I’m beautiful and tough like a diamond…or beef jerky in a ball gown.
I’m similar but it’s a side effect of my general gluttony. I’ll watch one episode and immediately want more. I didn’t intend to wait until the season was over to binge it all, but it just sort of happened because of life being hectic right now.
If it turns out to be the former, I don’t blame them.
I used to buy their stuff and use tuya-convert to flash Tasmota onto them. But they kept updating the firmware to lock that out, and I ended up returning a batch of 15 smart plugs because none of them would flash. They were too much of a PITA to try to crack open and flash the ESP8266 manually so I returned the whole batch as defective, left a scathing review, and blackballed the whole brand.
Solutions that work for a corporate application where all the staff know each other are unlikely to be feasible for a publicly available application with thousands of users all over the world
This is something of a hybrid. There will be both general public users as well as staff. So for staff, we could just call them or walk down the hall and verify them but the public accounts are what I’m trying to cover (and, ideally, the staff would just use the same method as the public).
Figure if an attacker attempts the ‘forgot password’ method, it’s assumed they have access to the users email.
Yep, that’s part of the current posture. If MFA is enabled on the account, then a valid TOTP code is required to complete the password reset after they use the one-time email token. The only threat vector there is if the attacker has full access to the user’s phone (and thus their email and auth app) but I’m not sure if there’s a sane way to account for that. It may also be overkill to try to account for that scenario in this project. So we’re assuming the user’s device is properly secured (PIN, biometrics, password, etc).
If you are offering TOTP only,
Presently, yes, but we’re looking to eventually support WebAuthn
or otherwise an OTP sent via SMS with a short expiration time
We’re trying to avoid 3rd party services, so something like Twilio isn’t really an option (nor Duo, etc). We’re also trying to store the minimum amount of personal info, and currently there is no reason for us to require the user’s phone number (though staff can add it if they want it to show up as a method of contact). OTP via SMS is also considered insecure, so that’s another reason I’m looking at other methods.
“backup codes” of valid OTPs that the user needs to keep safe and is obtained when first enrolling in MFA
I did consider adding that to the onboarding but I have my doubts if people will actually keep them safe or even keep them at all. It’s definitely an option, though I’d prefer to not rely on it.
So for technical, human, and logistical reasons, I’m down to the following options to reset the MFA:
I’m leaning toward #3 unless there’s a compelling reason not to.
I thought about generating a list of backup codes during the onboarding process but ruled it out because I know for a fact that people will not hold on to them.
That’s why I’m leaning more toward, and soliciting feedback for, some method of automated recovery (email token + TOTP for password resets, email token + password for MFA resets, etc). I’m trying to also avoid using security questions but haven’t closed that door entirely.
<input type="text"> is suitable for political opinions.Personally, I love that layout.
I’m always at a loss for what to put up as wall decorations, and I hate rats nests of cables. Win-win!
New U.S. rules will soon ban Chinese software in vehicle systems that connect to the cloud
Seems to me that the easiest way to get into compliance would be to not make the car connect to the cloud/internet. I’m gonna drive my 2017 model until I can buy a new car that isn’t a smartphone on wheels.
They’re separate queens and separate collectives/cooperatives.
The Jurati Cooperative is, as of the end of Season 2, guarding the spatial anomaly that formed in the beginning of S2. They’re completely absent from the third season. Which I can understand since S3 was a fan-service reunion (which I loved) and there just wasn’t room in the 10 episodes for them.
The queen from S3 is the same one from VOY: Endgame and First Contact and part of the same collective since they were first introduced in TNG.
The new one affected the other one?
AFIAK, no, they had no effect on each other. The alternate timeline queen (that turned into Queen Jurati) was not the same queen seen in S3 or elsewhere. That queen was from a 2401 that no longer exists. She and her cooperative only exist because they went back in time and took the long way back to 2401.
Trash? None.
Clutter / work-in-progress: No comment.
I asked similar a few weeks ago: https://startrek.website/post/33957879
The answers were all pretty much what you’ve already listed: FreeCAD/OpenSCAD for parametric parts and Blender for sculpted shapes.
The only one not covered in that post was OnShape because I was specifically asking for ones that weren’t SaaS/cloud based.
I don’t even bother with local ports anymore. It’s just too much hassle when I switch providers, email services all seem to universally sinkhole anything originating from a residential IP even if I am able to convince them to unblock 25/TCP, and I refuse to pay extra for a static IP or upsell to business class at a massive price increase.
My ISP, while otherwise fine, still has not rolled out IPv6 yet and the DHCPv4 lease duration is short and will randomly assign a different IP rather than renewing the lease on the existing one. I don’t like relying on dynamic DNS or relying on running a daemon to update my public DNS records when my public IP changes. Been there, done that, and bought a crappy t-shirt at the gift shop.
