pitninja

joined 1 year ago
[–] pitninja@lemmy.ml 3 points 6 months ago

That may have been part of the reason, but the theory behind MFA is that there are 3 primary ways to authenticate who you are: what you know (password), what you have (secure one time password generator or hardware token), and what you are (biometrics). Password managers and digital one time password generators have kind of blurred the lines between passwords and one time passwords, but you're raising your risk a bit if you put them in the same place.

[–] pitninja@lemmy.ml 1 points 6 months ago* (last edited 6 months ago)

That's probably true, but if the satire is annoying in its own right, I'm not going to indulge it either lol

[–] pitninja@lemmy.ml 7 points 6 months ago (4 children)

Even if I hosted my own BitWarden vault, I wouldn't put my passwords and 2 factor tokens in the same place because it's eliminating the benefits that 2 factor provides if someone somehow manages to get into my vault.

[–] pitninja@lemmy.ml 3 points 6 months ago* (last edited 6 months ago) (2 children)

Exactly, from a security perspective, it's a bad idea to put 2 factor tokens together with your passwords. You effectively eliminate the security benefit that 2 factor provides if you do because if people get into your password manager, they have everything they need to access your accounts. The only people it "helps" having it all in one app are people who don't understand the purpose of 2 factor and just see it as an inconvenience when services force it on them. Even though I use BitWarden for passwords, I don't think that I'll be changing from Aegis to BitWarden's stand-alone authenticator because Aegis is doing its job nicely.

[–] pitninja@lemmy.ml 1 points 1 year ago

Reddit died for y'all's sins.

[–] pitninja@lemmy.ml 1 points 1 year ago

Well, it's gonna cause a few more unfortunately, I think, because there are definitely some bugs in 0.18.1-rc.1

[–] pitninja@lemmy.ml 2 points 1 year ago

It's pretty bad, if your instance is missing comments and posts from another instance, they're going to be missing the comments indefinitely unless back filling is ever added to the protocol or unless users do what you're doing to manually pull comments and posts in. I think we'll see some federation improvements on the next major version of Lemmy after v0.18, but it's probably going to be shitty and unreliable until then. My personal instance is basically unusable right now.

[–] pitninja@lemmy.ml 3 points 1 year ago

I think it's a "no for now", but Ruben has reserved a community over here just in case.

[–] pitninja@lemmy.ml -2 points 1 year ago (2 children)

The Linux Foundation is not the Linux kernel, though.

[–] pitninja@lemmy.ml 0 points 1 year ago (5 children)

Tone policing is classist

Apologies if this is something that you think should be obvious to anyone, but I'm genuinely curious what you mean by "classist" here.

I occasionally encounter assholes from all walks of life and prefer to avoid them all the same. I'm actively in favor of reasonable moderation on social media sites to filter assholes out because it's better for my mental health.

Nobody's saying we can't have differences of opinion and disagreements. But I don't think it's unreasonable that we should be expected to engage respectfully or not at all. This is a standard that should be applied equally to all. It's difficult to do, but we should also strive to hold people we otherwise generally agree with on principle accountable if they're being aggressive/hostile/antagonistic because, at best, they're being a bad advocate of our own positions and, at worst, they're being an asshole.

view more: next ›