There was a lot of news the other day about passkeys and portability - fidoalliance.org/fido-alliance… - that says in part:
"Until now, there has been no standard for the secure movement of credentials, and often the movement of passwords or other credentials has been done in the clear."
This is true, but... there is also still no standard for any of that. The specs are mostly empty placeholders.
fidoalliance.org/specs/cx/cxp-…
fidoalliance.org/specs/cx/cxf-…
Solid Mitch Hedberg energy here.
FIDO Alliance Publishes New Specifications to Promote User Choice and Enhanced UX for Passkeys - FIDO Alliance
The FIDO Alliance has published a working draft of a new set of specifications for secure credential exchange that, when standardized and implemented byLori Glavin (FIDO Alliance)
This is the most important thing you need to know about passkeys: that "Authorizing Party" box in the spec?
That's not you. They're not actually "your" passkeys.
puri.sm/posts/pureos-crimson-d…
#Purism #PureOS
PureOS Crimson Development Report: September 2024 – Purism
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.Purism SPC
Celebrating 20 Years of Google Summer of Code
Google Summer of Code program celebrates its 20th year of nurturing new contributors and increasing positive impact to the open source ecosystem.Google Open Source Blog
How to ruin your day:
- Try to turn on your Macbook and find it dead.
- Send it for replacement.
- Boot up the good old Macbook from the bottom of the wardrobe.
- Start the migration assistant
- Be happy that it found your time machine backup on NAS.
- Enter the encryption key for the backup
- Be happy you've done that on a first try as why would they support the password managers or at least the copy/paste...
- Begin the NW transfer and wait.... WAIT
- Find out it's deadly slow, do some googling and check whether you still support SMB1 on NAS
- Shit - you do - so stop the process, disable SMB1 and start over 4-6, because on 7 you get "Mount failed".
- Try the encryption key again, again and AGAIN, still "mount failed"
12-1024. Restarts, googling, backing out to SMB1, first friend on a phone, second, third... still F...ing "mount failed".
I'm out of reasons, the sparsbundle works, you can mount it, decrypt it, even get some data via time-machine itself, but that bloody migration assistant doesn't ever works correctly again.
With all the guide dog discrimination on Lyft and Uber, why haven't I seen much in the way of people advocating for, or companies moving towards, the implementation of a feature which would allow riders to disclose the service animal on their profile? I got into a debate with someone on Twitter a few years ago about this, and the best they could come up with is that they "don't want to have to wait longer than other people."
Animal alergies are real. Think whiping Mcdonald's crumbs out of your car is difficult? What about dog hair?
Animal phobias are also real. I work with someone whose sister is so afraid of cats that she won't work in someone's house that contains a cat. Seriously it's almost primal!
Dislike of dogs and things about them is real. I don't have a dog alergy, I don't have a fear of dogs, but I made it clear to my sister that I really preferred it if her dog didn't hop on my bed.
I saw in an article today that Lyft might be adding a way to disclose service animals. This, is fair. This, is what needs to happen. This, protects drivers and riders alike. At least from my point of view.
If you don't believe this, why? I genuinely want to know the prospectives of people who don't, because I'm trying to understand that and I've only heard from one guy.
modulux reshared this.
We’re celebrating 20 years of Thunderbird this year! It’s been an incredible journey for our users, the dedicated team of contributors who have worked on it and of course our amazing open-source community who has been there every step of the way. 🎉 To mark this occasion, check out this beautiful video by @freehive and see how Thunderbird is ready for the next 20 years.
reshared this
Experience the New Thunderbird!
On December 7, 2004, Thunderbird 1.0 was released. Now, 20 years later, we’re celebrating two decades of secure, open-source email communication! 🎉 This new...YouTube
The worst AI scraper that doesn't even identify itself as such is still this user agent:
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:72.0) Gecko/20100101 Firefox/72.0
It's not even listed on darkvisitors(.)com
I see 5120 requests in the last 24 hrs alone, all for JPEG & WEBP files. I don't want to know how much bandwidth & energy it consumes, globally.
Easy to block via Cloudflare or .htaccess: Firefox/72 is ages old and no human visitor would use it.
Spread the word.
if this really happened, the employee who used generative AI to “expand” the photo should be immediately fired.
We can’t eliminate genAI anymore than we can eliminate plagiarism, but we can limit its normalization by making discovery so costly that people are too terrified to take the risk.
Siri enables it then, in a snarky tone:
'Noise canceling is already on.'
Well duh!
Anything I ask it to do with airpods like that, it now responds as if the setting were already active first. This, since iOS 18.
Apple’s App Stores can’t install new apps
Apple’s App Stores across the iPhone, iPad, and Mac are down, leaving users unable to install new apps.Emma Roth (The Verge)
jasonjgw.net/blog/technology/w…
#WebDevelopment #accessibility
We mock it, but it's a serious thing that the leader of His Majesty's Most Loyal Opposition has not obtained a national security clearance.
