xyguy

joined 1 year ago
[–] xyguy@startrek.website 4 points 4 months ago

No! But im glad to know theres another pair out there somewhere.

[–] xyguy@startrek.website 122 points 4 months ago (9 children)

Theres a house near me that has the 10 foot skeleton that they dress up for all the different holidays. Last year they got a second one. One of my favorite houses to looks at when I go by.

[–] xyguy@startrek.website 2 points 4 months ago (1 children)

This is more like triple bolting the door but leaving a window open. There's nothing inherently wrong with the door, its still secure but you can bypass the secure option with a less secure method.

[–] xyguy@startrek.website 4 points 4 months ago

You also get additional protection because rather than each website holding onto a hashed (hopefully) copy of the user passwords that can be stolen in bulk, stealing the public keys for a passkey from a site wouldn't compromise the account. Someone would have to get access to your physical device or hack your password manager individually to get access to your passkey.

And and, the magic for most people is no more passwords and 2 factor stuff to deal with. The standard is still new, and in the cases where you want to use physical keys, its always best to keep 2 in case one gets smushed or goes through the washer. Some sites that have passkeys enabled only let you have 1 passkey. So in that case its kind of risky to make a passkey the only way to sign in.

[–] xyguy@startrek.website 2 points 4 months ago

This is the real takeaway, if you have a forgot password button that bypasses everything then none of it is anything more than a login accelerator.

[–] xyguy@startrek.website 18 points 4 months ago (12 children)

This is just someone siting in the middle and modifying a page not to show the passkey login option anymore and then stealing a password/session token.

As far as I can tell, this has almost nothing to do with passkeys specifically and would only apply in a situation where a website has a username and password fallback in case a passkey isn't created or isnt working.

[–] xyguy@startrek.website 2 points 4 months ago

I agree with you.

And youre right that the article doesnt focus on the algorithmic hate factory which to me is the main difference between social media and traditional media. For instance, and this is just anecdotal, my grandma who had nothing besides an analog telephone and broadcast tv became just as polarized and angry as someone with social media just by reading and watching Fox news (and eventually OAN and Newsmax) all day. I cant imagine that Facebook would have made it any worse.

The algorithm is probably accelerating the polarization pipeline, but i guess my point was that social media isnt necessarily doing anything new or distinct. Its doing the same thing Rush Limbaugh was doing on the radio 25 years ago, its just on a new frontier.

The 24 hour news cycle was already throwing sensational controversial stories up and speculating wildly if not outright lying about to hold on to eyeballs. The longer you watch, the more commercials you see. Etc etc.

I would love to see a study of social media vs traditional media to see whether the mean time to full polarization changes and if so, how significantly.

Good Ted talk!

[–] xyguy@startrek.website 2 points 4 months ago (2 children)

Nope not really. People were already mad but its a lot easier to get mad publicly on the internet than in person. But Im sure the same people could get just as angry watching biased news channels but they cant start arguments with anyone in that context.

And also, don't forget Betteridges Law of Headlines.

[–] xyguy@startrek.website 8 points 4 months ago (3 children)

I haven't done any work for the military but i can say that all the legacy systems I've worked on were because the specific software they need was written only for Windows 98 and the developer or company that created it is long gone. Keeping it going is a chore but switching to literally anything else is out of the question.

I could see for military applications that having the known quantity of a working piece of software that isn't changing anymore and can be swapped as an entire unit is an advantage, especially if it doesn't touch the internet in any capacity. But eventually you run out of people who know what to do if any changes need to be made.

[–] xyguy@startrek.website 5 points 4 months ago

There are several things like that in Fedora, which is already a good reason not to recommend it to first timers. They most likely won't know or care about nonfree codecs, they will just see a broken machine. Linux Mint understands that as a use case and has a "magic make it work" checkbox during install.

That all being said, I run Nobara and love it, but i wouldn't recommend it for new people.

view more: ‹ prev next ›