I’ve had a VPS for close to 10 years now that is my main frontend and, through some VPN and routing trickery, allows me to have my email server on-prem but use the VPS for all inbound and outbound communication. A side effect benefit of this setup is I can run my email server from literally anywhere and from anything with an internet connection. I’ve got a copy of my email stack on a Pi Zero clone that stays in sync with my main one. During long power outages, I can start that up and run it from a hotspot with a power bank running it for almost 2 days (or indefinitely when I’m also charging the power bank from a solar panel lol).
Yep, same except being one of the first ones in the state.
The best part is it works when the power is out and doesn’t flap constantly if the electricity blips. Every cable provider I’ve ever had has failed spectacularly at maintaining the UPSs in the neighborhood nodes.
I can understand that speeds vary by area, but it’s not like it’s difficult at all to have those in a database where a web tool can return them based on your zip code. But yeah, it was like that when I signed up with Optimum (nee Suddenlink) years ago.
The other thing they do is require a truck roll for any kind of hookup. They almost got some of my business back but were so rigid that I said “the hell with it”. My fiber provider was having some growing pains and I called Optimum to reactivate my service on a lower plan to use as a backup connection (I work from home). All they needed to do was setup the account and re-authorize my modem (my hookup was still live and I had my own modem). They flat out refused to do any of that and required a tech to come “within 3-5 business days” and read the modem serial number to them to activate it. So I said hell with it, called T-Mobile, and activated my old 5G hotspot.
I would guess it’s not just Comcast. Optimum serves my area and they’ve basically been begging people to switch back since this area got fiber a few years ago.
Their offers are like $25/mo for 200/10 Mbps and no data caps. But they’re not guaranteeing the price. Seems like they’re going after the lower end of the market.
I basically say “boo hoo”. This is what actual competition looks like. Cable companies have sat on their ass and milked their infrastructure for decades (only updating the headend equipment to keep up).
Optimum cold called me once and I flat out told them if they wanted me back, they need to run fiber to my home, give me the same symmetrical speed I have now, for at least $10 less than I’m paying my fiber provider, and lock that price for at least 5 years. The rep basically kinda sighed, so I guess they’ve heard that response from more than just me.
Chee-chew-choo-cha-chooo
The irony of Lennart “let’s change everything about Linux because I know better” Poettering creating a company called Amutable is not lost on me.
But also, that tracks because now it’s “I know better so now you can’t change anything” which is pretty on brand.
The base system is stable. The only instability I really had with mine was the fingerprint sensor resetting every week. It would just stop registering until you turn fingerprint detection off, reboot, and re-enroll all of your prints. The second update they pushed seems to have fixed that.
Their default launcher could use some work. I replaced Minimal Launcher with a similar one that works identically. The problem with Minimal Launcher is it is hardcoded to certain apps. I’ve de-googled mine so I don’t use Google clock or calendar. Clicking the time or date in Minimal Launcher will only take you to Google Clock or Calendar (respectively) rather than asking what app to open or trying to detect the default app for that. I submitted a bug for that a couple months ago but so far no fix.
They also seem to only update their software (launcher, quick settings, keyboard config, etc) through system updates rather than via apps. You also can’t disable any of them either.
I also haven’t heard anything more about them supporting non-Googled or third party Android builds.
The hardware is the same AFAIK but they’ve put out two three software updates since I’ve had it. One added some extra features to the eink control utility and the second fixed some really annoying bugs with the fingerprint sensor. Both also included the system security updates as well.
There was a 3rd one a few weeks ago, but I think it was just a security bump. It wasn’t announced and just showed up. There may have been some tweak to the QWERTY keyboard utility because now the annoying bar that only indicated the ALT/Shift status at the bottom is no longer there and was happy to no longer see.
Disclaimer: : All of my LLM experience is with local models in Ollama on extremely modest hardware (an old laptop with NVidia graphics) , so I can’t speak for the technical reasons the context window isn’t infinite or at least larger on the big player’s models. My understanding is that the context window is basically its short term memory. In humans, short term memory is also fairly limited in capacity. But unlike humans, the LLM can’t really see (or hold) the big picture in its mind.
But yeah, all you said is correct. Expanding on that, if you try to get it to generate something long-form, such as a novel, it’s basically just generating infinite chapters using the previous chapter (or as much of the history fits into its context window) as reference for the next. This means, at minimum, it’s going to be full of plot holes and will never reach a conclusion unless explicitly directed to wrap things up. And, again, given the limited context window, the ending will be full of plot holes and essentially based only on the previous chapter or two.
It’s funny because I recently found an old backup drive from high school with some half-written Jurassic Park fan fiction on it, so I tasked an LLM with fleshing it out, mostly for shits and giggles. The result is pure slop that seems like it’s building to something and ultimately goes nowhere. The other funny thing is that it reads almost exactly like a season of Camp Cretaceous / Chaos Theory (the animated kids JP series) and I now fully believe those are also LLM-generated.