HackerTrans
TopNewTrendsCommentsPastAskShowJobs

gtvwill

no profile record

comments

gtvwill
·4 miesiące temu·discuss
8gb on a apple is not enough and its not surprising at all.

Source: dealing with dozens of Mac devices with 8gb memory that clients had which all can't handle their workloads. I've switched whole companies from Mac back to pcs. And I've watched companies try switch to Apple and go from reasonably problem free operations to a nightmare of broken systems. Want to use apples data transfer to migrate from windows to Mac? Good luck it just plain doesn't work.

Device management on macs is an absolute nightmare along with the hell hole that is apple ID and the app store. Not to mention their absolutely abysmal performance with rmm. You can literally configure a machines permissions to allow remote access apps to work then a week later they just break the software and your access to manage the device is broken too.

Apple products are absolutely terrible for business from phones to laptops to their entire office suite.
gtvwill
·2 lata temu·discuss
Source code is open source doesn't mean squat for safety. Have you audited the code? Do you have the skills etc required to prove its not backdoored?

Because I know I don't have that skill set or time. I do have however some big fat red flags on using it because it was opted for by an entity whose entire existence is based around backdoors and spying.

Honestly i find it absurd that some folks say just because something is open source it's automatically safe. The vast majority of us whether the project is open source or not lack the skill or capacity to pick up on a well obfuscated hole. Hell even the best of us aren't that good.
gtvwill
·2 lata temu·discuss
Went for IT job with Intel gov mob. Got asked to use signal for interviews. Can't trust signal anymore. Definitely backdoored.
gtvwill
·3 lata temu·discuss
Most folks are better off with notebook in the table next to their bed/desk for passwords than anything else. Whens the last time you got broken into at home and someone stole your diary? Whens the last time you read about someone getting breached because they had their passwords written down in a book next to their desk? Pretty much never.

Whens the last time someone got breached storing their PW somewhere digital? well shit probably a dozen happening every second and a few dozen breaches somewhere in the world before your done reading this.
gtvwill
·3 lata temu·discuss
No I'm buying a USB minimum storage device with a micro controller embedded and potted under some very hard plastics. Very much the same thing. Function different yes, manufacturing when it comes down to it. Exactly the same. I could print wafer for your security key, I could print wafer for your flash memory. IC's arent manufactured differently in security keys to normal IC's. The product is the same silicon just doped differently to make a different ic/circuit. its a small computer in a USB. it does a limited function. Stop making them out like they are some wizard stick fancy stuff. You can setup a ESP32 as a security key if you want.
gtvwill
·3 lata temu·discuss
Gonna only say this once. Stop building your forts with only one wall and one gate. Build many walls to cross, many gates to open, observe the user through each of these.

lol op assumes passkeys or pw's are the only lock being used to protect things. Well from a security implementation standpoint...I assume someone either you on the rust end or someone on the yubikey end is already a weak link and your password is probably already compromised. But thats ok.

TBH from a security standpoint, yeah I expect your PW to be correct, but I also do assume that its not secret. Its only part of the parcel. I expect about a dozen other metrics to be correct too pending on how secure you need your stuff or how important the security is. If you don't tick most of these if not all of these boxes. I don't care if your password or passkey is right. Your not getting in.

The pincode>push button on yubikeys is part of this. Your IP, your device ID, your TPM trusted data paths, the time of day your trying to make access, the frequency of it, the country of origin, the target your trying to get into, the wifi you are accessing this via....are all part of this. Stop being so old school about security and propping it up off one point of failure.

Now this bit is going to be the real hard biscuit to bite for alot of folks, but Yes I get that its harder in web because you probably don't have the physical end of things under enough control that you can use those for your security checks/metrics as they are under user control, but maybe don't store super piss off secret data that needs to stay secret in systems like that. If your web app gets to X level of personal data/could be involved in X level of harm to society or its users if breached. Don't let people sign up without mfa, hardware keys and so on. Force users to detail more info about their fixed locations and regular usage areas and judge their access security on that.

tldr I dont care if your PW is compromised its 1/X keys needed. I assume its compromised. I dont assume all other X keys are tho.