|
~Coxy posted:the funny part is that most of this crap is implemented by the client anyway. That's true, but sometimes policies are actually put in place by enforceable contracts. Split tunneling is nice and really makes life easier but high security stuff frowns on it. Thankfully, not everyone has to deal with it! Well, I guess the next best solution is to just run spotify on a nearby phone or whatever.
|
# ? Sep 20, 2022 08:33 |
|
|
# ? Apr 28, 2024 14:48 |
|
sb hermit posted:maybe security people wouldn't be so hated if high security could be achieved with only a modicum of friction and not having to enter a password every five minutes and changing passwords every 30 days currentClient make me sign in once per day with 2fa and it's still too much. Just cache my creds or something this isn't making anything safe it's only for external consultants though so limited psychic damage
|
# ? Sep 20, 2022 08:44 |
|
EVERY MORNING I WAKE UP AND OPEN PALM SLAM AUTH CODES INTO AUTHENTICATOR. ITS OUTLOOK AND TEAMS AND RIGHT THEN AND THERE I START DOING THE MOVES ALONGSIDE WITH THE MAIN CHARACTER, CLIPPY. I DO EVERY MOVE AND I DO EVERY MOVE HARD. MAKIN WHOOSHING SOUNDS WHEN I SLAM DOWN SOME VPN CODES OR EVEN WHEN I MESS UP TECHNIQUE. NOT MANY CAN SAY THEY ESCAPED THE GALAXY’S MOST DANGEROUS HACKER. I CAN. I SAY IT AND I SAY IT OUTLOUD EVERYDAY TO PEOPLE IN MY IT DEPARTMENT AND ALL THEY DO IS PROVE PEOPLE IN IT DEPARTMENTS CAN STILL BE IMMATURE JERKS. AND IVE LEARNED ALL THE BUTTONS AND IVE LEARNED HOW TO MAKE MYSELF AND MY APARTMENT LESS LONELY BY SHOUTING EM ALL. 2 HOURS INCLUDING WIND DOWN EVERY MORNIng
|
# ? Sep 20, 2022 09:12 |
|
sb hermit posted:and now we'll probably get into the argument regarding whether an unlocked laptop in a home office is more or less secure than an unlocked desktop in a corporate office even mossad would think twice before trying to steal anything from my home office. at least until they can get a hazmat team on site.
|
# ? Sep 20, 2022 09:34 |
|
nudgenudgetilt posted:i still don't see what's unreasonable about tapping approve when I sit down at my desk. i probably unlock my workstation a dozen or so times throughout the day, maybe twenty times on a heavy day. every time i have to hit approve, it's because i also just typed my password. it isn't like you're getting random spot check pushes throughout the day. each happens with a login event and is literally nothing more than tapping a button after entering your password -- and you should already be entering your password if you're coming back to an unattended workstation. lmao if you dont use touchid to unlock your workstation. just lol
|
# ? Sep 20, 2022 10:11 |
|
Subjunctive posted:how would they determine that it’s outlook without just trusting the client to report it? If my conditional access logs are of any indication, Microsoft is certainly acquiring platform and specific app in most cases during the MFA request/modern auth attempt.
|
# ? Sep 20, 2022 10:37 |
|
Hollow Talk posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM AUTH CODES INTO AUTHENTICATOR. ITS OUTLOOK AND TEAMS AND RIGHT THEN AND THERE I START DOING THE MOVES ALONGSIDE WITH THE MAIN CHARACTER, CLIPPY. I DO EVERY MOVE AND I DO EVERY MOVE HARD. MAKIN WHOOSHING SOUNDS WHEN I SLAM DOWN SOME VPN CODES OR EVEN WHEN I MESS UP TECHNIQUE. NOT MANY CAN SAY THEY ESCAPED THE GALAXY’S MOST DANGEROUS HACKER.
