The most popular sites provide the least guidance when it comes to secure password policies.
What if they are the most popular sites BECAUSE they are the least secure? Ease of use is pretty important and people would rather use a less secure, but easy platform than a more secure and complicate platform.
Just recently somebody told me they did not use any protection on their phone, because it was to much trouble to use. They added fingerprint readers because people are too lazy to type in a 4 pin code.
Unfortunately the answer to "Do we want privacy." is asked at the same time as "Do you want others to have privacy?" and the answer is no as there will be 1 person (you) that wants it and all the rest don't want YOUR privacy.
Talking as a person living and working in Belgium where the laws are written so they are on the side of the employee and from 50 FTE, you will have a Union representative.
You can fire everybody here without a reason. The thing that will differ is how much you will have to pay him. The standard used to be (New law now, so not sure about the amount) 3 months per 5 years. So he would have gotten at least 3 months pay. His rights do not end there. If he would have felt any wrongdoing in the process, he could go to court and ask for more.
If he would have gotten it then or not depends to be seen. He could have done that with or without the help of a Union.
It could then be that the court decides against him. That would mean in the worst case that they won't need to pay those 3 months, but very unlikely. Most likely they would say that the company was in the right and he got his legal amount. If they rule in his favor he could get extra months. It could also be that the company gets extra warnings and fines if they did something wrong.
From what I have read till now, I would say that he would easily have been fired as the trust between the two parties has clearly been tainted and the is now a trust issue. Much depends on if it would have been addresses, but I would say he would get just his standard severance pay.
Obviously I am not a layer, let alone one that is specialized in the matter.
Passwords and the changes are a technical solution to a social problem.
The thing is that people treat these password suggestions as if there is only one username and one password. If that where the case, it would be a great idea. The thing is that we all have more than 1 login.
Just looking at logins and I have several. If I was able to select them myself, they are mostly the same, but then there are the other ones that where given to me. So I need to remember what login or email address I used for what. I once counted and came to 17 different logins.
Next to that I need to remember around hundred passwords (I include pin codes as well as phones) and none of them should be the same as any other? Some I might use only once per year (like for my domain name) .
So I do not only have to know 101 phrases, I also have to know what login it belongs to and to what site or door or phone or pin.
So instead I have made several passwords 1) Email This is the highest security as this is the key to recovery of the rest. I use the around 20 characters. 2) Home system. 3) Banking 4) Trusted stores/sites 5) Not so trusted places 6) Work
Next to that I use different logins for different sites in 3 and 4. e.g. slashdot.org@example.com That way I will know if a mail comes from the site or not and I also know what the login is by visiting the site.
So the issue is not remembering once single password and login combination. The problem is to remember many of them.
I am sure all people here are able to do it. I am not. And I am one of the people who understands this and thinks about it. The other problem is that many people in IT do not. They just cover their own ass and look at numbers and chance and change of password and in no way factor in the humans and their behavior. By forgetting them they make the security chain as weak as the weakest link, but they get to blame others.
If the sign does not exist, one car might think it has right of way, because it 'knows' what the sign would be. Another car will think it has right of way, because there is no signs. Right of way when you come from the right (left in some countries).
For people it very much matters if a sign exists. There are also situations where things change. Updating the GPS systems is a pain as it is now, even where cities ask to do so and you want to do it with signs?
The streaming service I use is YouTube. So much content that I like. Just turn it all off for a month and you suddenly notice that you have a lot of time to do things, instead of needing to time-manage your life and walk around stressed.
I was on a sinking ship. We had two holes. Some people said it was punishment from God and we should die. Others said it was because the ship hit some rocks.
Now I am not a rabid religious (not that they are all like that), I think there's a lot to both sides of the equation, here. [snip a lot that could be compared]
Anyway, people need to get a grip on this subject and meet in the middle. So we should just leave one hole open and close the other one.
So let's stop the hyperbole and have some reasonable discourse about how to deal with it instead of pointing fingers and name calling. That way we will all be happy.
The reason is that the US has been in a situation where it doesn't matter what the people think and they know it. "We are spying on US citizens, so fucking what?"--CIA, NSA, FBI and everybody else. "I tell secrets to others, so fucking what" --Potus "We cheat and steal, so fucking what" --Big US companies I am sure people will know of much more and better examples.
Why would they try to hide it as the result is the same? As long as there is no accountability, it won't change.
