• 0 Posts
  • 77 Comments
Joined 1 year ago
cake
Cake day: June 20th, 2023

help-circle



  • These are probably comments on this Veritasium video which actually pretty informative.

    That being said, I also live in a “first past the post” country that forces a two-party system and penalizes voting your conscience unless it aligns with one of those parties. While there may be flaws in Ranked Choice Voting that could emerge in fringe cases, it is so obviously superior to our current system that it is hard for me to worry too much about the nuance of how it might not be 100% perfect 100% of the time. Any (democratic) system is better than what we have now.




  • Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?

    Have you tried turning it off and back on again?



  • I’ve been pretty happy with how Automattic has handled PocketCasts and the premium features feel like what you’d expect, while the main product is perfectly usable for 90% of people and use cases. I hope with their acquisition of Beeper, they continue this mindset and add premium features (extra themes, premium stickers, etc) without compromising the main app.



  • It’s my understanding that FreeIPA can federate with Active Directory, but personally I haven’t tried that myself. As for Authentik, it looks interesting but it’s the first I’ve heard of it. I also rely on FreeIPA’s certmonger implementation, so I wonder if Authentik could replace that?

    Just to understand your use case, you have users in Active Directory where you want to manage SSH keys and be able to login via SSH to linux machines?








  • I have an account with a larger credit union and their Android app implements onerous rules which some exec must feel makes it more secure, but is just a burden 99.999% of the time. Today I found that the fingerprint login expires after a week of not logging in, requiring the username/password to log in. Annoying but ok, I log in with a username and password. Then it says I need to do MFA and presents 3 options, email, SMS, and app push notification. The UI for app push notification even says “This device”. I selected that one, and the app shows the approve/deny button over the MFA requirement screen.

    So obviously the saved state in the app wasn’t actually expired, since it could still approve MFA requests. So what good is it expiring biometric auth if the app is still authorized to log me in effectively bypassing MFA?