Aaron Parecki

Beko Pharm https://twitter.com/BekoPharm • Aug 31
Well I’d suggest a nifty video. IndieWeb in 5 minutes. Don’t talk about the details or the implementation (that’s tech babble). Show em what’s in for Joe. Solid reasons like displaying a feed the way you like it and not how \$silo AI decided. (Still working on that :))

That's exactly the challenge, it means different things to different people. For example that example isn't appealing to everyone, only people who are annoyed with that particular feature of silos. Other people like the "own your data" aspect.

Portland, Oregon

1 like 1 repost 1 reply

Sat, Aug 31, 2019 3:31pm -07:00
Formerly of Wrudinghead https://mastodon.technology/@trickster

Yeah, ZDNet, imagine, banning ads.

Portland, Oregon

Fri, Aug 30, 2019 4:51pm +00:00 (liked on Sat, Aug 31, 2019 11:14am -07:00)
Blaine Cook https://twitter.com/blaine

Accounts tweeting garbage was one of the primary threat models, of course, but I'll give you that we didn't anticipate Jack tweeting hate speech to many millions of people. 😢

Portland, Oregon

Sat, Aug 31, 2019 4:18am +00:00 (liked on Sat, Aug 31, 2019 11:05am -07:00)
Blaine Cook https://twitter.com/blaine

Ahem. ;-) I spent a lot of time talking about how insecure SMS was (and mobile networks in general).

Portland, Oregon

Sat, Aug 31, 2019 4:15am +00:00 (liked on Sat, Aug 31, 2019 11:05am -07:00)
Stefán Jökull Sigurðarson - CCP Ghostrider https://twitter.com/stebets • Aug 31
SMS 2FA is always better than no 2FA though.

If SMS is purely for 2FA then yes. but quite often adding SMS 2FA also lets you use SMS for account recovery, and that is worse than having no 2FA.

Portland, Oregon

1 like 1 reply

Sat, Aug 31, 2019 7:21am -07:00
8:17pm
Asleep

7:10am
Awake

10h 53m
Slept

09m
Awake for

Portland, Oregon, USA

Sat, Aug 31, 2019 7:10am -07:00
Heather Downing https://twitter.com/quorralyne • Aug 30
What factor would you prefer though?

Something that can't be taken away from me without my knowledge. So, yubikey, TOTP, or even push notification, etc.

Portland, Oregon

2 likes 2 replies

Fri, Aug 30, 2019 4:47pm -07:00
Train

12.44mi
Distance

41:15
Duration

1:43pm
Start

2:24pm
End

Portland, Oregon

Fri, Aug 30, 2019 2:24pm -07:00
This @jack situation is making me rethink my phone number strategy. I've been treating my SIM number as disposable and easily replaceable, where the number I use for 2FA is a google voice number. But now I'm thinking treating my SIM number as a password is a better plan.

Portland, Oregon, USA

6 likes 1 repost 2 replies

Fri, Aug 30, 2019 2:23pm -07:00 #security
fluffy https://twitter.com/fluffy

What I like about IndieWeb is it gives a bunch of small, relatively-easy-to-implement building blocks that provide parts of that, but there's still a lot that needs to happen to make it all work nicely together and provide a UX that's sensible.

Portland, Oregon

Fri, Aug 30, 2019 9:08pm +00:00 (liked on Fri, Aug 30, 2019 2:08pm -07:00)
Scott Hanselman https://twitter.com/shanselman • Aug 30
HOW did the CEO of Twitter's account get hacked? Don't y'all have people for that? An oh shit button? 2FA? Something?

SIM hijacking is a thing, and why SMS should never be used for two factor authentication

Beaverton, Oregon

6 likes 3 replies

Fri, Aug 30, 2019 1:48pm -07:00
jack 🌍🌏🌎 https://twitter.com/jack

Cloud hopper?

Beaverton, Oregon

Mon, Jan 28, 2019 10:23pm +00:00 (liked on Fri, Aug 30, 2019 1:46pm -07:00)
EJ Fox 🌞 https://twitter.com/mrejfox

Someone found out the number Jack Dorsey linked to twitter for SMS and used that to post. “Cloudhopper” is how SMS posts show up because Twitter doesn’t give a shit about anything.

Another great reason to treat your personal phone number like your password and use Google Voice.

Beaverton, Oregon

Fri, Aug 30, 2019 8:03pm +00:00 (liked on Fri, Aug 30, 2019 1:45pm -07:00)
Car

3.38mi
Distance

14:48
Duration

1:26pm
Start

1:41pm
End

Beaverton, Oregon

Fri, Aug 30, 2019 1:41pm -07:00
Walk

0.37mi
Distance

11:47
Duration

1:10pm
Start

1:22pm
End

Portland, Oregon

Fri, Aug 30, 2019 1:22pm -07:00
Mike Purvis https://twitter.com/mikedotexe

Radical, that's great to hear. I'll admit I'm not too familiar with the future goals of OAuth. This type of things seems like an easy win, both for sites using OAuth and users. Just one extra level of granularity makes such a difference.

Portland, Oregon

Fri, Aug 30, 2019 7:18pm +00:00 (liked on Fri, Aug 30, 2019 1:07pm -07:00)
Walk

0.44mi
Distance

11:51
Duration

12:02pm
Start

12:14pm
End

Portland, Oregon

Fri, Aug 30, 2019 12:14pm -07:00
Car

4.90mi
Distance

22:59
Duration

10:51am
Start

11:14am
End

Portland, Oregon

Fri, Aug 30, 2019 11:14am -07:00
Train

12.07mi
Distance

40:35
Duration

10:10am
Start

10:50am
End

Beaverton, Oregon

Fri, Aug 30, 2019 10:50am -07:00
Mike Purvis https://twitter.com/mikedotexe • Aug 30
I just tweaked the DOM to illustrate what I'd like to see. I (would) love it, too. 🤞

But for real, there's some new work going on around this right now, the idea is to add structure to the scopes requested so they can do things like this, or asking for permission into a specific bank account or for a specific dollar amount, etc

Portland, Oregon

1 like 1 reply

Fri, Aug 30, 2019 10:49am -07:00

older