tuhriel

joined 1 year ago
[–] tuhriel@infosec.pub 4 points 1 week ago

They have both, one history where you see all created passwords and within each entry you can see the previous passwords for this specific entry

So yeah, I don't see the reason for a manual tracking of the date...except if you maybe change something else (name, login etc.)

[–] tuhriel@infosec.pub 38 points 1 month ago

The app is intentional, with browsers they can't control which extensions you run, and therefore can't force their ads on you. With the app they can control the environment and you are legally not allowed to modify their app because trademark....

[–] tuhriel@infosec.pub 1 points 1 month ago

Or greenshot, is also quite versatile

[–] tuhriel@infosec.pub 4 points 3 months ago (1 children)

Looks really nice definitely gonna take a look at it.

And, did I read that correctly: the pro licence is a onetime payment and you keep the all the current features even after the licence expires?

[–] tuhriel@infosec.pub 1 points 3 months ago

For me it gets a bit confused if I add or remove the external screens.

Usually it is fixed if I quit and restart flameshot

[–] tuhriel@infosec.pub 2 points 3 months ago* (last edited 3 months ago)

For me it depends how "hardened" the account needs to be.

For key accounts I keep the 2fa seperated (where possible with a fido token) For not so relevant accounts I add it to bitwarden. Because I probably wouldnt activate 2fa for these accounts if I'd have to pull out the phone each time

Edit: you also can add the 2fa token to a separate vault

[–] tuhriel@infosec.pub 7 points 3 months ago

Hey, hey...pssst you forgot to update the template to the your current crypto!

[–] tuhriel@infosec.pub 8 points 4 months ago

Also, it might be annonymized for this dataset, by adding more 'annonymized' datasets stuff can be correlated

[–] tuhriel@infosec.pub 56 points 4 months ago (22 children)

I'm happy to dunk on musk as much as the next guy, but that title is bull.

Lightyears measure distance not time, how can they mess that up?

[–] tuhriel@infosec.pub 2 points 4 months ago (1 children)

I likebthat, but I think this misses the part where a company pulls it from all markets, which should be states specificly.

If you don't offer it anymore, you are not allowed to keep the copyright or patent.

[–] tuhriel@infosec.pub 3 points 4 months ago

If I have to choose between a company that freely sells and uses all my data versus a company that e2e encrypts my data and only complies with police and intelligence agency if it is specifically mandated by a swiss judge (and are fighing against it[1]), my money is definitely on the later

Is it perfect? Probably not. - Does it match my thread model? Definitely yes!

Also their privacy policy [2] allows to make a pretty well informed decision and map it against your thread model

And by the way, here's the statement of the ceo regading the activist: https://proton.me/blog/climate-activist-arrest

[1] https://www.swissinfo.ch/eng/business/proton-wins-appeal-in-swiss-court-over-surveillance-laws/47052196 [2] https://proton.me/legal/privacy

[–] tuhriel@infosec.pub 1 points 5 months ago (2 children)

Did some really basic testing with a few images I had at hand:

  • jpg (7,8 MB): ❌
  • jpg (1,6 MB): ✅
  • webp (2,2 MB): ✅ (was even animated)
  • png (564 kb): ✅

might be an issue with the sizes of the files, how large are your photos?

view more: next ›