|
Lain Iwakura posted:I wonder when I will get a call from them offering credit checks for a year. https://www.desjardins.com/ca/personal-information/index.jsp It's, hilariously enough, going to be with Equifax. I guess they have experience with massive data leaks. At least it's for 5 years?
|
#
¿
Jun 21, 2019 16:09
|
|
|
|
| # ¿ May 18, 2024 18:48 |
|
|
One of the main reasons I left android and refuse to come back was the lovely permission model. Another one was forever not receiving updates from my carrier and having to travel to the US to get them from AT&T instead while I was there for work.
|
|
#
¿
Jul 9, 2019 18:34
|
|
|
pseudorandom posted:I hate this, but I once encountered something even worse. Let me one up this one. OSX allows you to set full disk encryption using a custom keyboard layout that is stored on the disk itself. If you use a non-US layout, this lets you type keys that are not available on the default US layout (for example, ç or ü). When the OS boots while encrypted, it prompts you for your password, but using a US layout. If you don't have the little recovery code noted somewhere safe where you know to find it, you just rendered all your data unusable. There are no warnings or whatever, you just find about it the hard way.
|
|
#
¿
Aug 8, 2019 14:18
|
|
|
Janitor Prime posted:Not to diminish how dumb this is, but lol if you're a computer toucher and use non ASCII for usernames/passwords It had never been a problem before and hasn't been a problem since. also lol if you don't just use U+FDFD everywhere to gently caress with UI folks
|
|
#
¿
Aug 9, 2019 19:12
|
|
|
I show up on google all the time and I submitted my twitter timeline to the list of copyrighted materials / prior arts to be exempted from when starting my current job. Keep the lawyers busy 
|
|
#
¿
Aug 26, 2019 17:31
|
|
|
Fuzzy Mammal posted:someone do this with their post history and report back I almost did it, but I avoided providing the links since I mentioned my negotiating process in the interviewing thread here.
|
|
#
¿
Aug 26, 2019 23:34
|
|
|
Having the passwords translated as phone numbers does not necessarily require to have it cleartext; you could essentially run the transform from all accepted characters to a phone number keyboard on it when the user first chooses it, hash that and store the hash. When logging in from a phone, you then check against the phone hash only. However you've now got two hashes, one of which is off a weak as gently caress digit-only password and is probably enough to replace the safer/complete one anyway.
|
|
#
¿
Oct 28, 2019 02:24
|
|
|
lmao get you an audit company that knows their poo poo, they have proven they're not competent enough to help you and whatever poo poo they run would be a liability
|
|
#
¿
Nov 8, 2019 02:43
|
|
|
Shaggar posted:lol @ dumb anti-American laws designed to promote terrible local alternatives. there are so many things wrong with the opinions you choose to have that just starting to address them would guarantee a v18.4 thread
|
|
#
¿
Nov 30, 2019 21:39
|
|
|
the next generation will call it trace-retweet
|
|
#
¿
Dec 15, 2019 02:52
|
|
|
soap, the hygienic product, not the shaggarific protocol. water filtration/purification is p. good too.
|
|
#
¿
Dec 21, 2019 22:40
|
|
|
You can train your users to proper javascript hygiene by including this script on your website: <script src="https://ferd.ca/static/js/adblock-only.js"></script>
|
|
#
¿
Jan 8, 2020 15:59
|
|
|
Seems like a bunch of employees were looking to fix weaknesses in the algorithm and kept being told no. Curious to see how that match with ECC and the countless assertions that people just keep publishing broken curves and we just don't know.
|
|
#
¿
Feb 11, 2020 16:04
|
|
|
if the extent of your phishing preparedness is showing "ah yes, people can fall prey to phishing", you've got lovely security. At least focus on what to do once someone has been phished or in trying to detect it happening and do some disaster preparedness rather than just doing the security equivalent of pulling on people's shoelaces while they're not looking and going "uh they were not tied super hard I guess! that's a trip hazard!!"