There used to be a clear difference between price and quality. This is not the case anymore. I have had things I bought for 400EUR break in a year, replaced it for something for 40EUR that lasted for 4 years.
And then you can also buy something expensive and the company says "You are holding it wrong" or the battery explodes. There where items that where not 'cheap'.
The hard part is to find out for what item it holds true and for what it doesn't.
Yes, it isn't 100% perfect, yet you also need to look at the overall picture. If they allow lower wages there, they will need to allow lower wages everywhere.
If they are already running at a loss, not giving the 0.small% raise and then closing the company feels as if they where going to close anyway and now have an excuse that they can blame the unions.
In Belgium we have an automatic index, so if the index changes, so does your pay. No, not 100% perfect either, but better than fighting over 0.small%
The reason I do not use them is because of spam. I have my own domain, so I use an alias for every company I deal with. So for them that would have been ebay.com@example.com For me that is a double insurance. If I get a mail it is very easy to know if it from the company or not. It is also easy to see if the address has been hacked or sold.
Ebay is in all the years the only company where I started to get spam. I understand that I did not deactivated something somewhere, but that does not make it ok. So I deleted the email account and never will do anything with them, even if it means paying more elsewhere.
It shows that the sellers that are shite go to the Ebay that is shite.
To be more specific, every contract/sale that has been done not at the official address of the seller will grand a cool down period of 2 weeks. That is online stuff and telemarketing things, but also when e.g. the bank comes to your home for your mortage and you sign the contract at your home and not at their office.
And even then there still might be a cool down period.
It is as if these laws where made by the people for the people. Weird.
I have that in Belgium. But first understand that there is a fundamental difference in Unions in the US and in Europe. In the US it is more a guild than a Union. You have profession X, you join Union Y.
In Belgium these exist as well, but they are the smaller unions. Most you just join. There are a few major ones. You can join any of them and no company will ask if you are a Union member or not, because they do not care if you are. I do not even know if the people I work with are in a union or not.
When a company is larger than 50, there need to be a workers representative from the unions. That means that basically every company is unionized.
As long as you are 18 (I think) you can join a union. You do not even have to have a job. The reason I joined is because they do a lot for you.
First time I lost my job, it took 9 months to get my unemployment benefits. I got it in one big bunch. Next time I got fired, I joined a Union on that very day and they took all the paperwork out of my hands and I got paid immediatly.
One company I worked for even paid me back the fee I paid to the Union. So in effect the company paid the Union.
The thing is that Europe are a lot of countries, so you do not have one huge overlapping Union. To me that could be a danger in the US that they would become TOO powerfull. In Belgium I like it as they even the power difference between a single person and a company. No, obviously it isn't perfect, but it is WAY better than having no union.
I am all for a semi-open plan. That is not cubicles, but also not one big hall with everybody, including the CxO in one big hall.
Have it open per team. Also see that 'loud' teams like helpdesk or sales are separated from 'silent' teams like accounting.
I have seen plenty of offices where they where able to do that without closing every team in a separate office with a locked door. Each team will have different needs and should be addressed differently.
Having one system for all is like saying that you can have a phone in any color, as long as it is white. Oh.
Free Movement of British Citizens To EU Will End in 2019.
And not than much will change as the EU was never part of The Schengen. Area so free movement was already not possible. They also where not part of the Eurozone.
The Brits where never in the Eurozone. They where also not one of the Schengen countries. That means that there already was no free travel for people and goods as it was intended in the EU.
The UK already was the odd one out. When you look at the subject that the EU won't be allowed to travel to the UK, it shows that they still think like they did in the past when there was fog on Heathrow Airport and they said that the continent was closed. The change will also mean that people form the UK won't be able to travel free to the EU.
I work in Brussels and have friends and family all over Europe and many people I spoke to are not sad at all that the UK, the odd one out, is leaving. We just feel sorry for Northern Ireland and Scotland and would welcome home those lost souls when they wish to.
Slashdot Mirror
What if they are the most popular sites BECAUSE they are the least secure?
Ease of use is pretty important and people would rather use a less secure, but easy platform than a more secure and complicate platform.
Just recently somebody told me they did not use any protection on their phone, because it was to much trouble to use.
They added fingerprint readers because people are too lazy to type in a 4 pin code.
I also remember how the NFLK issues was about the software and network issues more than about the device itself.
And it is not even whole numbers. It could be 0.000000004 25millions.
Just to be clear: correlation is not causation, but it also does not exclude it,
In Europe, people live longer and you could say they are pretty left, so apparently, if you start to vote left, you live longer.
