Boost request for a person who did an awesome thing for accessibility.
Hey folks, I would like to call upon the Mastodon community to boost the individual who made the Youtube video linked here. Let me explain. This wonderful person took a video that was only published in Japanese, (a video where Nintendo's Sakurai discussed The Last of Us Part 1's accessibility features in great detail talking about how great they were for quality of life), and on their own time, with their own setup, voluntarily, dubbed the video in English for us blind folks so we could appreciate it too. This especially meant a lot to me, as I worked on those accessibility features, and felt kinda honored to be indirectly complimented by Sakurai. Anyway, long story short, if you ever need this kind of voiceover work done, or audio editing, hire this guy. They deserve some promotion after this awesome work. Oh, and they are also a coder!!! Hire them for that, too! :) youtube.com/watch?v=dWosA-2-Ze…
Original Video: https://www.youtube.com/watch?v=j2BX4yw8Z4YThis video was made for accessibility purposes with limited resources, so apologies for the incons...
Dnes jsem poprvé slyšel slovo "kundovinec" - navíc z dámských úst. Konkrétně bylo použité jako označení moka konvičky na kafe, ale myslím, že obecně může označovat téměř cokoliv. Oceňuju, že je to důstojná, genderově vyvážená protiváha slova "kokotina".
@archos nene, ekvivalent pro životná podstaná jména je zjevně "pičus". "Kundovinec" je obecné neživotné podstatné jméno, parafráze k "píčovině", akorát rodu mužského.
I recently wrote a post detailing the recent #LastPass breach from a #password cracker's perspective, and for the most part it was well-received and widely boosted. However, a good number of people questioned why I recommend ditching LastPass and expressed concern with me recommending people jump ship simply because they suffered a breach. Even more are questioning why I recommend #Bitwarden and #1Password, what advantages they hold over LastPass, and why would I dare recommend yet another cloud-based password manager (because obviously the problem is the entire #cloud, not a particular company.)
So, here are my responses to all of these concerns!
Let me start by saying I used to support LastPass. I recommended it for years and defended it publicly in the media. If you search Google for "jeremi gosney" + "lastpass" you'll find hundreds of articles where I've defended and/or pimped LastPass (including in Consumer Reports magazine). I defended it even in the face of vulnerabilities and breaches, because it had superior UX and still seemed like the best option for the masses despite its glaring flaws. And it still has a somewhat special place in my heart, being the password manager that actually turned me on to password managers. It set the bar for what I required from a password manager, and for a while it was unrivaled.
But things change, and in recent years I found myself unable to defend LastPass. I can't recall if there was a particular straw that broke the camel's back, but I do know that I stopped recommending it in 2017 and fully migrated away from it in 2019. Below is an unordered list of the reasons why I lost all faith in LastPass:
- LastPass's claim of "zero knowledge" is a bald-faced lie. They have about as much knowledge as a password manager can possibly get away with. Every time you login to a site, an event is generated and sent to LastPass for the sole purpose of tracking what sites you are logging into. You can disable telemetry, except disabling it doesn't do anything - it still phones home to LastPass every time you authenticate somewhere. Moreover, nearly everything in your LastPass vault is unencrypted. I think most people envision their vault as a sort of encrypted database where the entire file is protected, but no -- with LastPass, your vault is a plaintext file and only a few select fields are encrypted. The only thing that would be worse is if...
- LastPass uses shit #encryption (or "encraption", as @sc00bz calls it). Padding oracle vulnerabilities, use of ECB mode (leaks information about password length and which passwords in the vault are similar/the same. recently switched to unauthenticated CBC, which isn't much better, plus old entries will still be encrypted with ECB mode), vault key uses AES256 but key is derived from only 128 bits of entropy, encryption key leaked through webui, silent KDF downgrade, KDF hash leaked in log files, they even roll their own version of AES - they essentially commit every "crypto 101" sin. All of these are trivial to identify (and fix!) by anyone with even basic familiarity with cryptography, and it's frankly appalling that an alleged security company whose product hinges on cryptography would have such glaring errors. The only thing that would be worse is if...
- LastPass has terrible secrets management. Your vault encryption key always resident in memory and never wiped, and not only that, but the entire vault is decrypted once and stored entirely in memory. If that wasn't enough, the vault recovery key and dOTP are stored on each device in plain text and can be read without root/admin access, rendering the master password rather useless. The only thing that would be worse is if...
