly a religion out of it with GNU.
OSS has its own attack vectors which closed doesn’t, i.e. malicious code snuck into upstream libraries and going unnoticed for weeks, or outright buying popular oss code from devs to abuse.
I was in a “generational diversity” course at work recently where we would break apart and talk about what behaviors are common among each generation and why, and how to be good leaders for each generation. We started with the “greatest” generation and the “silent” generation and worked our way down in age. Everything started so respectful and nice for the old folks, even excusing their shortcomings when one was actually brought up due to how they were raised and the tough circumstances they grew up under. By the time we got to millennial and gen z, things took a turn. Even the instructor was laying on the judgement pretty thick. “They have had everything handed to them growing up so they don’t appreciate hard work”, “[…] participation trophies […]”, etc
No, it was 3 percent with the greatest and silent generation combined, not just the greatest. No idea how many (if any at all) of the greatest generation there actually are. Maybe 1? Idk.
If you don’t want kids to have participation trophies don’t give them participation trophies. You didn’t go out and buy yourself a trophy for everything, did you?
I pumped gas up hill, both ways, all summer when I was 16 and used the money to pay for college, buy a house, and invest in oil. You just need to try harder.
I guess I’m lucky to live & work somewhere where the system kinda works, but the boomers are a great well of institutional knowledge, and the kids are working hard and changing the game. The ball was kind of dropped in the late 90s & 00s, but now millennials have surpassed gen x in terms of responsibility & authority in my industry and the zoomers I’ve had the opportunity to train are legit. I’m not sure what happened to gen x, but they all seem kind of sad and/or lost.
No, I meant the squatty potty people end up popping all over the place to mention how good they are. There was a lot of it on Reddit especially, back when they were new.
Now they’ve all been replaced by people expounding on the pleasures of bidets…
FYI, ‘have you tried yoga?’ In chronic illness speak means ‘can I offer you unsolicited advice with the undertones of presuming that you have not tried to the best of your abilities to cure yourself of an incurable disease that has not even come close to be fully treatable?’
Not saying that’s what OP said, just saying thats how it comes off to most non-chronic illness sufferers.
So you know the Lemmy instance Lemmy.world? Well, there is another instance called hexbear… Which is full of hardcore, Stalinist communist. And every user of every other instance hates them
Why do people always put labels on them as if that’s the reason they are idiots. It’s not. There just a bunch of obnoxious trolls that have made it their mission to annoy other instances.
Fearful that a high-level national hero might be killed, Soviet officials banned Gagarin from participating in further spaceflights. After completing training at the Zhukovsky Air Force Engineering Academy in February 1968, he was again allowed to fly regular aircraft. However, Gagarin died five weeks later, when the MiG-15 that he was piloting with flight instructor Vladimir Seryogin crashed near the town of Kirzhach
Hate is a strong word. People are just fucking annoyed by them since they constantly act like a 4Chan Troll brigades to trigger the “Liberals” and make everything political. They swarmed every instance that was federated with them and pushed hard their “Murcia/the West/Ukraine = bad and China/Russia = good” agenda and attacked people with different opinions.
There’s nothing inherently wrong with Marxism though (not that you said there was, I just get the impression some people are calling them socialists as if it’s inherently an evil thing), they’re entitled to their opinions on an alternative to capitalism, it doesn’t make them bad or weird people.
I gather from what I’ve read here that people mostly don’t get along with them because they are awful, terrible people (and honestly may not even be proper Marxists but maybe just posers, using it as a perfunctory label, idk).
I’d gladly be friends with a Marxist, but friends with an authoritarian, or a xenophobe, etc? Absolutely not. Regardless of their other political or economic opinions.
I’m an anarchist myself, so marxists are my brothers and sisters. So far, I’ve only seen displays of great inclusiveness from them (apart from telling me to fuck off, lol). However there’s a lot of different types over on hexbear, some of them definitely being angry edgy teenagers. Still, definitely not a xenophobic bunch. I feel the general sentiment isn’t warranted.
Similar experience. Great experiences until saying something that gets misconstrued due to lack of context and pitchforks come out. Then, some continue positive interactions and mods step in to curb unwarranted hostility. Still, despite getting singed a bit, it’s overall been incredibly inclusive.
Instance is hexbear.net, check it out for yourself, doesn’t work in browser for me without an account but it does work in liftoff without one for some reason.
It is weird that a lot of commenters here want to tell you what they are but don’t say how to find this information by yourself.
Then they might find out the “they’re all just tankies!” line is a lie, there’s shitty people on all instances, just so happens this one leans very left beyond neo liberalism and therefore it’s bad!
Throw in that they all totally support Putin and Mao and don’t really support LGBT! And you’ve got most normies nodding along with defederating
It’s a lemmy instance full of edge lords who are pro-totiltarian communism. The bulk of them think Mao and Stalin were good. Deny any atrocities committed by USSR/China. Also, for some reason tend to be super pro Russia. Due to NATO being on the opposite side they support Russia and call Ukrainian/NATO nations Nazis.
It would be less of a problem if we as users on an instance could block entire instances, effectively defederating it just for our user. Then those running instances could defederate only in severe cases.
I can’t wait for Lemmy to catch up with Mastodon in this regard. Between this and not being able to easily migrate your account to a new instance, it doesn’t feel like Lemmy users have as much of the freedom that the fediverse can provide.
Blocking an instance on a user by user basis has a key drawback in the sense of those instances you block can still influence the posts and comments via up and down votes
Defederating basically means that those instances no longer have any influence on the community you’re a part of
Basically think of it this way, say you’re on a queer friendly instance that is still federated with a right wing instance. That right wing instance can manipulate the posts of the queer friendly instance by up voting queerphobic content and down voting queer positive content. And you block the instance as a user those votes still federated over so you’ll see queer positive content getting down voted to oblivion.
Would it though? I understand that the main reason for defederating is to avoid your instance downloading CSAM posted in another instance, which could get an instance maintainer in legal problems. Allowing users to block entire instances won’t help, because the illegal media will still get downloaded by the instance.
IANAL, if subscribers had a decryption key, and the instance only stored encrypted copies of the media, would instances still be liable? Kinda-sorta like Tor relay-only nodes; it seems like only exit nodes get in trouble.
This is true. Really annoyed that arm as a hole isn’t being utilized like it could be by really anyone but apple. We could be making arm Linux powerhouses that sip power like a mid tier x86 laptop. The worry by some is that there is now way to do this without having every component solderd on, but dell has already made a new open laptop ram slot standard that has almost the same latency as Apple’s soldered ram.
Arm is the future, and needs to be treated as such more than it is.
I found that for my use case (jellyfin, gitea, portainer, nextcloud, adguard, …) the pis are still nearly idle but the bottleneck for me was ram. Anyone with similar experience?
Sounds like k3s would be right up your alley, it’s API compatible with k8s but has a lot less overhead than k8s, designed for use on low power devices like the Pi.
memes
Top
This magazine is from a federated server and may be incomplete. Browse more on the original instance.