Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 00:12:02 JST Patrick C Miller :donor:

One login to rule them all: Should you sign in with Google or Facebook on other websites? https://www.welivesecurity.com/en/cybersecurity/one-login-rule-them-all-should-sign-in-google-facebook-other-websites/
In conversation Monday, 30-Oct-2023 00:12:02 JST from infosec.exchange permalink
Attachments
1. Domain not in remote thumbnail source whitelist: www.welivesecurity.com
  
  One login to rule them all: Should you sign in with Google or Facebook on other websites?
  
  Why use a zillion discrete accounts when you can log into so many apps and websites using your Facebook or Google credentials, right? Not so fast. What’s the trade-off? Here are the pros and cons of the consumer variety of an authentication method called Single Sign-On (SSO), commonly also known as social login, for your personal online accounts.
- Embed this notice
  Cali (cali@infosec.exchange)'s status on Monday, 30-Oct-2023 03:30:30 JST Cali
  in reply to
  
  @patrickcmiller are you trying to frighten the crap out of everyone at Halloween??
  
  In conversation Monday, 30-Oct-2023 03:30:30 JST permalink
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:53:52 JST Patrick C Miller :donor:
  - bhc
  @bughuntercat I use unique logins (with various emails) for different things… But I *never* use Google, Twitter, etc…
  
  In conversation Monday, 30-Oct-2023 07:53:52 JST permalink
- Embed this notice
  Andy Nortrup (andy@nortrup.social)'s status on Monday, 30-Oct-2023 07:54:45 JST Andy Nortrup
  in reply to
  
  @patrickcmiller@infosec.exchange one risk I didn't see was that if you have all of your accounts tied to one provider you are at a very severe risk of having that account disabled and losing everything. You are one trust and safety decision away from losing access.
  
  In conversation Monday, 30-Oct-2023 07:54:45 JST permalink
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:54:45 JST Patrick C Miller :donor:
  in reply to
  - Andy Nortrup
  @andy Great catch. Yes, these can be somewhat arbitrary as well - for many reasons.
  
  In conversation Monday, 30-Oct-2023 07:54:45 JST permalink
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:55:39 JST Patrick C Miller :donor:
  in reply to
  - Ulrike
  - Andy Nortrup
  @ulidig @andy excellent example!
  
  In conversation Monday, 30-Oct-2023 07:55:39 JST permalink
- Embed this notice
  Ulrike (ulidig@mastodon.social)'s status on Monday, 30-Oct-2023 07:55:41 JST Ulrike
  in reply to
  - Andy Nortrup
  @andy @patrickcmiller
  And if you think, "I don't do anything that would get my account closed," think again.
  https://www.theguardian.com/technology/2022/aug/22/google-csam-account-blocked
  In conversation Monday, 30-Oct-2023 07:55:41 JST permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: i.guim.co.uk
    
    Google refuses to reinstate man’s account after he took medical images of son’s groin
    
    from https://www.theguardian.com/profile/johana-bhuiyan
    
    Experts say case highlights dangers of automated detection of child sexual abuse images
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:56:15 JST Patrick C Miller :donor:
  in reply to
  - Cali
  @Cali spooky, right?
  
  In conversation Monday, 30-Oct-2023 07:56:15 JST permalink
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:56:54 JST Patrick C Miller :donor:
  in reply to
  - Ricardo
  @ric2b another great example!
  
  In conversation Monday, 30-Oct-2023 07:56:54 JST permalink
- Embed this notice
  Ricardo (ric2b@mastodon.online)'s status on Monday, 30-Oct-2023 07:56:55 JST Ricardo
  in reply to
  
  @patrickcmiller Absolutely not. Relevant Tom Scott: https://youtu.be/y4GB_NDU43Q?si=cOSedgFbB3pL5esw
  In conversation Monday, 30-Oct-2023 07:56:55 JST permalink
  Attachments
  1. Single Point of Failure: The (Fictional) Day Google Forgot To Check Passwords
    
    from Tom Scott
    
    http://tomscott.com - @tomscott - I spin a (fictional) tale of the day that Google accidentally opened everything. Performed at GeekyConf, with thanks to Bet...
- Embed this notice
  Patrick C Miller :donor: (patrickcmiller@infosec.exchange)'s status on Monday, 30-Oct-2023 07:58:18 JST Patrick C Miller :donor:
  in reply to
  - Simply Simon
  @Salty true, but less is still less…
  
  In conversation Monday, 30-Oct-2023 07:58:18 JST permalink
- Embed this notice
  Simply Simon (salty@mastodon.nz)'s status on Monday, 30-Oct-2023 07:58:19 JST Simply Simon
  in reply to
  
  @patrickcmiller No, they already have enough info on what sites I use despite me taking reasonable precautions to limit it.
  
  In conversation Monday, 30-Oct-2023 07:58:19 JST permalink

Public

Conversation

Notices

Feeds