eclipse @ eclipse @lemmy.world

Posts

0

Comments

80

Joined

2 yr. ago

From a UX perspective I disagree. 1password wins at UX hands down but Bitwarden is a very close second and IMO has better privacy guarantees.

Security is useless if it's too difficult. Despite liking Bitwarden I am a 1Password subscriber and happy with my choice.

Hypothesis

Anti-depressants.

supposed "civilians"

Children? Seriously?

What excuses are you referring to?

Are you also arguing that if a problem isn't in your immediate periphery then it doesn't exist? We are all human beings, living on the same planet.

There's nothing wrong with feeling a modicum of empathy for those less fortunate by circumstance of geography or socioeconomic influence.

Even more simply:

Government: closes their curtains in the evening.

Most I understand but the opposition to "wearing clothes made from animal fur" seems a little misinformed.

Where do they think wool comes from?

https://overseerr.dev/

i had no understanding wut I was really saying or doing (sic)

Yep.

Sorry, all you get is images of a maxi pad to indicate enormous damage for what was likely a graze.

An attempt on a former president's life is a big deal, whether I think he's a human dumpster fire or not.

However, the way he played this up was and is ridiculous. He didn't need to prove anything. Someone shot at him and that's not in doubt. Instead he chose to milk it and I personally find that ludicrous given the circumstances.

It won't matter. His supporters will just ignore anything they disagree with. It won't even be reported in the media they consume.

Pro birth, not pro life.

They're not more effective. They might assist with speed of absorption but that's it.

I agree with most of these but there's another missing benefit. A lot of the time my colleagues will be iterating on a PR so commits of "fuck, that didn't work, maybe this" are common.

I like meaningful commit messages. IMO "fixed the thing" is never good enough. I want to know your intent when I'm doing a blame in 18 months time. However, I don't expect anyone's in progress work to be good before it hits main. You don't want those comments in the final merge, but a squash or rebase is an easy way to rectify that.

Honestly, these days I have no idea. When I said "wouldn't recommend" that wasn't an assertion to avoid; just a lack of opinion. Most of my recent experience is with Cloud vendors wherein the problem domain is quite different.

I've had experience with most of the big vendors and they've all had quirks etc. that you just have to deal with. Fundamentally it'll come down to a combination of price, support requirements, and internal competence with the kit. (Don't undermine the last item; it's far better if you can fix problems yourself.)

Personally I'd actually argue that most corporates could get by with a GNU/Linux VM (or two) for most of their routing and firewalling and it would absolutely be good enough; functionally you can do the same and more. That's not to say dedicated machines for the task aren't valuable but I'd say it's the exception rather than rule that you need ASICs and the like.

I agree. GeoIP was never a good idea, but here we are. Any ASN could be broken up and routed wherever (and changed) but it's still far too prevalent.

I might be misunderstanding. It's definitely possible to have as many IPv4 aliases on an interface as you want with whatever routing preferences you want. Can you clarify?

I agree with your stance on deployment.

Given how large the address space is, it's super easy to segregate out your networks to the nth degree and apply proper firewall rules.

There's no reason your clients can't have public, world routeable IPs as well as security.

Security via obfuscation isn't security. It's a crutch.

This article is biased to selling you more F5 equipment but is a reasonable summary:

https://www.f5.com/resources/white-papers/the-myth-of-network-address-translation-as-security

Long story short is that NAT is eggshell security and you should be relying on actual firewall rules (I wouldn't recommend F5) instead of the implicit but not very good protections of NAT.