darcy @ darcy @sh.itjust.works

hello

---

Read more

Posts

27

Comments

1,096

Joined

2 yr. ago

here before this gets downvoted to the bottom

:(

inkscape. awesome vector drawing program

i agree with your point about different use cases.

ohh yeah i get it good one

mfa is good tho. i think its almost good its forced on normies. sms/email 2fa is garbage however, and google authenticator is very bad for privacy. for most people (assuming you have a phone), is it really that much to have a separate password-locked 2fa totp app? they exist for both phone and desktop, and can be synced (although personally i cant see that being a good idea). totp is basically a hidden password hashed with the current time, so if the hidden password is leaked it can be replicated at any time. if your main computer gets compromised or keylogged, then accessing one 6-digit code is worthless unless used in the next 30s, unlike the totp secrets

thanks

i dont think i know what youre talking about?... but factor refers to one of three types: something you know (passwords), have (totp or yubikey), or are (biometrics). having 2 passwords is almost the same as having one password, since they are the same factor. thats why having totp linked to your password manager is basically like having 2 passwords. it almost defeats the point

thanks

sadly i havent been able to create an account on there

thats what i thought :/

yes. i used eframe/egui in rust, which builds to native. not saying its the best framework, but def better than el*ctron

i did

its best to keep passwords and totp separate

I HATE ELECTRON I HATE ELECTRON I HATE ELEC

more like an irreversible hashed version grandma.sha

u know it

its the guy they replaced joe biden with

no i was trying to show my method for avoiding that. i get the joke but i was also trying to be actually helpful

its.what theyr doing, in REAL ...LIFE