Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)EN
Enekk @ Enekk @lemmy.world
Posts
0
Comments
28
Joined
2 yr. ago

I will burn your servers to the ground, foul villain

Jump

  • The attack vector is as follows:

    1. Evil.com phishes a user and asks for username and password for Good.com
    2. Evil.com immediately relays those credentials to Good.com
    3. Good.com asks Evil.com for TOTP
    4. Evil.com asks victim for TOTP
    5. Evil.com relays TOTP to Good.com and does a complete account takeover

    The various physical dongles prevent this by using the asking domain as part of the hash. If you activated the dongle on Evil.com, it'll do nothing on Good.com (except hopefully alerting the SOC at Good.com about a compromised username and password pair).

    • The author of vim has sadly passed away

    Jump

  • :q!

    • Poor doggo..

    Jump

    • Official poster for Loki Season 2

    Jump

  • Better question, why is it throwing a shadow?

    • The World’s Largest Wind Turbine Has Been Switched On

    Jump

  • Because most things like this are measured in average power per year and it is useful for comparison. Different technologies produce energy at different rates. Solar, only when the sun is up. How would you compare it to wind which has different rules?

    Taken to an extreme, consider some hypothetical new technology that produced 50 Gigawatts of energy, but did it in a second and then took a year to recharge before doing it again. Would it be more useful to say it had a 50 Gigawatt capacity or that it provided 50 Gigawatts of power per year when trying to compare it to other technologies?

    Edit: I hope nobody would use my hypothetical technology... Boom!

    • The World’s Largest Wind Turbine Has Been Switched On

    Jump

    • Permanently Deleted

    Jump

  • This is 100% correct. I'll add that the best thing you can do is to watch and listen to your crew. Everyone has a job, yes, but they also play a role on your team. Understand what those roles are, how work actually flows around, and what motivates people. Be a servant that helps facilitate that structure.

    • We're lucky that our bodies require sleep, otherwise our cultures would have us working 16-20 hour days.

    Jump

  • I'm not sure how you feel about the limiting thing, but it is controversial in the US. Some departments do limit, others feel that isn't fair. Personally, I think we should understand why the academia system is set up the way it is and ask if it makes sense in the modern world.

    • We're lucky that our bodies require sleep, otherwise our cultures would have us working 16-20 hour days.

    Jump

  • As a grad student mostly. That said, non-tenured professors also have to work their asses off. The pyramid scheme dream is becoming tenured and having a large pool of grad students to abuse help you with your work.