Quick note about invoices and receipts: I'm now writing and sending these directly as text via email. It looks less elegant, but this means you no longer need to handle PDF documents. This allows easier reading, copying, pasting, searching, and archiving. If you don't like this, don't worry: I'm still happy to send you or print PDFs at your request.

John boosted

The web browser Brave is marketed as a privacy-friendly ad-free alternative, but that's pretty disingenuous.

Brave exists not to protect privacy, but to make money from selling ads.

Brave is a commercial company funded by venture capital. Its business model is selling advertising and cryptocurrency investment.

One of Brave's owners is Peter Thiel's Founders Fund. Thiel is also the head of Palantir (en.wikipedia.org/wiki/Palantir) and on the board of Facebook.

I do not recommend using Brave.

#Brave

I imagine the failure is due to low quality parts, or even bad emulation- It would freeze during SMART tests. Searching up the controller chip SM2246XT online shows some similar board layouts. Today's hard lesson is: Don't buy electronics off shady eBay sellers.

Here's the full counterfeit board in its glory. A single Toshiba NAND chip and a SATA controller on a green PCB. Definitely not a large blue PCB with multiple Kingston NAND chips.

A QR code for the serial number, not a Data Matrix code? The sticker is also a little off-center. Could this be counterfeit? Let's look inside- Uh oh...

I haven't heard of manufacturers using Philips screw heads. Anything off about the back?

Here's a fun problem I ran in to the other day: Client's SSD is throwing IO errors. Can you guess why?

John boosted

Question: Are there any cryptocurrency exchanges that run on FOSS or don't require Javascript?

I also now take online payments using Square which as far as I know won't ask for more details than needed.

Rolling out IPv6, or: 192.168.0.X is good enough for anyone

I re-checked and found that to fix the Centrelink 'Bad Request' you need to clear your cookies for centrelink.gov.au. The website just keeps sending new cookies and eventually refuses to accept the very long 'Cookie' header your browser sends.

PSA: For whatever reason Centrelink will return 'bad request' on out dated Chrome browsers.

Possibly my worst experience has been with my credit union. To even get two-factor authentication I needed to call them and ask for them to enable support for it on my account, then set it up while on the phone.

They don't have backup codes either, but since I can call them I'm not too concerned about this as much as I would be with PayPal.

After setting it all up, I found the second factor is only used in special circumstances such as changing my password or sending money to new recipients.

Perhaps there's a lot more criticism in the implementations of two-factor authentication. One example is GitLab allowing recovery code generation with just a SSH key.

The places you'd expect good multi-factor authentication seem to have it the worst: PayPal hides and fights against you adding two-factor authentication. You need to head to a hidden URL and use Symantec VIP as the software token, or hack around it with python-vipaccess. No backup codes either.

Two-factor authentication is underimplemented and underused - how many Mastodon folks here have enabled it in their account? It's a great defense against spyware.

As someone technically inclined, I use it but regardless of which factor I'm using (andOTP, Google Authenticator, SMS) I'm always uneasy about backup codes. They seem so easy to ignore or lose, and storing them digitally can undo any second factor security added.

John boosted

Goodbye 2018. Happy new year. Believe in yourselves.

Just updated my website to link back to my Mastodon account, so now the link to my home page is verified!

Show more
Aus.Social

Welcome to thundertoot! A Mastodon Instance for 'straya