|
# ? Sep 20, 2022 13:13 |
|
Hollow Talk posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM AUTH CODES INTO AUTHENTICATOR. ITS OUTLOOK AND TEAMS AND RIGHT THEN AND THERE I START DOING THE MOVES ALONGSIDE WITH THE MAIN CHARACTER, CLIPPY. I DO EVERY MOVE AND I DO EVERY MOVE HARD. MAKIN WHOOSHING SOUNDS WHEN I SLAM DOWN SOME VPN CODES OR EVEN WHEN I MESS UP TECHNIQUE. NOT MANY CAN SAY THEY ESCAPED THE GALAXY’S MOST DANGEROUS HACKER. lmao
|
# ? Sep 20, 2022 17:16 |
|
I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? yep, I was able to just add the number on the phone in my hand, get the text, and log in. huge peace of mind knowing this extra layer of security is here
|
# ? Sep 20, 2022 17:42 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? loooooool
|
# ? Sep 20, 2022 17:48 |
|
paypal is a land of contrasts cuz they do poo poo like that on the reg but they also support U2F now so I just use my yubikey
|
# ? Sep 20, 2022 17:56 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? rofl
|
# ? Sep 20, 2022 18:03 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? hoooly poo poo
|
# ? Sep 20, 2022 18:06 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? lmfao
|
# ? Sep 20, 2022 18:08 |
|
they've started doing one-factor auth via sms pretty regularly too if I go to paypal and enter my e-mail address to log in, about half the time it offers to send me a "one time login code" via text. sometimes it doesn't offer this option, but it doesn't seem situational -- a refresh will often make the option reappear. and there doesn't seem to be any way to disable the "feature"
|
# ? Sep 20, 2022 18:09 |
|
Gentle Autist posted:lmao if you dont use touchid to unlock your workstation. just lol They disabled the fingerprint readers on the laptops they bought us. I have no clue why; I assume I can turn it on in the bios or something.
|
# ? Sep 20, 2022 18:10 |
|
nudgenudgetilt posted:they've started doing one-factor auth via sms pretty regularly too it's weird. when i have to log in it's a roll of the dice whether they ask for an authenticator, a password, or an sms. no consistency.
|
# ? Sep 20, 2022 18:13 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? erm
|
# ? Sep 20, 2022 18:16 |
|
TheMightyBoops posted:They disabled the fingerprint readers on the laptops they bought us. I have no clue why; I assume I can turn it on in the bios or something. If it's domain joined windows, you will need to have the admins turn on windows hello for business or no biometric of any kind will work.
|
# ? Sep 20, 2022 19:12 |
|
Shame Boy posted:paypal is a land of contrasts cuz they do poo poo like that on the reg but they also support U2F now so I just use my yubikey
|
# ? Sep 20, 2022 19:13 |
|
SlowBloke posted:If it's domain joined windows, you will need to have the admins turn on windows hello for business or no biometric of any kind will work. does hello for windows hook into single sign on? because that would be hella rad
|
# ? Sep 20, 2022 19:44 |
|
Truman Peyote posted:I'm Canadian but I'm spending a few weeks in Portugal. Today I'm at a coworking space, and they asked me to pay using PayPal. I tried to log in and it showed me a 2FA screen that would send a text message to my Canadian number. Oh poo poo, I thought, I don't have my Canadian SIM. But what's this, a button for changing my phone number right there on the 2FA screen...? lmfa o
|
# ? Sep 20, 2022 19:49 |
|
hello.jpg for windows for business
|
# ? Sep 20, 2022 19:50 |
|
champagne posting posted:does hello for windows hook into single sign on? because that would be hella rad yeah dependent on azuread and if you're doing any hybrid stuff it can be a giant pain in the rear end depending on your specific scenario
|
# ? Sep 20, 2022 19:52 |
|
The Fool posted:yeah I was just wondering. I will never, ever service a fleet of any kind of computer
|
# ? Sep 20, 2022 20:08 |
|
when referring to multiple computers the correct term is pile
|
# ? Sep 20, 2022 20:11 |
|
champagne posting posted:does hello for windows hook into single sign on? because that would be hella rad hello.jpg for Zamujasa posted:hello.jpg for windows for business gently caress
|
# ? Sep 20, 2022 20:25 |
|
champagne posting posted:does hello for windows hook into single sign on? because that would be hella rad I was using some site to upload my financial docs for a mortgage application and it asked my browser (Chrome at the time) to auth me via Hello, and now I can only access that site from that computer I think that site also used floating point numbers to represent money, as evidenced by the asset total ending in x.902946749029133 or similar. so not the greatest software
|
# ? Sep 20, 2022 21:13 |
|
Subjunctive posted:I was using some site to upload my financial docs for a mortgage application and it asked my browser (Chrome at the time) to auth me via Hello, and now I can only access that site from that computer I think would you prefer the numbers were already underwater?
