Yes. So only >99% of configs.

I agree just using cf for DNS only significantly reduces the harm they cause.

I dont know what that means. Do the oauth creds get shared with a third party or no?

The point is that most of these solutions require me letting an app post on my behalf. I don’t want that.

Thats kinda CFs whole business model

How does auth work?

Do I have to grant a third party permission to post to my account? Or do I have it auth with my credentials locally?

It helps to download content (like YouTube videos for PeerTube instances) when you’re rate limited

It helps with spam campaigns.

Image is a static image btw

That would take a year for some people to earn, before expenses. Check your privilege.

Sounds like they don’t know how to do security, then

Are the rest of their engineers so incompetent, or only their security department?

Thanks. Unfortunately that site doesn’t load.

Maybe you can email the CEO asking them to check their site on tor browser in strict mode?

Still doesn’t load. Try in tor browser

Site doesn’t load :(

Got a link to Ms VoIP?

Googling it just gives info on Skype shutting down

Does that let you have a voicemail?

I’ve long wanted a cheap way to setup a phone, when rung, picks up and plays a message telling the caller to email me. But everything I found for this is wayy more expensive than $12/yr

I just wish there was a secure way to install it

Its a password specific function. Its also memory hard.

As oposed to generation a salt and passing that with the password through sha256 or something, which is bad practice

Be the change you want to see

No. If you’re salting and hashing your passwords, you’re doing it wrong.

We have password specific memory hard functions like argon that you should be using

Probably so they don’t get fired for implementing a DoS vector

NIST recommended to never have passwords expire since like 3 decades. You gotta get rid of that. It makes your org less secure.

Probably best to just fire whoever set that up. They’re clueless