Encrypt all the things!

I started to move to bitwarden, but just never got my shit together. I know I'm going to forget to chase down last pass as well. Anyway /rant.

Any one run a separate os for secure stuff such as using cloud WiFi services

My missus has already moved. Seemed piss easy (so I wonder what will go wrong when I do it).

Anyone else have issues running O365 via Mullvad? Are they blocking some of the London nodes or something?

Any better options out there than Mullvad these days? I like it since it's cheap and I can use on 5 devices, but not much chop it Microshaft start blocking it.

If Microsoft are deciding to block VPNs then there's no guarantee that you won't be blocked on other VPNs.

Well yeah, but the more exit nodes I have available, the less likely I am to be blocked on all of them.

If I wanted to be very annoying I guess I could just spin up an EC2 Windows server and do stuff from that. Or use Tailscale to connect to another machine or similar.

I remember a few years back my OneDrive wouldn't work with a VPN. Can't remember which VPN it was (not Mullvad) but it's not a new thing.

I've been using it for ages. It's fucking annoying because my router is configured to use one exit node and I have to go and regenerate the bloody vpn files if I want to use another.

Drop microsoft I don't see alternatives.
¯_(ツ)_/¯

We did. Then my employer went back to them.

Finally sorting out moving to Bitwarden. So far as easy as expected and kicking myself for not doing it earlier.

I don't yet have 2fa. For work I use MS and I have Googles. I used to use one of those little key things that was recommended here ages ago, but I don't carry it on my.

The main thing is I want to be able to migrate when I upgrade my phone without any fuckery.

Is Google fine for this?

Sorry for the basic question.

Cheers

I use Aegis. It can replace the Google one and is easier for restoring on a new device.
https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis&hl=en&gl=US

Cheers

https://freecycle.helpscoutdocs.com/article/319-data-breach-august-2023

Anyone using Bitwarden or 1Password in a corporate environment?

Looking for alternatives to expensive and underutilised PAM system. Would need to integrate with AAD and do SSO via MS AAD which I think Bitwarden and 1password do but I've not read docs for more than 30s.

Genuine question

Is aiming to maintain privacy a lost lost battle?

We are tracked all the time. If you have managed to make a device invisible, AI enhanced facial recognition knows where you are, on line or not, perhaps also read your lips, use anything other than cash 'they' know what you buy.

Or is all the above conspiracy theory and 'the man' is too under-resourced to do most of that.

1 Attachment

Using bitwarden at work. I use the browser add-on. After the initial login with sso,I open it with my master password.

Is aiming to maintain privacy a lost lost battle?

Well, we're not winning. That said, there could be technical solutions that change this. The cryptocurrency fad is mostly (if not entirely) bullshit, but does hint at the possibility of identity being something people could own and manage independently. Amazon doesn't need to know your payment details, your address or your identity to function; all those things could be handled outside their systems, delegated to responsible, independent services. Amazon could sell and send you things without knowing your name, precise age or home address. Imagine that you only trusted those things to one service (and maybe not all of them to the same one), with other services relying on that service's integrity (and also relieving themselves of some of the liability for verifying those things). It's not impossible. May never happen.

Is aiming to maintain privacy a lost lost battle?

No.

Imagine that you only trusted those things to one service

Ah, I believe this is the plan for X ...

Without the browser add-on, you would just load it, grab creds and paste I presume.

Do you admin it? I presume it can do all the funky stuff and you can share secrets among teams, log access to secrets for audit trails, etc. Don't have a set of actual requirements yet, just trying to think of what the current PAM does that we actually use. Does it allow for superadmin/break glass accounts if AD shits the bed?

It looks like it has an API so I presume you can also have code that'll grab secrets from its vault directly without front-end interaction for automated testing or whatever.

Nah,Musk wants to create an everything app, not a specialist and replaceable identity service.

To be clear, I was talking about single purpose apps - doing no more than validating your identity or even just a portion of that - working to common standards so that you'd have a choice of provider, could switch from one to another etc. Musk wants one app to rule the world, taking his inspiration from China (e.g. WeChat).

Yes, but what's actually going to happen is that identity verification app will end up being owned by Google or Amazon or someone

Technically, it doesn't have to. What it would need is legal backing in at least one major jurisdiction. Europe did create GDPR, so it's not impossible. How likely?