|
# ? Sep 20, 2022 21:17 |
|
Zamujasa posted:would you prefer the numbers were already underwater? kids these days and their interest rates!
|
# ? Sep 20, 2022 21:18 |
|
refusing to pay my mortgage unless it's presented to me in whole numbers, like god intended
|
# ? Sep 20, 2022 21:38 |
|
mantissa deez nuts!
|
# ? Sep 20, 2022 22:18 |
|
BORN TO SEC / WORLD IS A gently caress / Lock Em All 2022/ I am trash man / 410,757,864,530 PUSH NOTIFICATIONS
|
# ? Sep 20, 2022 23:20 |
|
Zamujasa posted:hello.jpg for windows for business Honestly, if they can stare deep into the abyss too, they deserve to steal my auth token. It's on the ring.
|
# ? Sep 21, 2022 00:51 |
|
ZeusCannon posted:BORN TO SEC / WORLD IS A gently caress / Lock Em All 2022/ I am trash man / 410,757,864,530 PUSH NOTIFICATIONS
|
# ? Sep 21, 2022 01:05 |
|
ZeusCannon posted:BORN TO SEC / WORLD IS A gently caress / Lock Em All 2022/ I am trash man / 410,757,864,530 PUSH NOTIFICATIONS
|
# ? Sep 21, 2022 01:49 |
|
Volmarias posted:Honestly, if they can stare deep into the abyss too, they deserve to steal my auth token. I suddenly want to clip out an identifiable part of goatman to use as my vault keyfile
|
# ? Sep 21, 2022 02:34 |
|
Hollow Talk posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM AUTH CODES INTO AUTHENTICATOR. ITS OUTLOOK AND TEAMS AND RIGHT THEN AND THERE I START DOING THE MOVES ALONGSIDE WITH THE MAIN CHARACTER, CLIPPY. I DO EVERY MOVE AND I DO EVERY MOVE HARD. MAKIN WHOOSHING SOUNDS WHEN I SLAM DOWN SOME VPN CODES OR EVEN WHEN I MESS UP TECHNIQUE. NOT MANY CAN SAY THEY ESCAPED THE GALAXY’S MOST DANGEROUS HACKER. ZeusCannon posted:BORN TO SEC / WORLD IS A gently caress / Lock Em All 2022/ I am trash man / 410,757,864,530 PUSH NOTIFICATIONS
|
# ? Sep 21, 2022 02:59 |
|
Hollow Talk posted:EVERY MORNING I WAKE UP AND OPEN PALM SLAM AUTH CODES INTO AUTHENTICATOR. ITS OUTLOOK AND TEAMS AND RIGHT THEN AND THERE I START DOING THE MOVES ALONGSIDE WITH THE MAIN CHARACTER, CLIPPY. I DO EVERY MOVE AND I DO EVERY MOVE HARD. MAKIN WHOOSHING SOUNDS WHEN I SLAM DOWN SOME VPN CODES OR EVEN WHEN I MESS UP TECHNIQUE. NOT MANY CAN SAY THEY ESCAPED THE GALAXY’S MOST DANGEROUS HACKER. ZeusCannon posted:BORN TO SEC / WORLD IS A gently caress / Lock Em All 2022/ I am trash man / 410,757,864,530 PUSH NOTIFICATIONS
|
# ? Sep 21, 2022 03:17 |
|
|
# ? Apr 28, 2024 14:48 |
|
RFC2324 posted:I suddenly want to clip out an identifiable part of goatman to use as my vault keyfile air-gaped system
|
# ? Sep 21, 2022 03:32 |