Developer and web technology enthusiast. Mostly a reader, less of a writer.
jeremycollins.net http://mastodon.social/@jollins

  • 0 Posts
  • 7 Comments
Joined 1 year ago
Cake day: July 3rd, 2023
  • jollins@programming.devtoApple@lemmy.worldMichael Tsai Blog - Is It Safe to Store Passwords and 2FA Codes Together?English
    8·
    1 year ago

    There’s a balance between convenience and security and IMO storing both on 1Password is fine. An attacker getting into your 1PW account would require them having

    • your username

    • and your password (which should be unique to only 1PW)

    • and your secret key

    • or physical device access with your 1PW password or biometric auth credentials

    in which case an attacker really wants your stuff, has your device, and you have bigger issues.

    I feel like this is similar to saying “is your front door lock strong enough?” when a thief is at your door and really wants to get inside, regardless of level of effort required.

  • jollins@programming.devtoFediverse@lemmy.worldWhy Defederating from Facebook/Meta is So Important
    27·
    1 year ago

    NDAs are completely normal working with any established company on their pre-release product. I have signed NDAs when visiting an office because I might be in the presence of non-public data on someone’s nearby monitor. The NDA issue being a signal of negative intent really shows the level of sensitivity people have regarding this.

    The intended purpose of defederation I thought was to keep the Nazis out, and prevent brigading from other communities — in general, a tool to use sparingly to isolate bad nodes to maintain the overall network health. Defederation because an instance has been accused of a pre-crime is a very troubling stance. It’s also surprising to see this posted here due to lemmy.world being defederated from already by other instances due to moderation concerns. That defederation is actually why I intentionally avoided a lemmy.world account — it’s just a headache for users