HackerTrans
TopNewTrendsCommentsPastAskShowJobs

lodonnell9213

no profile record

Submissions

Good Calendar for Mxroute?

1 points·by lodonnell9213·vor 4 Jahren·0 comments

Ask HN: For an Apple ecosystem, Strongbox or Keychain?

2 points·by lodonnell9213·vor 5 Jahren·3 comments

Ask HN: For personal email, should you use a custom domain?

2 points·by lodonnell9213·vor 5 Jahren·6 comments

comments

lodonnell9213
·vor 2 Jahren·discuss
As someone who uses a ZTNA-like VPN (Tailscale specifically) it has its benefits, it’s a more understandable auth for less technical users, just log in with Google or Apple. It then allows me to segment the potentially more skilled users to apps I only want them to have, for example only I have access to server backends for example, granted this is niche, outside most home user requirements and general house holds won’t even have any infrastructure at home.

But yes, Zero Trust is for business, home users do not face the same threats, instead they should be more concerned with theft or ransomware than anything else.

I personally will still fall under that same category, I’m not someone important, and the easiest way to breach my accounts will be phishing, but heck, it’s fun regardless.
lodonnell9213
·vor 3 Jahren·discuss
But Microsoft are not advising them to remove curl AFAIK, in that case Microsoft should fix every issue ever within Windows, even if its self inflicted.

End of the day this as Daniel says is scare mongering by others who don't know what they are doing.

The phrase, if someone told you to jump off a cliff, would you?, and, Your scientists were so preoccupied with whether or not they could, they didn't stop to think if they should...
lodonnell9213
·vor 3 Jahren·discuss
But that's the problem, the people doing this do not understand what curl is/does so want it gone because its got a CVE and some outlet somewhere has said its worse than what it is.

if that's the case we should just delete the entire OS as there are vulns all over it.
lodonnell9213
·vor 3 Jahren·discuss
Or have you tried disabling anti-virus...
lodonnell9213
·vor 4 Jahren·discuss
I feel Microsoft is in a similar position to it’s windows phones in regards to ARM.

Additionally they don’t have a system like Rosetta 2 to help with translation, a LOT of windows apps are x32/64 based, and there has to be an incentive for devs to make the switch, Apple faced this issue when moving from PPC, they used I believe Carbon to help, and over time took carbon off and forced devs to update to apples current architecture at the time.

Electron unfortunately does seem like the potential way forward for apps, not just because of Windows and their handling of ARM, but it’s also potentially cheaper to develop against as its multi platform, 1Password is a prime example of this, and outside of the hardcore audience like us, they won’t notice the increased resource use of electron.

Microsoft has proven however electron can be good, see Visual Studio Code, plus with the advent of chrome os gaining traction, it’s likely we may head into a web first world, outside a niche subset of users.
lodonnell9213
·vor 5 Jahren·discuss
It was mostly the iOS app, macOS app worked fine.

I have issues with the unlock method, basically i would use FaceID and it would eventually break, prompt for master password OR faceID, thought it maybe iOS so reset everything, still happened, reached out to 1P and they had absolutely no idea what was wrong, I also disabled their lock screen animation so it worked like Keychain, eventually that broke and the issue reappeared. This was on iOS 14/15 beta and 15.

I know it’s petty, but it happened so often and often the FaceID button didn’t work, it drove me up the wall, and I’ve never had the issue on any other app, such as Keychain or strongbox.
lodonnell9213
·vor 5 Jahren·discuss
There will likely be some form of confidential agreement with another party who supplied the info to MSFTIC, however, I also agree with your statement.

Microsoft has been quite lax lately with a lot of things, you only need to see the stuff Kevin Beaumont is posting (ex-MSFT employee - senior cyber) about them knowingly hosting malware in OneDrive (standout as a OneDrive user), and knowing about a lot of issues and potentially being rather passive about fixing them.

I love MSFT products, but lately from what I’ve been reading, their attitude to a lot of things security lately is a bit worrisome to me, I could be completely wrong as i don’t know what’s happening internally, but it’s also slightly worrying from one of essentially, the most powerful cyber security firms around.
lodonnell9213
·vor 5 Jahren·discuss
The privacy aspect isn’t a major concern to me, not because I don’t care, but certain services link into gmail better. I also find that Google’s UX is better for me than others, and from years of using gmail I am used to the options, but was unsure if it was worth “upgrading” to a private domain.
lodonnell9213
·vor 5 Jahren·discuss
This is why I’m thinking of using my domain and aliases. However if I use google workspace you get restrictions, however for now, these restrictions don’t apply to me as I’m mostly Apple not google, I just like the google UX.
lodonnell9213
·vor 5 Jahren·discuss
Bitlocker (enterprise setup) is different, you can backup into AD, and also have network unlock (requires a connection to dc that’s wired)

However I agree, I heavily use iMessage, it’s convenient because when I used signal I didn’t get notifications.

However, Apple has had the decryption keys server side for ages, and I believe the reason they don’t have E2EE is purely because users don’t store their backup keys, and kick off when they loose all their life that’s stored in iCloud, and it’s just not worth the hassle to the support team, my family is the same with 1Password, they don’t backup their secret key thing, so I have to either store it or restore their account.

Bitlocker doesn’t help in this regard either, you can bypass the mandatory saving section by using print to PDF to store the recovery file to the encrypted drive, essentially locking a safe with the key inside.
lodonnell9213
·vor 5 Jahren·discuss
Not just parents generation, our generation. I don’t play the stock market, I’m not skilled enough for it, but I do have a stocks/share ISA, but I’m also not against spending money to make it. Many people I know will happily continue to pay interest on an item, but have savings which is less than the interest on credit. They have a 20% credit card vs a 0.5% interest savings.

And little things like that can help in the long run.
lodonnell9213
·vor 5 Jahren·discuss
Just to be anal here.

It’s not admin, it’s NTAuth\SYSTEM, a much much higher privileged account. System is the most powerful account in Windows, bypassing almost any system protection in place such as group policy, privilege and permissions, it can talk out of the box to a DC using the machine account password (this is different to a user password), and essentially become uncontested in a network.
lodonnell9213
·vor 5 Jahren·discuss
Not a cyclist but I agree with your post, we need to better support small businesses, even if it costs a tad more.

That is the issue with Amazon, it’s easy to get things from and cheaper, which also increases our want to buy more crap we don’t need, and fuelling a business capable of potentially doing serious harm to the competitive landscape.

My partner recently purchased some specialist cake toppers, from a one woman shop, they where super expensive but they looked really high quality, and she was so happy we was happy with the product, and I think that should be part of the purchase experience, that we can get a sense of satisfaction that we have helped a small business stay open.

I think Jeremy Clarkson said it best (surprisingly), and it was something alone the lines of the following. Stop haggling, a dollar is a lot of money to these people, it’s nothing to you, just pay them the price asked.
lodonnell9213
·vor 5 Jahren·discuss
Isn’t this an old thing now? I’m sure it’s been like this for a while? Nitter is a good alternative if you want to view tweets but not actually have an account, also supports RSS