- LastPass's browser extensions are garbage. Just pure, unadulterated garbage. Tavis Ormandy went on a hunting spree a few years back and found just about every possible bug -- including credential theft and RCE -- present in LastPass's browser extensions. They also render your browser's sandbox mostly ineffective. Again, for an alleged security company, the sheer amount of high and critical severity bugs was beyond unconscionable. All easy to identify, all easy to fix. Their presence can only be explained by apathy and negligence. The only thing that would be worse is if...
- LastPass's API is also garbage. Server-can-attack-client vulns (server can request encryption key from the client, server can instruct client to inject any javascript it wants on every web page, including code to steal plaintext credentials), JWT issues, HTTP verb confusion, account recovery links can be easily forged, the list goes on. Most of these are possibly low-risk, except in the event that LastPass loses control of its servers. The only thing that would be worse is if...
- LastPass has suffered 7 major #security breaches (malicious actors active on the internal network) in the last 10 years. I don't know what the threshold of "number of major breaches users should tolerate before they lose all faith in the service" is, but surely it's less than 7. So all those "this is only an issue if LastPass loses control of its servers" vulns are actually pretty damn plausible. The only thing that would be worse is if...
- LastPass has a history of ignoring security researchers and vuln reports, and does not participate in the infosec community nor the password cracking community. Vuln reports go unacknowledged and unresolved for months, if not years, if not ever. For a while, they even had an incorrect contact listed for their security team. Bugcrowd fields vulns for them now, and most if not all vuln reports are handled directly by Bugcrowd and not by LastPass. If you try to report a vulnerability to LastPass support, they will pretend they do not understand and will not escalate your ticket to the security team. Now, Tavis Ormandy has praised LastPass for their rapid response to vuln reports, but I have a feeling this is simply because it's Tavis / Project Zero reporting them as this is not the experience that most researchers have had.
You see, I'm not simply recommending that users bail on LastPass because of this latest breach. I'm recommending you run as far way as possible from LastPass due to its long history of incompetence, apathy, and negligence. It's abundantly clear that they do not care about their own security, and much less about your security.
So, why do I recommend Bitwarden and 1Password? It's quite simple:
- I personally know the people who architect 1Password and I can attest that not only are they extremely competent and very talented, but they also actively engage with the password cracking community and have a deep, *deep* desire to do everything in the most correct manner possible. Do they still get some things wrong? Sure. But they strive for continuous improvement and sincerely care about security. Also, their secret key feature ensures that if anyone does obtain a copy of your vault, they simply cannot access it with the master password alone, making it uncrackable.
- Bitwarden is 100% open source. I have not done a thorough code review, but I have taken a fairly long glance at the code and I am mostly pleased with what I've seen. I'm less thrilled about it being written in a garbage collected language and there are some tradeoffs that are made there, but overall Bitwarden is a solid product. I also prefer Bitwarden's UX. I've also considered crowdfunding a formal audit of Bitwarden, much in the way the Open Crypto Audit Project raised the funds to properly audit TrueCrypt. The community would greatly benefit from this.
Is the cloud the problem? No. The vast majority of issues LastPass has had have nothing to do with the fact that it is a cloud-based solution. Further, consider the fact that the threat model for a cloud-based password management solution should *start* with the vault being compromised. In fact, if password management is done correctly, I should be able to host my vault anywhere, even openly downloadable (open S3 bucket, unauthenticated HTTPS, etc.) without concern. I wouldn't do that, of course, but the point is the vault should be just that -- a vault, not a lockbox.
I hope this clarifies things! As always, if you found this useful, please boost for reach and give me a follow for more password insights!
Don't forget about #KeeperSecurity, the only FedRAMP Authorized password manager with the longest-standing SOC 2 and ISO 27001 certifications in the industry. We stand by our extremely strict security standards. Here's a side-by-side comparison of how we stack up against LastPass: keepersecurity.com/blog/2022/0…. Our blog also features comparisons against other password managers on the market.
From price to product offerings, this comprehensive guide takes you through the key differences between the password managers Keeper Security and LastPass.
They have a bug bounty now (bugcrowd.com/keepersecurity ) but it does not allow researchers to disclose bugs (see “Disclosure” section) which to me represents a failure to engage with the security community. No amount of acronym certifications will make that ok for such a critical piece of security infrastructure.