(This is waterproof. No way anybody can argue against this.)
Unfortunately the answer to "Do we want privacy." is asked at the same time as "Do you want others to have privacy?" and the answer is no as there will be 1 person (you) that wants it and all the rest don't want YOUR privacy.
Talking as a person living and working in Belgium where the laws are written so they are on the side of the employee and from 50 FTE, you will have a Union representative.
You can fire everybody here without a reason. The thing that will differ is how much you will have to pay him. The standard used to be (New law now, so not sure about the amount) 3 months per 5 years. So he would have gotten at least 3 months pay. His rights do not end there. If he would have felt any wrongdoing in the process, he could go to court and ask for more.
If he would have gotten it then or not depends to be seen. He could have done that with or without the help of a Union.
It could then be that the court decides against him. That would mean in the worst case that they won't need to pay those 3 months, but very unlikely. Most likely they would say that the company was in the right and he got his legal amount.
If they rule in his favor he could get extra months. It could also be that the company gets extra warnings and fines if they did something wrong.
From what I have read till now, I would say that he would easily have been fired as the trust between the two parties has clearly been tainted and the is now a trust issue. Much depends on if it would have been addresses, but I would say he would get just his standard severance pay.
Obviously I am not a layer, let alone one that is specialized in the matter.
Great. Now I just need to remember this for 100 places, some I use once per year. Also does not solve the problem with all the different pin codes.
Passwords and the changes are a technical solution to a social problem.
The thing is that people treat these password suggestions as if there is only one username and one password. If that where the case, it would be a great idea. The thing is that we all have more than 1 login.
Just looking at logins and I have several. If I was able to select them myself, they are mostly the same, but then there are the other ones that where given to me. So I need to remember what login or email address I used for what. I once counted and came to 17 different logins.
Next to that I need to remember around hundred passwords (I include pin codes as well as phones) and none of them should be the same as any other? Some I might use only once per year (like for my domain name) .
So I do not only have to know 101 phrases, I also have to know what login it belongs to and to what site or door or phone or pin.
So instead I have made several passwords
1) Email This is the highest security as this is the key to recovery of the rest. I use the around 20 characters.
2) Home system.
3) Banking
4) Trusted stores/sites
5) Not so trusted places
6) Work
Next to that I use different logins for different sites in 3 and 4. e.g. slashdot.org@example.com That way I will know if a mail comes from the site or not and I also know what the login is by visiting the site.
So the issue is not remembering once single password and login combination. The problem is to remember many of them.
I am sure all people here are able to do it. I am not. And I am one of the people who understands this and thinks about it. The other problem is that many people in IT do not. They just cover their own ass and look at numbers and chance and change of password and in no way factor in the humans and their behavior. By forgetting them they make the security chain as weak as the weakest link, but they get to blame others.
If the sign does not exist, one car might think it has right of way, because it 'knows' what the sign would be. Another car will think it has right of way, because there is no signs. Right of way when you come from the right (left in some countries).
For people it very much matters if a sign exists. There are also situations where things change. Updating the GPS systems is a pain as it is now, even where cities ask to do so and you want to do it with signs?
The streaming service I use is YouTube. So much content that I like.
Just turn it all off for a month and you suddenly notice that you have a lot of time to do things, instead of needing to time-manage your life and walk around stressed.
I was on a sinking ship. We had two holes. Some people said it was punishment from God and we should die. Others said it was because the ship hit some rocks.
Now I am not a rabid religious (not that they are all like that), I think there's a lot to both sides of the equation, here.
[snip a lot that could be compared]
Anyway, people need to get a grip on this subject and meet in the middle. So we should just leave one hole open and close the other one.
So let's stop the hyperbole and have some reasonable discourse about how to deal with it instead of pointing fingers and name calling.
That way we will all be happy.
The reason is that the US has been in a situation where it doesn't matter what the people think and they know it. "We are spying on US citizens, so fucking what?"--CIA, NSA, FBI and everybody else.
"I tell secrets to others, so fucking what" --Potus
"We cheat and steal, so fucking what" --Big US companies
I am sure people will know of much more and better examples.
Why would they try to hide it as the result is the same? As long as there is no accountability, it won't change.
There used to be a clear difference between price and quality. This is not the case anymore. I have had things I bought for 400EUR break in a year, replaced it for something for 40EUR that lasted for 4 years.
