Nun ja, auch wenn Passkey was gutes ist und von grossen Firmen bereits angeboten im Einsatz ist, fast keine kleinere Firma investiert in die Tools daführ. Dies auch mMn weil sie es als "zu teuer & unnötig" ansehen.
»Chance verpasst – Webauthn-rs-Entwickler hält Passkeys für geplatzten Traum: #Passkey's sollen Anmeldevorgänge sicherer und benutzerfreundlicher machen. Der Entwickler einer #Webauthn-Bibliothek für #Rust sieht das Vorhaben inzwischen als gescheitert an.«
🧵 …wie im obigen verlinkten Artikel schon erwähnt, kann ich durchaus @bitwarden oder deren in Rust entwickelten Klon @vaultwarden_releases empfehlen, obwohl ich persönlich @keepassxc bevorzuge und über eine @nextcloud Instanz die Daten zwischen den Geräten synchronisiere 🔑
Fast Internet is not really available these days. Not because of the connection, but because of the excessive data flow and JavaScript application on the pages. In my opinion, this is often too much of a good thing.
are there SSTI tests that can pinpoint exactly which template engine is being used. {{ 7*7 }} only tells you that SSTI is possible, but not which engine is being used. {{ }} is used by Liquid, Jinja, Vue.js, and Angular.js, so testing with {{ }} doesn't narrow things down. #ssti#websec
Hey @Vivaldi noticed that vivaldi.net is one of the all-greens on Hardenize.
I'd move my mails to vivaldi.net, but I have size worries, still use other providers, & own domain.
Do you have any plans to implement paid size plan, & features like automatic IMAP fetch, external sending SMTP, own domain management?
I just read about the backstory for the .zip and .mov TLDs and Google's thinking seems totally orthogonal to reality:
Google marketers say the aim is to designate “tying things together or moving really fast” and “moving pictures and whatever moves you,”
.mov is a movie, and .zip is an archive, and no amount of Google marketing can change that. Moreover, yes, black holing these domains sounds like a good idea.
There is a "Did the Application successfully complete the Technical and Operation Capability review? - Yes" but I need to read more what exactly are the technical parameters for a new TLD string to be acceptable.
Strangely enough, there is also a "Public Comment Period" with "Was the public provided an opportunity to submit comments on the Application? - Yes"
Has anyone in the history of anything ever heard of ICANN public comment for new TLDs?