Tokyo Machine & Weird Genius - Last Summer (feat. Lights) is out now on all platforms: https://monster.cat/lastsummertheremixesGet new music weekly - subscri...
For screen reader users out there, Apple TV+ has implemented autoreading subtitles on the web. Just play any title and enable subtitles: reddit.com/r/tvPlus/comments/z… (Yes, I know the post is mine)
@pvagner These are actually two tracks divided by slash, perhaps I should make it more obvious. :) As for the E-Type resemblance, Clocks perhaps, but Melancholy Angel is more of a Nightwish clone.
Python with braces. Because python is awesome, but whitespace is awful. - GitHub - mathialo/bython: Python with braces. Because python is awesome, but whitespace is awful.
Hello #Fediverse! #Pinetta is a decentralized FOSS social pinboard in the style of Pinterest. After a month of planning, we've settled on a basic game plan and are opening up our @Codeberg repo for contributions from devs and designers!
We'll be working on a prototype that uses #Python and #Django to get the basic functionality working. We'll also be hosting weekly sharing sessions on #CommunityBuilding principles to develop our Code of Conduct and a larger framework for community wellness. 🥳
With a delay, we arrive at the last window of the accessibility for the blind advent calendar. This one might be known to some of you as the news has reached quite some peak in media outlets worldwide. Accessible Christmas was an app developed to let blind people enjoy the Christmas lights of Madrit through a geolocation-based audiodescription experience. The great thing about it was, you could also access these descriptions wherever you were. Many blind people do not have the privilege of worldwide mobility so bringing bits of the world closer to them is what I call an extension of accessible tourism. Describing the world you experience through textual blogs, social media postings, audio recordings and sharing interesting highlights of life in different countries is what you can do next year to make others travel even if they physically can't. If you're the one unable to travel, here are a couple of things that help me personally when I wish I could be elsewhere but can't: 1. Play a random radio station in a language you understand nothing of or find the music that you like coming from somewhere obscure or far away. I enjoy checking out local charts in other countries just to see how different languages fit into the music trends of today. 2. Try to find recordings of places on sites like Freesound or Soundcloud; close your eyes and imagine. 3. Read travel blogs, watch or listen to content on the Internet of others travelling where descriptions are abundant; research how topics that interest you are managed elsewhere. 4. Try to find penpals, somebody to exchange occasional packages with and simply make friends; if that's possible, try to find a local language conversation group, groups for people who have moved to your city etc. meet, ask questions but most of all, listen! 5. Maybe one day make your own advent calendar. coolblindtech.com/this-app-all… #Accessibility #Blind AdventCalendar #Spain #Travel #Tourism
The Human Language and Accessibility Technologies (HULAT) research group at the Universidad Carlos III de Madrid (UC3M) has developed and validated a mobile application that allows people with visual impairments to enjoy Christmas lights in the city …
The accessibility for the blind advent calendar: day 23 - Poland (try it yourself)
So Apple did flip the switch at last and today's window is ready for all of you to try out. Zuzanka is an app made by Zatoichi, a Warsaw-based startup with one of my blind friends as a tester and head consultant. It reads out the expiry dates on products so it's perfect to run through everything in your fridge before Christmas to see whether your supplies are still safe to be consumed. Once you start it, it will beep continuously to tell you it is ready. Then, once something that it may consider to be a date is found in the camera, it will start beeping faster until it finally recognizes and speaks the date outloud. There is a handy tutorial added telling you where expiry dates are commonly found on different products. The app gives you a 24-hour trial period and a handful of subscription options which I believe should be affordable. There is a lifetime license option too capped at around 30 €. The AI models for this app have been predominantly trained on products found in Polish supermarkets and I was successful using it on a pack of German Balsen chocolate biscuits so it is interesting to see whether this could work in other countries. apps.apple.com/pl/app/zuzanka/… #Accessibility #Blind #AdventCalendar #Poland #Mobile #Startup #Shopping
Zuzanka is the world's first expiry date scanner. The app makes it easy to locate expiration dates on food products, converts them to text format and allows export to other applications.
