Re: [PLUG] The content you thought you made is not yours

JP Vossen via plug on 17 Oct 2022 10:18:17 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)

From: JP Vossen via plug <plug@lists.phillylinux.org>
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)
Date: Mon, 17 Oct 2022 13:18:13 -0400
Reply-to: JP Vossen <jp@jpsdomain.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.11.0

On 10/7/22 23:30, PaulNM via plug wrote:



On 10/7/22 01:09, Steve Litt via plug wrote:

On Thu, 2022-10-06 at 13:28 -0700, Syeed Ali via plug wrote:

The company, your internet provider, government, someone else's
government, social credit score.. whatever, could take your work away.
I know someone who has been locked out of an account because he changed
phone numbers and so two factor authentication won't work.. whoops.


I worry about stuff like that. So far I've stayed away from 2 factor authentication.


I stayed away from multi-factor for a long, long time because of stupid implementations that required a working phone. Phones die, people! How can I order a new phone if I need a functioning phone to do so?

Fortunately that's not the case anymore. I currently use Bitwarden and Authy for password and MFA TOTP management. Both securely allow you to use either or both computers and phones/tablets. There are other options available as well.


Yes!  All of that.  Plus too much of that stuff is in or heading for "the cloud."  That's why I love that KeePass can do it locally, all by itself.

* https://en.wikipedia.org/wiki/Time-based_One-time_Password_algorithm
* https://en.wikipedia.org/wiki/HOTP (HMAC-based one-time password)
* https://keepassxc.org/docs/#faq-security-totp
    * https://www.linux.org/threads/in-depth-tutorial-how-to-set-up-2fa-totp-with-keepassxc-aegis-and-authy.36577/
* It works in KeePassDX (Android, F-Droid or Play) too, you just have to scroll down past notes

Later,
JP
--  -------------------------------------------------------------------
JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] Reg: You thought you bought software – all you bought was a lie
  - From: JP Vossen via plug <plug@lists.phillylinux.org>
- Re: [PLUG] Reg: You thought you bought software – all you bought was a lie
  - From: Rich Freeman via plug <plug@lists.phillylinux.org>
- [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)
  - From: Syeed Ali via plug <plug@lists.phillylinux.org>
- Re: [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)
  - From: Steve Litt via plug <plug@lists.phillylinux.org>
- Re: [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)
  - From: PaulNM via plug <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] Alchimist, Signal, Canonical ad, Whatsapp trojan, Rustdeck, man
Next by Date: Re: [PLUG] wifi coconut, egrep, mkdir, Zimbra hack, new FF
Previous by thread: Re: [PLUG] The content you thought you made is not yours - (was: You thought you bought software – all you bought was a lie)
Next by thread: Re: [PLUG] Reg: You thought you bought software – all you bought was a lie
Index(es):
- Date
- Thread