|
|
#
¿
Apr 8, 2020 15:45
|
|
|
just send an email with the results of the phishing tests but it's a phishing email, security team has trained people to trust their emails rather than just delete them like they should with all the other emails
|
|
#
¿
Apr 8, 2020 20:07
|
|
|
it sure is less than ideal opsec because you're instantly giving stuff like: your name, a good guess as to where you live, your banking institution. Sounds like an effective first step for finding a ton more info on someone. That being said if you look at the registrar for the person's domain and all the same info is already public (aside from institution) and more accurate, then I guess you could assume you're not making things that much worse.
|
|
#
¿
Aug 31, 2020 15:56
|
|
|
Methanar posted:I don't get it https://en.wikipedia.org/wiki/Flowers_for_Algernon
|
|
#
¿
Sep 2, 2020 01:21
|
|
|
I realize how risky this is to post in this thread of all places with its past, but the poor opsec of it is hard to pass up: trump's twitter account was "hacked" in 2016 because the password was yourefired
|
|
#
¿
Sep 11, 2020 18:46
|
|
|
hobbesmaster posted:i'm not sure you can boot a linux kernel in 256kb of sram yospos comment: can you boot any useful linux kernel on any amount of ram?
|
|
#
¿
Dec 2, 2020 22:11
|
|
|
I'd be down to see most social media vanish.
|
|
#
¿
Jan 12, 2021 01:08
|
|
|
I can’t see it vanish if I’m not on there
|
|
#
¿
Jan 12, 2021 03:53
|
|
|
140 mil is being able to spend anywhere between 1-2 mil a year without working for your entire life and not going through it. 1 mil is over 25 years of US median wages. having 140 mil is having over 3,500 years of today's US median wages worth of money in total. it's being rich by any factor, even if you're not the biggest rear end in a top hat at the top of the pole
|
|
#
¿
Apr 9, 2021 20:01
|
|
|
I maintain OSS projects and if I learn that some rando is running and adversarial experiment where all the effort is spent on clowning on me and wasting my free time for them to get papers published about how much I suck at what I do, I'd probably lose all trust in them and consider not reviewing any further contribution from them anymore. Like the researchers are clever enough to know that trust is integral to maintain for their experiment to work (otherwise the bad commits would be caught!), they should also be clever enough to know that running the experiment without a heads-up would deplete said trust after the fact and not act all surprised when people don't want to lose their time with them anymore. They've run their experiment, it was moderately successful, now they've blown up their lab and can keep looking for other experiments to run elsewhere.
|
|
#
¿
Apr 26, 2021 23:54
|
|
|
https://twitter.com/brianhonan/status/1395529258550898694?s=21
|
|
#
¿
Jun 3, 2021 14:02
|
|
|
I've stored disk encryption passwords in 1password using the mobile stuff to access the desktop stuff and I sure as hell am not counting on my browser storage to handle these cases well.
|
|
#
¿
Jun 5, 2021 22:48
|
|
|
hobbesmaster posted:at least they’re not the first website owner to be brought down by $10 cookies
|
|
#
¿
Jun 11, 2021 20:18
|
|
|
for temporary studies, some cities just set up RFID scanners on the road, and they can count cars that way because most tire manufacturers put RFID chips in them to track inventory. also the new idea is "abandon cars, just take a bus, they can track them already"
|
|
#
¿
Jun 13, 2021 00:37
|
|
|
we don't start the AC until we hit 27C/80F. I can get that the elderly or very young may be more sensitive to higher (and lower) temperatures but deep inside I sort of agree that during a time of crunch where the grid might topple over, limiting how much heat or AC you get while still keeping it in generally healthy ranges is a good thing. Texas should definitely fix its hosed up power grid, that being said.
|
|
#
¿
Jun 21, 2021 16:12
|
|
|
you'd think these sort of measures would be a kind of special emergency buffer when things go bad but 15 minutes after an exec found out about the capacity it became an optimization to defer infrastructure improvements while raking in more money that just increased system brittleness by absolutely red-lining every generator forever.
|
|
#
¿
Jun 21, 2021 20:53
|
|
|
w3m is absolutely the best console browser and I use it as an HTML rendered for Mutt as well
|
|
#
¿
Jun 24, 2021 22:46
|
|
|
just playing SIM ant
|
|
#
¿
Jul 21, 2021 05:14
|
|
|
I organized my own conference 
|
|
#
¿
Jul 24, 2021 01:48
|
|
|
I use 1Password and Authy, but I kept forgetting my Authy backup password so I put it in 1Password and that sort of defeats the purpose.