The accessibility for the blind advent calendar: day 22 - Czech Republic
I did not manage to post the window for yesterday, so it's double act time today. All good things come in threes and as it happens, one of the things I did yesterday was taking part in the Clubhouse meeting of the Czech blind community where 2022 was summed up and different good things that happened in terms of assistive technology were named. One of the solutions somebody pointed out was the ability to operate an ATM using the banking app of Ceska Sporitelna, one of the leading Czech banks. Developed with the Covid pandemic in mind, the feature happened to also benefit blind users. The way it works is, every ATM supporting the feature displays a QR code on its screen by default. The user scans it using the dedicated feature in the Sporitelna app, confirms whether the ATM number detected is the same as the one written on the machine itself and once the connection is made, all of the operation: defining the amount of money to be withdrawn, confirmation, authorization etc. is being handled using the app. The money comes out, the operation is successful and everyone is happy. The number of the machine can be verified either through the list of nearby machines in the app or via an accessible spreadsheet that either the bank or the community have put together, I'm not sure. #Accessibility #Blind #AdventCalendar #CzechRepublic #Banking
The accessibility for the blind advent calendar: day 21 - Europe
If you would like to be up-=to-date with happenings in Europe in regards to blind and partially sighted people, the European Blind Union has just launched a new podcast today called EBU In Action. It is a bit of shameless promo as yours truely is one of the hosts so I hope you don't mind me and we look forward to the feedback. In our pilot, we go over the current campaigns and initiatives the EBU is involved in, we find out about the expectations and fears of blind people regarding Connected and Autonomous Vehicles and we finish off with our correspondent's section where we go to Italy to check what is new for blind people there. If you have suggestions of topics that should be brought up in future episodes, feel free to share. euroblind.org/publications-and… #Accessibility #Blind #Podcast #Europe #CAVs #AutonomousVehicles #Disability #Inclusion
The accessibility for the blind advent calendar: day 21 - Europe
@Piciok, I realize there's a few more of these to go, but I want to say this before I forget. ... Life hasn't always let me get these in exactly a timely manner each day, but I have caught them all, boosting and favoriting in small part as a way to mark my place. These have been really neat and informative, and, for once, I get to open up something when sighted hubby plays with his little inaccessible Advent calendar app! lol! Thanks so much for putting this together; I'm sure it took lots of time and research. How ever you celebrate whichever one of a medium handful of holidays, I hope yours is the best it can be. Thanks again. I'm really enjoying this adventure!
The accessibility for the blind advent calendar: day 21 - Europe
@pianomarian Wow, Marian! Thank you so very much. I see your interactions on all of my posts and if one person could be made so happy through this small, fun project of mine, I know it was definitely worth it! Have a great holiday season and greetings to your husband. What kind of calendar is he opening, anyway? What has it got inside?
The accessibility for the blind advent calendar: day 21 - Europe
@Piciok, It's an Advent game; each day is a new mini-game, the winning of which gives you a puzzle piece. At the end, you put the puzzle together and it makes some kind of holiday picture. Can't remember offhand the name of the app, though. ... Merry Christmas!
The accessibility for the blind advent calendar: day 21 - Europe
@menelion Hello there! Glad you like it. Actually we've got a brand-new RSS feed for this one. Feel free to add it to your Podcatcher of choice: feed.podbean.com/EBUinaction/f…
Thinking about whether an audio player component should use be a toolbar role with a roving tabindex, even though HTML audio controls do not, and if they should, what happens when the left and right arrow keys get you to a range input uses those arrow keys to adjust the number on the input. #a11y #webComponents
It's a tricky one. On one hand, a toolbar reduces clutter in the tab order, which can make things more efficient. On the other hand, it has the range problem you describe, plus it makes it harder to have keyboard shortcuts which don't require you to focus the specific control. For example, in Firefox, when you're focused on the play/pause button, you can use left/right/home/end to seek, up/down to adjust volume, all without having to find the specific control. But you can still tab to the control if you wish, which is great if you don't know about the shortcuts.
I guess the other question I'd ask is why not use the browser's builtin controls, but I'm guessing you have a good reason for that, otherwise you wouldn't be investing time into this.
