Anyone out there writing about standardizing single-user instances of Mastodon & other #fediverse offerings? I'm wondering how many problems could be solved by sidestepping the issue of belonging to a host server. Would it be worse for social media to be "pay-to-play" and for users to be financially/ethically/legally responsible for their own instances, or for users to continue to use nominally "free" tech that might exploit them/their data in various ways? Can't tell which is more problematic.

Happy #WorldPasswordDay!

I've cracked billions of #passwords from tens of thousands of #data #breaches in the past 12+ years, and because of this, I likely know at least one #password for 90% of people on the Internet. And I'm not alone! While I primarily crack breached passwords for research purposes and the thrill of the sport, others are selling your breached passwords to criminals who leverage them in #AccountTakeover and #CredentialStuffing attacks.

How can you keep your accounts safe?

- Use a #PasswordManager! I recommend @bitwarden and @1password

- Use a #Diceware style #passphrase - four or more words selected at random - for passwords you have to commit to memory, like your master password!

- Enable MFA for important online accounts, including cloud-based password managers!

- Harden your master password by tweaking your password manager's KDF settings! For #Bitwarden, use Argon2id with 64MB memory, 3 iterations, 4 parallelism. For #1Password and other PBKDF2 based password managers, set the iteration count to at least 600,000.

- Use unique, randomly generated passwords for all your accounts! Use your password manager to generate random 14-16 character passwords for everything. Modern password cracking is heavily optimized for human-generated passwords, because humans are highly predictable. Randomness defeats this and forces attackers to resort to incremental brute force! There's no trick you can do to make a secure, uncrackable password on your own - your meat glob will only betray you.

- Use an ad blocker like #uBlock Origin to keep you safe from password-stealing #malware and other browser based threats!

- Don't fall for #phishing attacks and other social engineering attacks! Browser-based password managers help defend against phishing attacks because they'll never autofill your passwords on fake login pages. Think before you click, and never give your passwords to anyone, not even if they offer you chocolate or weed.

- #Enterprises: require ad blockers, invest in an enterprise password management solution, audit password manager logs to ensure employes aren't sharing passwords outside the org, implement a Fine Grained Password Policy that requires a minimum of 20 characters to encourage the use of long passphrases, implement a password filter to block commonly used password patterns and compromised passwords, disable #NTLM authentication and disable RC4 for #Kerberos, disable legacy broadcast protocols like LLMNR and NBT-NS, require mandatory #SMB signing, use Group Managed Service Accounts instead of shared passwords, monitor public data breaches for employee credentials, and crack your own passwords to audit the effectiveness of your password policy and user training!

Here, I made you a Slack emoji for when you're talking about GenAI

Hey folks, is there any updated guidance on using system fonts? Or is this css tricks article still relevant?

https://css-tricks.com/snippets/css/system-font-stack/

@ro no idea!

I am a:

⚪️ man
⚪️ woman
🔘 computer user

Looking for:

⚪️ a good time
⚪️ a long walk on the beach
🔘 what's making that beep?

“Wiens also suggests skipping gadgets like smart TVs that can quickly become obsolete. Instead, opt for a “dumb” TV and an external device like an Apple TV, Amazon Fire stick or a Roku.”

Haha yeah well how about a wire cutter recommendation for a dumb tv? News flash, no one is building any tvs like that.

5 ways to love tech without killing the planet

Hello Fediverse!

@Flipboard is currently a walled garden.

It's a beautiful, highly curated walled garden filled with content from the worlds best publishers and creators curated by Flipboard's editorial team as well as our community of magazine makers.

But it's still a walled garden. Today that begins to change.

We've moved four of our most popular #curation desks into the Fediverse for you to enjoy.

@NewsDesk
@TechDesk
@CultureDesk
@ScienceDesk

Details below:

https://about.flipboard.com/inside-flipboard/flipboards-editorial-curation-comes-to-mastodon/

I’m team never never wear the bands shirt

Strictly between the two, which do you prefer using?

#XMPP or #Matrix ?

(Boosts for increased reach are appreciated!)

Ever wondered why the links you post on #Mastodon show nicely formatted preview cards and other just display a boring old link? Some may even show video and audio controls.

Why does it work sometimes and not others? In this latest deep dive, I dig into the code and get some answers.

https://box464.com/posts/mastodon-preview-cards/

#MastodonDev #MastodonApp

The reason tea kettles in the UK boil faster than in US is because they only have to get to 100 degrees, but in the US they have to get all the way to 212.

It's just basic science.

Welp. My new company wants me to digitally sign a PDF document. I'm using Linux and Adobe doesn't support Linux any longer... yes, I see there's some hacky way to enable i386 and install a 2013 version of the software but is that really want we should be doing??

This is pushing me more and more to move off Linux and that bums me out. 😞​

*chefkiss*

@BradRomance are the internal column names the same? Are you using content types in the source but not the destination?

@og @mharleydev @og @mharleydev The visual overhaul is actually for the desktop client as well. (For version 115 which releases this July).

Check out the #supernova tag on our blog for more info: https://blog.thunderbird.net/tag/supernova/

You can also view our roadmap: https://developer.thunderbird.net/planning/roadmap

Have spent the last couple of weeks working on a NeedleFelted sculpture. This is my vision of the #TreeBeard character from The Lord of the Rings. He was a big challenge, and I learned a lot with this project.
#Art #MastoArt #NeedleFelting

you’ve heard of user experience (UX), developer experience (DX), but what about attacker experience (AX)?

all that fiddly, hand sewn shell code is far from “streamlined” or “simplified”. Won’t someone think of the attackers and their buttery soft hands??

Is there really no way to add a standard SMPT accounts to #M365 #Outlook on the browser? That's.... dumb.