|
|
#
¿
Aug 13, 2021 12:02
|
|
|
more signatures!
|
|
#
¿
Aug 25, 2021 12:46
|
|
|
French omitting accents on capitals is mostly a relic of typewriters not handling them properly, and it is correct to require them now that technology can do it right. it is in fact one example of how poor technical support for actual world requirements can influence the real world to adjust to its bad tech.
|
|
#
¿
Aug 31, 2021 12:33
|
|
|
evil_bunnY posted:99% of the French don't even handwrite accented capitals. Uppercase letters were accented consistently starting with the middle ages when standardization came up. The printing press had fixed size characters which made uppercase accented letters trickier, but they handled them by engraving smaller uppercase letters with diacriticals on top. Later printing machines were tricked by using above-row letters which the accents in their lower bleeding space, which let them be superposed to the capital underneath and giving normal-sized accented letters. The total removal of accents on upper case letter came with typewriters of English manufacturing (monotypes and linotypes) starting in the late 1800s, which wouldn't handle them at all and had no way to make these special cases. There always were problems for title words like 'A MAN MURDERED' or 'A MAN MURDERS' where the past tense is 'TUÉ' and the present tense is 'TUE' and where removing the accent changes the whole meaning of the sentence (from murdered to murderer). Other famous ones are 'GISCARD A LA BARRE' ('Giscard is in control') and 'GISCARD À LA BARRE' ('Giscard is testifying at a trial'), which became an issue for a French presidential election in the 70s. For standard typewriters, it involved manually going backwards, adjusting your line height, and typing the accent above the proper letters, and most people couldn't be arsed to do it (the same way they may not go back and accent some letters when writing cursive full speed if it didn't impact word meaning) Essentially, cheap printers dropped the accents and careful ones kept them, but over decades of industrialized printing and presses and typewriting and even computers that wouldn't support proper accenting, the whole French sphere more or less adjusted and said "you know what? Fine, don't accent on capitals anymore" because it was messy and complicated to do on a technical level. This got internalized by most people writing over generations, which in turn, made people not sure they should use uppercase accents when they finally could with computers supporting non-English languages. I grew up being taught that accent on capitals are not required unless they alter meaning, even when writing by hand in school, because that's simpler than being taught more sets of rules (which French already has plenty of). But with technology finally making it easy, a couple of centuries later, most significant French standardization bodies are pushing for it and asking for accented capitals to be the only way to go. MononcQc fucked around with this message at 12:57 on Aug 31, 2021 |
|
#
¿
Aug 31, 2021 12:55
|
|
|
Chicago Manual of Style is the most beautifully typeset book I have in my library. I'm sure there's some real cool poetry works out there but that one to me still stands out.
|
|
#
¿
Sep 1, 2021 01:34
|
|
|
the closest thing I can do to tying this thing back to security is that for the brief time I was at Uber after they bought out Postmates, their systems auto-replaced all the é letters in my name by 3s, and instantly revoked all my W8-BEN forms for my stock options because the names no longer matched with what was in their systems. Then the shareworks stuff they used to transfer the accounts kept crashing when I submitted forms with the accented data for the virtual tax witholding submission. I had to call them 3 times, they never did anything, asked me to send the form by mail, which they lost twice during the pandemic. In the end I just got the money raw and will have to figure out taxes with tax people here who understand non en-us charsets.
|
|
#
¿
Sep 1, 2021 13:16
|
|
|
reading a clock is easy (especially if you only deal with AM/PM rather than 24h) and while I get someone never encountering it before, being an adult who doesn’t understand it or never even attempts to look it up baffles me.
|
|
#
¿
Jan 3, 2022 03:00
|
|
|
|
| # ¿ May 18, 2024 18:48 |
|
|
also you can use an analog watch as an emergency compass if it’s sunny https://www.wikihow.com/Use-an-Analog-Watch-as-a-Compass
|
|
#
¿
Jan 3, 2022 03:33
|
|