You're welcome. In case it's helpful, here's the Firefox bug where this was discussed (at length, over a long period of time and with many differing opinions). I'm linking directly to the comment where the most recent plan was laid out, but earlier comments might provide some interesting food for thought. Or alternatively, they may make you wish you'd just been rickrolled instead. :) bugzilla.mozilla.org/show_bug.…
NV Access is pleased to announce that version 2022.3.3 of NVDA, the free screen reader for Microsoft Windows, is now available for download. We encourage all users to upgrade to this version. For more info & to download this patch release, please go to: nvaccess.org/post/nvda-2022-3-…
NV Access is pleased to announce that version 2022.3.3 of NVDA, the free screen reader for Microsoft Windows, is now available for download. We encourage all users to upgrade to this version. Pleas…
The Firefox accessibility engine is responsible for providing assistive technologies like screen readers with the information they need to access web page co...
I co-authored a Mozilla blog post about our #a11y work in celebration of International Day of Persons with Disabilities. I'm posting it a bit late here, but better late than never, I guess. :) How we’re making Firefox accessible and delightful for everyone: blog.mozilla.org/en/products/f…
For the future would it be doable to wire tesseract into this so we can get a bit of joy on linux as well? Or is it too complicated? Still I believe it's a nice design choice it does not use its own cloud implementation.
@pvagner I believe there has been some discussion there. Even though my team has been helping to ensure the UI is accessible, I'm not on the actual team responsible for this feature. I'll see what I can learn though. CC @asadotzler
@asadotzler @pvagner Oh, there are absolutely performance and accuracy concerns with Tesseract. OS OCR is far better on Windows and Mac. However, Tesseract might be the only option if we're ever going to support this on Linux.
@asadotzler @pvagner That's certainly a concern, though I think it's less of a problem with OCR. I think OCR has been around long enough that there's some intuitive understanding that it isn't perfect, plus when it fails, it (usually) fails in such a way as to be very clearly incorrect, rather than plausible enough to be misleading. That said, there's also the question of the technical feasibility of bundling Tesseract for a single OS, etc.
@Jamie Teh @Asa Dotzler Since tesseract v4 accuracy is greatly improved. For adding text layer to scanned pdf files I am using an app called #ocrmypdf which uses #tesseract and it works sufficiently well for me. There are even some unofficial builds of tesseract for #android. Other than self packaged tesseract there is mlkit by google people are using on android for recognizing images. Performance and interfacing with tesseract may not be that great, I understand.
@pax We have a small team and a lot of high priority work to juggle. When that bug was first filed, MacOS 13 was in beta. None of our team were able to run it; running a beta OS (or even a newly released OS) is not without its risks. That bug is also very obscure; it seems to be due to a somewhat inexplicable change in VoiceOver, and as usual, Apple's documentation is poor to nonexistent.
Do you use #Clickup or do you know someone who uses it for managing projects and task? Seems that #accessibility is broken and I am looking for better alternatives or maybe workarrounds how to use it. #A11Y
We have two new Developer positions at The Document Foundation, the non-profit behind LibreOffice! Join us – the first focuses initially on accessibility: blog.documentfoundation.org/bl… – And the second on RTL/CTL topics: blog.documentfoundation.org/bl…
Note: this is one of two Developer positions currently available – the other focuses on accessibility The Document Foundation (TDF) is the non-profit entity behind the world’s leading free and open-source office suite, LibreOffice.
I have a surprising amount of unfinished music project files on my computer called "meow" or some variation there of. This, for example, is "meowmeow". And uh... if it sounds rough or like some things don't fit together, that's... because it's unfinished. But it's been sitting here for years and I don't know what to do with it. So why not.
This is...absolutely gorgeous...I accidentally fell asleep listening to this on loop (Tusky automatically loops audio) and had a very nice nap. Having woken up again I am hearing more of the details I missed and very much admiring your work!
You just caused me to dedicate the rest of my day to going through my own musical compositions (many of which are unfinished/fragments) and try to properly catalog them and get more of them finished/written out/typeset! My stuff is a mess between multiple binders and my computer and it needs reorganization badly, not to mention my yet-to-be -realized desire to make myself a website to share my works with others. Thank you so, SO much for kicking me into action.
As for what you posted, I found that what you already have almost loops as-is! Alternatively, I could imagine some contrasting section following this, that has other chords, maybe dominated by the dominant (i.e. the V chord, or here, B major) and progressions that lead to it. That could also make for a transition that can loop back to the beginning. My only other suggestion is that I feel the A-sharp (around 00:17 and similar instances) doesn't really fit.
Sidenote: I love the key of E major and this reminds me I have a whole neo-Baroque-style suite to finish up that's in this key.
