Thursday, September 14
Daily News Stuff 14 September 2023
2FA Or Not 2FA Edition
Disclaimer: Or is it?
2FA Or Not 2FA Edition
Top Story
- When MFA ain't. (Retool)
MFA - multi-factor authentication - is when you need something you know (a password) plus something you have (a hardware authentication device) to log in to a critical piece of infrastructure.
But hardware authentication devices are inconvenient, so we have authentication apps that run on our phones.
And losing your authentication codes is inconvenient, so these apps sync to the cloud.
And the cloud is where your email probably is, and where password reset requests go.
Meaning that if you use the same cloud for your password resets and your authentication syncing, you don't have MFA anymore. Indeed, you have Sweet FA if someone gets into your email account.
Good writeup by Retool in how they were hacked - and why their non-cloud customers weren't affected at all.
Tech News
- AI Lie: Machines Don’t Learn Like Humans (And Don’t Have the Right To). (Tom's Hardware)
It's an op-ed rather than a news story, and it's bombastic drivel.
The author makes a valid point that generative AIs do not learn the way humans do, but then spends the rest of the article misrepresenting how generative AIs actually do learn, not to mention pushing legal theories that would embarrass a governor of New Mexico.
- Introducing Elratio: A Python-based programming language that combines the performance of Ruby with the readability of Perl. (GitHub)
License: Elratio is under the GPL 3.0 license, meaning every Elratio program is required to be open source. By having an Elratio program on your computer without a freely available mirror online you are violating this license. Do not make us resort to violence.
Yes, it's a joke.
Or is it?
- Treefera raises $2.2M to solve the carbon credits credibility problem with AI. (Tech Crunch)
That's not that much money on the scale of startup funding, which is good because these idiots set it on fire.
- Samsung's new small Android tablet - the A9 Plus - is almost here, and we have more specs. (Notebook Check)
It looks like it will be powered by a Snapdragon 695, with two A78 cores and six A55 cores. That's perfectly adequate for this kind of thing and faster than any tablet I own - though significantly behind current flagship phones with X3 and X4 cores.
But the only really important spec is the screen resolution, and we don't know that yet.
Disclaimer: Or is it?
Posted by: Pixy Misa at
06:07 PM
| Comments (3)
| Add Comment
| Trackbacks (Suck)
Post contains 407 words, total size 3 kb.
1
The guy who wrote that Tom Shardware article is the same one who wrote "Just buy an RTX 2000 card, they're actually totally worth it" in 2018.
Posted by: Rick C at Friday, September 15 2023 12:08 AM (BMUHC)
2
Yanno, it's not really the user's fault when black hats get their passwords. since by far the largest source of hacked passwords on the market are cracked servers that expose everyone's user accounts.
I keep mine backed up on a Rolodex. The more critical ones are just a memory trigger rather than the code.
I keep mine backed up on a Rolodex. The more critical ones are just a memory trigger rather than the code.
Posted by: Mauser at Friday, September 15 2023 09:31 AM (BzEjn)
3
BTW, edit buttons fails, takes me back to the root page.
Posted by: Mauser at Friday, September 15 2023 09:32 AM (BzEjn)
51kb generated in CPU 0.0438, elapsed 0.3199 seconds.
58 queries taking 0.3115 seconds, 349 records returned.
Powered by Minx 1.1.6c-pink.
58 queries taking 0.3115 seconds, 349 records returned.
Powered by Minx 1.1.6c-pink.