And then you can also buy something expensive and the company says "You are holding it wrong" or the battery explodes. There where items that where not 'cheap'.
The hard part is to find out for what item it holds true and for what it doesn't.
Is easier to assume that it does than to think it does not. And even if it does not now,. it might do so in the future.
Note: It is only paranoia when you THINK that you are being followed, not when you actually are.
Yes, it isn't 100% perfect, yet you also need to look at the overall picture. If they allow lower wages there, they will need to allow lower wages everywhere.
If they are already running at a loss, not giving the 0.small% raise and then closing the company feels as if they where going to close anyway and now have an excuse that they can blame the unions.
In Belgium we have an automatic index, so if the index changes, so does your pay. No, not 100% perfect either, but better than fighting over 0.small%
The reason I do not use them is because of spam.
I have my own domain, so I use an alias for every company I deal with. So for them that would have been ebay.com@example.com
For me that is a double insurance. If I get a mail it is very easy to know if it from the company or not. It is also easy to see if the address has been hacked or sold.
Ebay is in all the years the only company where I started to get spam. I understand that I did not deactivated something somewhere, but that does not make it ok. So I deleted the email account and never will do anything with them, even if it means paying more elsewhere.
It shows that the sellers that are shite go to the Ebay that is shite.
To be more specific, every contract/sale that has been done not at the official address of the seller will grand a cool down period of 2 weeks. That is online stuff and telemarketing things, but also when e.g. the bank comes to your home for your mortage and you sign the contract at your home and not at their office.
And even then there still might be a cool down period.
It is as if these laws where made by the people for the people. Weird.
Yeah. The Russians gave it to them to harm the Ukraine. This was never really about money. It was about politics.
I have that in Belgium. But first understand that there is a fundamental difference in Unions in the US and in Europe.
In the US it is more a guild than a Union. You have profession X, you join Union Y.
In Belgium these exist as well, but they are the smaller unions. Most you just join. There are a few major ones. You can join any of them and no company will ask if you are a Union member or not, because they do not care if you are. I do not even know if the people I work with are in a union or not.
When a company is larger than 50, there need to be a workers representative from the unions. That means that basically every company is unionized.
As long as you are 18 (I think) you can join a union. You do not even have to have a job. The reason I joined is because they do a lot for you.
First time I lost my job, it took 9 months to get my unemployment benefits. I got it in one big bunch. Next time I got fired, I joined a Union on that very day and they took all the paperwork out of my hands and I got paid immediatly.
One company I worked for even paid me back the fee I paid to the Union. So in effect the company paid the Union.
The thing is that Europe are a lot of countries, so you do not have one huge overlapping Union. To me that could be a danger in the US that they would become TOO powerfull. In Belgium I like it as they even the power difference between a single person and a company.
No, obviously it isn't perfect, but it is WAY better than having no union.
Seriously. How could this NOT lead to a lawsuit? Blocking the competition is something that is frowned upon, no matter the intentions.
I am all for a semi-open plan. That is not cubicles, but also not one big hall with everybody, including the CxO in one big hall.
Have it open per team. Also see that 'loud' teams like helpdesk or sales are separated from 'silent' teams like accounting.
I have seen plenty of offices where they where able to do that without closing every team in a separate office with a locked door. Each team will have different needs and should be addressed differently.
Having one system for all is like saying that you can have a phone in any color, as long as it is white. Oh.
ALL the phones phone home. So are they going to block them as well, or is that OK, because it is not China, but companies.
TBJ, I am not sure if it is better to give my data to China or to Google/Apple/Windows/Amazon/....
Free Movement of British Citizens To EU Will End in 2019.
And not than much will change as the EU was never part of The Schengen. Area so free movement was already not possible. They also where not part of the Eurozone.
And even if the banana thing was correct, I would have been very possible that it was proposed and pushed by the UK itself.
But at least the extra money will come from, eh, go to the NHS.
The Brits where never in the Eurozone. They where also not one of the Schengen countries. That means that there already was no free travel for people and goods as it was intended in the EU.
The UK already was the odd one out. When you look at the subject that the EU won't be allowed to travel to the UK, it shows that they still think like they did in the past when there was fog on Heathrow Airport and they said that the continent was closed.
The change will also mean that people form the UK won't be able to travel free to the EU.
I work in Brussels and have friends and family all over Europe and many people I spoke to are not sad at all that the UK, the odd one out, is leaving. We just feel sorry for Northern Ireland and Scotland and would welcome home those lost souls when they wish to.