Today let's go to Spain where a system allowing the blind to control elevators using a smartphone app has been developed. The way it works is by detecting a Bluetooth beacon near a supported elevator using the dedicated app and calling the elevator almost as if we pressed the physical button. We can then choose the floor where we want to go and, once we board the elevator, notify the app about it and wait until we reach the destination. We will be notified about the arrival through a notification in the app. The developers have even thought of Siri support so you can set shortcuts for favourite elevator +floor combinations. The solution is presented within the following session of the Zeroconf conference in Vienna: youtube.com/watch?v=_PcPk3BcUL… #Accessibility #Blind #AdventCalendar #BuildEnvironment #Spain
Welcome to #ZeroCon22 - The Zero Project Conference 2022 on Accessibility!Five high-tech start-ups pitch to experienced investors, who question their potenti...
I've honestly never heard of this thing in my life. If it's a thing, ONCE (the all-encompassing blind organization) is not making a big deal out of it at all, and no-one else seems to be either. Sounds cool though. A more widely used example for something in Spain may have been Navilens (our QR-like system for easily scannable labels that we use on the Barcelona subway) or Ciberpass (the on-demand traffic light system).
@guilevi Thanks for the heads up. I thought it might be a pilot, the way it was presented, I also heard about it being tested somewhere in Germany. I saw it, however, being added to the Spanish accessible apps directory so thought somebody was actually using it. Where can I read more about Ciberpass?
Looks like the newest iteration is called Pasblue. This is all in Spanish, but machine translation should be decent enough. Let me know if you need any clarification. tacse.es/es/producto/sistema-a…
[:es]El modelo PASBLUE es una óptica LED de 200x200 mm que integra, junto a un peatón verde, un sistema acústico de ayuda a invidentes. Esta solución se puede instalar en cualquier modelo de semáforo al ir integrada en la misma óptica.
The accessibility for the blind advent calendar: day 16 - France
Staying in the spirit of ticket machines accessibility, France is doing it right, at least in the city of Metz, not sure about other places. Have a recording of a ticket machine that speaks three languages: French, English and German. Upon pressing a dedicated button above the card read we activate the speech component. Everything that is displayed on screen is read back to us. On starting, the machine greets us in the language of our choice, tells us to insert our travel pass if we have one and reads the minimum and maximum amounts for card and cash payments. The upper part of the touchscreen acts as a navi pad with the left corner taking us to the previous option and the right one to the next. In the lower part, the left corner is "Cancel", while the right is "Confirm". This way we can choose our desired ticket, the preferred payment method and complete our transaction. The recording is a montage of different clips from the machine indicating a chosen ticket in English, through its welcome message in French and German with the latter going through some ticket options, coming back to the full welcome message in English. The recording is peppered with occasional Polish from me as it was originally recorded for our Polish podcast. It was taken using the built-in mikes of my Motorola One smartphone. Now that I listen back, it sounds kinda condensed. #Accessibility #Blind #AdventCalendar #France #Metz #PublicTransport #Audio #recording #FieldRecording
The accessibility for the blind advent calendar: day 16 - France
@sillyblindharper Those aren't as relevant in some European countries as blind people are elligible to ride all of public transport, except high speed trains for free. France is clearly not one but Poland, Germany and Czech Republic are some examples where we don't have to buy tickets. Nevertheless, for the benefit of tourists or blind friends and relatives helping the less technical users of public transport, those should be accessible.
Rules. I've always missed having a culture of in-tree summaries of how the pieces of projects fit together. "The code is the documentation" doesn't really work when you're downstream and have to switch between and apply fixes to dozens of projects and you've got limited time to spend on each one. Human language can compress the gist of thousands of LOC into a single paragraph.
Many people think about moving or at least establishing a presence in the so-called Fediverse. The Fediverse is (and this is probably a very shortened and incorrect) a collection of distributed web applications that can talk to each other.
Pro tip: "nmcli networking off" over a ssh session gets you a free trip to the data center nmcli-examples(7) manual lists other interesting uses of nmcli
He does an excellent job! 🎄
miki
in reply to Morgan le Fay/Merlin • • •Morgan le Fay/Merlin
in reply to miki • • •Morgan le Fay/Merlin
in reply to miki • • •miki
in reply to Morgan le Fay/Merlin • • •Morgan le Fay/Merlin
in reply to miki • • •