Conversation

Notices

1. Embed this notice
   御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:29:17 JST 御園はくい
   >we're changing the office vpn client
   oh, what for
   >so we can have mfa on it
   :ehh:
   
   i don't have to worry about mfa fatigue attacks from hackers because my own IT department already attacks me every day
   
   thank you for reading my blog post
   • Sexy Moon and on-lain ✔ᵛᵉʳᶦᶠᶦᵉᵈ like this.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 16:29:16 JST ロミンちゃん

     in reply to
     @hakui wuts the big deal with MFA? Unless it's via SMS.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 16:40:49 JST ロミンちゃん

     in reply to
     @hakui you vill type the code and be happy. And realistically speaking how's that going to prevent boomers from fucking it up when phishermen add a mfa code field, to their schemes?
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:40:50 JST 御園はくい

     in reply to

     • ロミンちゃん
     @romin previously it was only for o365 and it only prompted every week, now it prompts every day and they're adding more things to require mfa
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:40:51 JST 御園はくい

     in reply to

     • ロミンちゃん
     @romin boomers in the office falling for the most obvious phishes so management has to show they're doing something about Security
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:44:15 JST 御園はくい

     in reply to

     • ロミンちゃん
     @romin it makes it easier actually, since the boomers get even more desensitized and just fill in the prompt without verifying it
     ロミンちゃん likes this.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 16:46:15 JST ロミンちゃん

     in reply to
     @hakui well, sekyuuritee *experts* need to eat too.
   • Embed this notice
     「セル」cell (سل) (cell@pl.ebin.zone)'s status on Friday, 25-Aug-2023 16:51:39 JST 「セル」cell (سل)

     in reply to

     • ロミンちゃん
     @hakui @romin you will use the mobile phone mfa
     you will install the mdm
     you will be reachable after hours
     and you will be happy
     ロミンちゃん likes this.
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:53:12 JST 御園はくい

     in reply to

     • ロミンちゃん
     @romin maybe i'll apply for a security position next time
     adobe reader isn't going to update itself
     ロミンちゃん likes this.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 16:58:46 JST ロミンちゃん

     in reply to
     @hakui there's a website that does this to me. Can confirm it's as nightmarish as it sounds.
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:58:47 JST 御園はくい

     in reply to

     • Machismo
     @Zerglingman i'd prefer staying employed
     
     but maybe one day i'll roll out mfa on every system i maintain too just to accelerate
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 16:58:47 JST 御園はくい

     in reply to
     >search "mfa powerapps" out of curiosity
     >some pajeet built their own where the start screen randoms an otp and sends an email to the user
     >if i added such a function my users would have to mfa to get to their email inbox to get to the otp email
     thanks rakesh for showing me the road to hell
     ロミンちゃん likes this.
   • Embed this notice
     Machismo (zerglingman@freespeechextremist.com)'s status on Friday, 25-Aug-2023 16:58:49 JST Machismo

     in reply to
     @hakui Have you tried calling them niggers?
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 17:04:55 JST 御園はくい

     in reply to

     • ロミンちゃん
     @romin email otps are the great satan
     ロミンちゃん likes this.
   • Embed this notice
     mdn (mangeurdenuage@shitposter.club)'s status on Friday, 25-Aug-2023 21:34:52 JST mdn

     in reply to

     • ロミンちゃん
     @romin @hakui trust the expect who trust the power in place/corpos :kekw:
     ロミンちゃん likes this.
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 21:34:54 JST 御園はくい

     in reply to

     • mdn
     @mangeurdenuage the only good thing about mfa is that i can now reuse my passwords :smug1:
     ロミンちゃん likes this.
   • Embed this notice
     mdn (mangeurdenuage@shitposter.club)'s status on Friday, 25-Aug-2023 21:34:55 JST mdn

     in reply to
     @hakui
     >let add another layer of complexity to be sure that we are secure
     Password: first factor
     ID: second factor
     :honk:
     justified when the context does justify it, but in context they don't understand that mfa is used wild spread because of uneducated users bad practices and that doesn't fully solve the issue at all since it's a human fucking issue that cannot be solved by adding more complexity.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 21:40:21 JST ロミンちゃん

     in reply to

     • mdn
     @mangeurdenuage @hakui
     >VLC media player was malware
     Yes, install MPV.
   • Embed this notice
     mdn (mangeurdenuage@shitposter.club)'s status on Friday, 25-Aug-2023 21:40:22 JST mdn

     in reply to

     • ロミンちゃん
     @hakui @romin You joke but I have witnessed such people. The story is that after I fixed with the greatest care my brother's adobe suit workstation of the time where he worked, it needed 1h30 minutes to boot due too tons of malware instead mainly via usb, after I passed on it, it needed 15 minutes, two weeks after that my brother told me the responsible of the IT infra came and told that VLC media player was malware and uninstalled it, update adobe and went away.
   • Embed this notice
     御園はくい (hakui@tuusin.misono-ya.info)'s status on Friday, 25-Aug-2023 22:06:53 JST 御園はくい

