Mastodon finally starts to feel like the early days of #Twitter. Good conversations, respectful and intelligent people, and a lot of inspirational content freely shared.
Angular vs. Bootstrap: A Comparison of Frontend Frameworks
Wondering which frontend framework to choose, Angular or Bootstrap? Our guide provides insights, tips, and real-life examples. Join the conversation, share your thoughts, and connect with developers passionate about frontend development. Let's create amazing web experiences!
Has anyone even thought to ask #Instagram users what they think of #Threads? Not the ones that are are using it because they were using #Twitter already; the ones who won't use it because they never liked words. The real core Instagram constituency: illiterates who like pretty pictures.
Custom fields was one of our most requested features for #ProtonPass. We know it's only been 2 days since our launch, but now supporters of our paid plans can add extra fields for storing secret questions, second passwords or anything you like. Learn more: https://proton.me/support/pass-custom-field
Hello #Mastodon and #Tech folks,
Is there an Android Mastodon app that allows me to follow the Local feeds of various instances?
(Am currently using Megolodon, Tooot and Metatext. Perhaps I don't know if this is actually a feature in the app. Fun fact: I once drove a car 100% believing that it had no air conditioners. A year later, my friend showed me the button on the dashboard that activated it. Yeah, I'm that kind of person.)
@incogni_com, a company that markets itself as a privacy-conscious org that helps users take their personal data off the internet, uses third-party trackers in their emails.
@k3ym0 conversion rate tracking is a thing. I wouldn't jump to the conclusion that the company is hypocritical. the third party may not be aware of any pii. I personally just block that stuff, you can do too.
For years, I’ve seen questions from inside and outside of the 1Password community about the safety and security of storing certain secrets (like passwords) alongside other secrets (like TOTP). There’s a lot of misinformation out there. A coworker of mine, who is smarter than I am, writes about and clarifies the topic here: https://blog.1password.com/totp-for-1password-users/
@zak I don't understand why companies such as 1password keep on trying to justify having all of your credentials in one place. Is it convenient, yes... so is not having 2fa at all. is it less secure having to trust a third party with everything, also yes. I admire the work you do, not so much the talking especially when referring to an absolutely sane decision to be based on misinformation.
@zak I'm not against 1password. I'm against labelling people as misinformed if they choose (for valid reasons) not to entrust a third party with all of their credentials.
@zak I'm referring to your post. While I do agree that saying it's not safe isn't accurate saying that it is, is equally inaccurate. the blog post does mention tradeoffs, and unlikely scenarios. The fact that a good security posture checks off aspects of "separation of duties" is just blindly ignored, understandable from the pov of a company trying to sell their product... that's what I'm pointing out.
@zak it's not a very unlikely scenario for a company to mess up, this has happened numerous times in the past. It is unlikely for multiple services to mess up at the same time. I'm talking about trust and this should never be given blindly. 1password being an expert in that field should have some humility and highlight this by recommending separation of duties to be a very good practice - not an unlikely scenario blah blah
@zak convenience vs. security. I don't think we have to talk about 1password promising about what their processes look like should make me trust them? Am I to audit every update? god no. also I have nothing against 1password, I have nothing against people storing TOTP alongside their passwords. I am annoyed about these services downplaying the valid opinion of separating credentials. We all agree that separation is the more secure way. It's not a preference it's a fact. convenience vs. security
@zak again the downplay in combination with the exaggeration, now I shouldn't be using the internet great, is that the stance? also, it is in fact more secure to have TOTP on a separate application. The fact that 1password is one update away of being able to collect my primary credentials and gaining access to everything I stored with them is a serious threat in my model. you are biased that is ok. my security posture is not as amazing as I make it seem, that is also ok. I just wish companies...
@zak wow, I don't think I ever said that. Just because I'm questioning how a feature is being pushed by 1Password without properly highlighting the risks and allowing or even recommending other ways? I mean yeah, we can end the conversation...