At my "traditional" bank I even need the TAN generator for my phone. While at my "neo" bank I even need the phone app to access the website. :-) (That is how the neo bank tricked me. I read "website access" in their ad and thought I could still access the bank account if I lose my phone. But no, you can't login without the app.)
I like to implement independent mail systems. No SSO BS. IT enters the password into the mail client while setting up the laptop and phone. The boss can't be phished if he doesn't know his password (or if the password has no use on the internet).
I also like to put everything behind a VPN (again no SSO). But the bigger the company gets, sooner or later this will come to an end. Because it's not "best practice" to not be phishable. Apparently what is needed are layers and layers of BS "security" products that can be tricked by a kid that has heard of JS. https://browser.security
If you login to the exchange online admin center you first have to complete a short "on-rails-shooter" video game. They constantly shuffle shit around and want to give you a tour via popups about it.
I have the admin accounts for multiple companies, so I have to play the game repeatedly.
> Spotify means infinite browsing, algorithm recommendations, and "Dad, how do I get back to my song?"
I hope you are successful and eventually go after video content too. Imagine a Youtube app without infinite browsing or the algo and a "you can watch 3 videos this weekend"-counter/countdown.
I wanted to correct you but than I stopped myself because I'm not sure if you meant that sarcastically. Because with a /s at the end your post makes sense.
DNS servers can take the IP address of the client into account. If you query a record for amazon.com from the USA you will get a different answer than from Europe. (And you don't need anycast for that.)
That the client information doesn't get lost when it goes through different resolvers
the DNS extension EDNS Client Subnet (ECS) was invented.
explains it better than me. The whole point of the extension is to make geo-guessing the original client over DNS more stable.
Now you can have privacy conscious DNS servers that strip the ECS information (or mess with it somehow) and instead of the server closest to you you get the global fallback for example.
(controld.com goes as far to say "switch countries without a VPN" by only messing with ECS. No idea how stable that is though.)
Interesting! I always just assumed sites used geoDNS to figure out where the user is. I like the "Controversy over lack of support" section in the wikipage. I've been mainly using NextDNS and learned that they anonymized this information https://medium.com/nextdns/how-we-made-dns-both-fast-and-pri...
The default remote desktop client on Windows 11 can have his picture freeze. Mouse and keyboard input still goes through though. (Which is especially dangerous because enraged users will smash their keyboard.) Years without a fix from Microsoft. Just a registry hack as a workaround.
Facetiously: Well actually, you didn't need a driver for the SATA drive but the SATA controller.
Something that was also true for Windows and such a common problem that many BIOSes would offer a IDE compatibility mode one could switch to.
26 years ago I installed SUSE and it just worked on my self build PC. Smooth sailing all around. Than I tried Debian and couldn't for the life of me get X11 to work.
So yeah, the distro and hardware lottery is still a problem.
reply