     in reply to

     • mdn
     • ロミンちゃん
     @mangeurdenuage @romin i'm even more ok with mpv after that
     ロミンちゃん likes this.
   • Embed this notice
     mdn (mangeurdenuage@shitposter.club)'s status on Friday, 25-Aug-2023 22:06:54 JST mdn

     in reply to

     • ロミンちゃん
     @romin @hakui I was ok with mpv until this.
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 22:07:46 JST ロミンちゃん

     in reply to

     • mdn
     @mangeurdenuage @hakui pleroma:super_like based mpv
   • Embed this notice
     ロミンちゃん (romin@shitposter.club)'s status on Friday, 25-Aug-2023 22:13:13 JST ロミンちゃん

     in reply to

     • mdn
     @mangeurdenuage @hakui on baseness
   • Embed this notice
     mdn (mangeurdenuage@shitposter.club)'s status on Friday, 25-Aug-2023 22:13:14 JST mdn

     in reply to

     • ロミンちゃん
     @romin @hakui based on what ?
   • Embed this notice
     Dumb Idiot Retard (idiot@shitposter.club)'s status on Friday, 25-Aug-2023 23:46:00 JST Dumb Idiot Retard

     in reply to

     • mdn
     • ロミンちゃん
     @mangeurdenuage @romin @hakui mplayer2
     ロミンちゃん likes this.
   • Embed this notice
     Sexy Moon (moon@shitposter.club)'s status on Saturday, 26-Aug-2023 00:50:50 JST Sexy Moon

     in reply to

     • ™️¥
     @tomey @hakui during covid we were working remotely and nobody could get the yubikeys working on remote desktop so every desktop in the company had a yubikey plugged into it in the office
   • Embed this notice
     ™️¥ (tomey@shitposter.club)'s status on Saturday, 26-Aug-2023 00:50:51 JST ™️¥

     in reply to
     @hakui I have to MFA like 50 times per day, it's annoying.
   • Embed this notice
     feld (feld@bikeshed.party)'s status on Saturday, 26-Aug-2023 00:51:51 JST feld

     in reply to

     • Sexy Moon
     • ™️¥
     oh my god what lol
   • Embed this notice
     feld (feld@bikeshed.party)'s status on Saturday, 26-Aug-2023 00:52:38 JST feld

     in reply to

     • Sexy Moon
     • feld
     • ™️¥
     does this mean the Yubikeys don't even need physical touch to activate?
     
     WHYYYYYYYYYYY this is the worst :supaburn:
   • Embed this notice
     Sexy Moon (moon@shitposter.club)'s status on Saturday, 26-Aug-2023 01:33:20 JST Sexy Moon

     in reply to

     • feld
     • ™️¥
     @feld @tomey @hakui it's an option I think
   • Embed this notice
     SlicerDicer (slicerdicer@bikeshed.party)'s status on Saturday, 26-Aug-2023 01:36:14 JST SlicerDicer

     in reply to

     • Sexy Moon
     • feld
     @Moon @feld How? Why is this even a option.
   • Embed this notice
     feld (feld@bikeshed.party)'s status on Saturday, 26-Aug-2023 01:36:14 JST feld

     in reply to

     • Sexy Moon
     • SlicerDicer
     Yeah it's an option for Yubikeys but every IT security team should be configuring them to require touch. Allowing them to "just work" without a human knowing it's being used is insane.
     Sexy Moon repeated this.
   • Embed this notice
     feld (feld@bikeshed.party)'s status on Saturday, 26-Aug-2023 01:40:01 JST feld

     in reply to

     • SlicerDicer
     I almost built this for myself at a previous job but didn't want to get fired if they found out
   • Embed this notice
     SlicerDicer (slicerdicer@bikeshed.party)'s status on Saturday, 26-Aug-2023 01:40:02 JST SlicerDicer

     in reply to

     • feld
     @feld Always something.
     narcolepsy and alcoholism :flag: likes this.
   • Embed this notice
     muio (muio@shitposter.club)'s status on Saturday, 26-Aug-2023 16:32:00 JST muio

     in reply to

     • mdn
     • ロミンちゃん
     @mangeurdenuage @romin @hakui
     MPV was fun when wm4 routinely shitposted about how terrible Gnome was
     He also told haskellfags to fuck off :akkolol:
     I miss him :akko_exhausted:
     ロミンちゃん likes this.
   • Embed this notice
     翠星石 (suiseiseki@freesoftwareextremist.com)'s status on Sunday, 06-Oct-2024 23:05:30 JST 翠星石

     in reply to
     @hakui Well there it is - the primary usecase of MFA.