10 perfectly innocent explanations for why Pierre Poilievre won’t get national security clearance:
thebeaverton.com/2024/06/10-pe…
10 perfectly innocent explanations for why Pierre Poilievre won't get national security clearance - The Beaverton
Pierre Poilievre’s refusal to get a national security clearance so he can read the report on foreign interference in Canada’s elections is raising eyebrows, with many suggesting that maybe he can’t get a security clearance because he poses a security…Luke Gordon Field (The Beaverton)
A useful (to me, anyway) Thunderbird tip!
I compose and reply in plain text, but once in a while, I want to reply using html, to preserve formatting in the original message.
Shift + click "Reply" on the interface means "reply as html".
I haven't found a keyboard shortcut for this yet though - if you know one, please share!
We LOVE hearing Thunderbird tips, especially from our community! All our existing shortcuts can be found in this handy Mozilla Support article: support.mozilla.org/en-US/kb/k…
We took a poke around our Add-ons and couldn't find anything that might an additional shortcut for this, but this could be a good suggestion for Mozilla Connect! connect.mozilla.org/t5/ideas/i…
Misinformation is false or inaccurate information—getting the facts wrong. Disinformation is false information which is deliberately intended to mislead.
The way I easily recall this for myself is, misinformation is something you can crawl out from under as a mistake. While disinformation can often lead the person down a path of a mental disease, where coming up with it becomes gamified and of little consequence to them and their future
Under the Radar #303: Raising Prices - Relay FM
Looking around the App Store, it's clear that we're not charging enough.Relay FM
As an aside, why not add "Play Podcast" as a rotor option while pointing to a podcast.
Just received a bit of unusually honest job spam:
We are looking to enter the US software market and are
interested in working with experienced US professionals.
Given the salary gap between US developers and other
developers, I think this collaboration could be beneficial to
both of us.
Oh really? How's that? Do I in particular seem like someone who might be OK with a lower salary? Hard not to read something like this and see in it every instance of someone thinking I should be OK with less for some reason related to my disability. They probably didn't know that specifically and maybe I'm misreading, and also they claimed to have found my non-existent LinkedIn, but for everyone writing that I'm sure there are many who don't.
Job-searching as someone with a disability suuuuucks.
#MozillaFirefox #MicrosoftEdge #incrementalGames #browserBasedGames #gaming #browsers #Windows #Windows11 #WindowsEleven #WindowsElevenPro #tech #technology
Thunderbird for Android 8.0b3 is out! There are two things we'd really love help testing. One is the funding feature! (thunderbird.topicbox.com/group…). The other is the QR code sync between desktop and mobile (thunderbird.topicbox.com/group…). Thanks to everyone who has helped beta test and given feedback!
Release notes on our GitHub: github.com/thunderbird/thunder…
#ThunderbirdForAndroid #Thunderbird #OpenSource
Releases · thunderbird/thunderbird-android
Thunderbird for Android – Open Source Email App for Android (fka K-9 Mail) - thunderbird/thunderbird-androidGitHub
Tamas G reshared this.
dobre hovorí
youtube.com/watch?v=jOOMoziHT5…
Hamran v Aréne: Zavolali ma vypovedať k atentátu na Fica. Sedel som tam krútiac hlavou
„Som výsluhový dôchodca a venujem sa mame.“ Bývalý policajný prezident Štefan Hamran je takmer rok v civile a už absolvoval niekoľko policajných výsluchov. J...YouTube
Bombic je z tej miniaturnej mensiny, pre ktoru sa podarilo naplnit tu cast programoveho vyhlasenia aktualnej vlady, ktora hovori o "bezpečnejšie žiť".
Lebo nackovia, fasisti, klamari, podvodnici, atd. a pod. sa tu teraz naozaj citia bezpecnejsie. (Volakedy by sli do basy.)
ref.: mastodon.social/@phanecak/1133…
Peter Hanecak (@phanecak@mastodon.social)
Este k tomu programovemu vyhlaseniu vlady: - "Lepšie": urcite nie, aj ked to zuzime iba na ekonomiku, lebo konsokidacia zdvihne naklady vsetkym¹ - "pokojnejšie": to tiez nie, lebo "furt nieco"² - "bezpečne žiť": nuz, ani to, o.i.Mastodon
I really feel sorry for the public sector employees working on meeting this #a11y deadline for PDFs.
"PDFs are where services go to die."
No doubt the people working on this will be super under-resourced, and actually meeting this deadline won't be seen as much of a win by anyone, but not meeting it has legal and dire consequences.
To be clear more #a11y is good! Under-resourcing teams is not!
deptcivicthings.substack.com/p…
#Government #PublicInterestTech #CivicTech
The elephant in the new accessibility law: PDFs
If your government agency is typical, you have a lot of PDFs. Probably thousands. They are probably not accessible.Rebecca Woodbury (Department of Civic Things newsletter)
Here in the United States, "I'm voting Green" is just a shorthand way of saying "I'm voting for the cheaper Putin lickspittle to help the more expensive Putin lickspittle get back into the White House."
To the Green supporters/Russian bots about to fume in the comments about how their vote is in fact something else than the above, here is my pre-emptive reply:
SuspiciousDuck
in reply to SuspiciousDuck • • •SuspiciousDuck
in reply to SuspiciousDuck • • •SuspiciousDuck
in reply to SuspiciousDuck • • •SuspiciousDuck
in reply to SuspiciousDuck • • •