> The German law you cite about getting a password is applicable if you plan to or actually access data they are not authorized to. Which is not the case (assuming they do not). Usually this is the case. The user and…
No, they are not. GDPR notices (which this is) must be understandable to the layman. Including all consequences like "this will also allow access to other services secured with the same university/company-wide…
It is even worse. MS doesn't need to do anything. They don't need to pay anyone off. EU bureaucracy is extremely strongly wedded to MS products like Windows, Office, Teams, Outlook etc. As are all EU national…
Because a DNSSEC attestation is usually public, except if you maybe use NSEC 3 and hide the RR behind some random name.
No. Ambiguous consent is no consent. And continuing to send DNT is ambiguous, because the tracker can not distinguish between intent and accident.
Would be irrelevant, because the DNT-header will be sent with every request, so for all practical purposes will be later than any other kind of consent.
GDPR specifies tracking to be necessarily default-off and opt-in anyways. Therefore the browser sending DNT:1 by default would just repeat the legal status quo. A tracker could not successfully argue that this is to be…
Agreed. Torx might not be ideal, but it is widespread and (relatively) cheap. And miles better than anything else that is widespread and cheap.
If an attacker knows about some exploit involving someservice.com, which you are using. That attacker will try to find out where he can use that exploit of his. E.g. he might use something like shodan, google or DNS to…
Ah, now I get it. Yes, that is a possible problem.
Even stupid age-old BIND zone files can be version controlled and commented. Anything inferior to that level of documentability should be an instant no-no.
This kind of thing is pointless against a targeted attack. But it can hide you long enough in case of zero-days/fresh unpatched vulnerabilities because attackers will first target the more easily visible victims.
You could use your DNSSEC signing key to sign a validation message (offline, because that doesn't work over DNS).
Domain validation TXT records are poor infosec hygiene. If used at all, those records should never include any hint as to what service they are intended for. E.g. the record should NOT be: example.com IN TXT…
Double or triple that of a car, for a small plane, because of the higher fuel consumption. But this only affects avgas, which is high-octane gasoline for propeller-driven aircraft. Jet-A1, which is light diesel fuel or…
The LibreOffice CSV import is configurable. The Excel one isn't. You can do things in PowerQuery, but that is far from obvious and still buggy. Not to mention all the woes after import, like date/time…
Yes, I have. What Excel is still lacking is an easy solution for the input side. You can bind tons of data sources, but all are weird, hard-to-use, manual. There is no easy "grab this from that website, get the current…
The problem here is that you usually do not have ~1k users with all the same requirements. You have 200 groups of average 5 users each, all with their own department-specific, country-specific or workflow-specific…
To be somewhat constructive: What you rather should have done is not create more elaborate dashboards. What imho the world needs is an easy way to use a spreadsheet tool to generate and publish a dashboard. A "make web…
All these cool-looking dashboards are just too inflexible. You cannot add your own aggragates beyond trivialities. You cannot just "color that one value that bugs you". You cannot just generate a readable report plus…
It would sink into the center of the earth and then oscillate around the center until friction stops it dead center. Materials in the earth's crust and mantle are not strong enough to stop that mass from sinking ever…
Even better: Each user can have his own locale and charset, and may even change that per program/shell/session. One may save filenames as UTF-8, one as ASCII, one as ISO8859-13, one as EBCDIC. However, the common…
No. Because the API is fragmented into old, not-so-old and new parts, some higher-, some lower-level[0]. You need things from all of them, the new API isn't complete enough and has warts in places where using one of the…
It may be a response to specific circumstances like carrying blockade gear, announcements made by the people in question or past crimes: https://www.gesetze-bayern.de/Content/Document/BayPAG-17
> Die entsprechenden Verfahren enden regelmäßig lediglich mit Geldstrafen. This is plain wrong. Repeat offenders in this matter have been sentenced to jail time, in excess of the two months of possible preventative…
> The German law you cite about getting a password is applicable if you plan to or actually access data they are not authorized to. Which is not the case (assuming they do not). Usually this is the case. The user and…
No, they are not. GDPR notices (which this is) must be understandable to the layman. Including all consequences like "this will also allow access to other services secured with the same university/company-wide…
It is even worse. MS doesn't need to do anything. They don't need to pay anyone off. EU bureaucracy is extremely strongly wedded to MS products like Windows, Office, Teams, Outlook etc. As are all EU national…
Because a DNSSEC attestation is usually public, except if you maybe use NSEC 3 and hide the RR behind some random name.
No. Ambiguous consent is no consent. And continuing to send DNT is ambiguous, because the tracker can not distinguish between intent and accident.
Would be irrelevant, because the DNT-header will be sent with every request, so for all practical purposes will be later than any other kind of consent.
GDPR specifies tracking to be necessarily default-off and opt-in anyways. Therefore the browser sending DNT:1 by default would just repeat the legal status quo. A tracker could not successfully argue that this is to be…
Agreed. Torx might not be ideal, but it is widespread and (relatively) cheap. And miles better than anything else that is widespread and cheap.
If an attacker knows about some exploit involving someservice.com, which you are using. That attacker will try to find out where he can use that exploit of his. E.g. he might use something like shodan, google or DNS to…
Ah, now I get it. Yes, that is a possible problem.
Even stupid age-old BIND zone files can be version controlled and commented. Anything inferior to that level of documentability should be an instant no-no.
This kind of thing is pointless against a targeted attack. But it can hide you long enough in case of zero-days/fresh unpatched vulnerabilities because attackers will first target the more easily visible victims.
You could use your DNSSEC signing key to sign a validation message (offline, because that doesn't work over DNS).
Domain validation TXT records are poor infosec hygiene. If used at all, those records should never include any hint as to what service they are intended for. E.g. the record should NOT be: example.com IN TXT…
Double or triple that of a car, for a small plane, because of the higher fuel consumption. But this only affects avgas, which is high-octane gasoline for propeller-driven aircraft. Jet-A1, which is light diesel fuel or…
The LibreOffice CSV import is configurable. The Excel one isn't. You can do things in PowerQuery, but that is far from obvious and still buggy. Not to mention all the woes after import, like date/time…
Yes, I have. What Excel is still lacking is an easy solution for the input side. You can bind tons of data sources, but all are weird, hard-to-use, manual. There is no easy "grab this from that website, get the current…
The problem here is that you usually do not have ~1k users with all the same requirements. You have 200 groups of average 5 users each, all with their own department-specific, country-specific or workflow-specific…
To be somewhat constructive: What you rather should have done is not create more elaborate dashboards. What imho the world needs is an easy way to use a spreadsheet tool to generate and publish a dashboard. A "make web…
All these cool-looking dashboards are just too inflexible. You cannot add your own aggragates beyond trivialities. You cannot just "color that one value that bugs you". You cannot just generate a readable report plus…
It would sink into the center of the earth and then oscillate around the center until friction stops it dead center. Materials in the earth's crust and mantle are not strong enough to stop that mass from sinking ever…
Even better: Each user can have his own locale and charset, and may even change that per program/shell/session. One may save filenames as UTF-8, one as ASCII, one as ISO8859-13, one as EBCDIC. However, the common…
No. Because the API is fragmented into old, not-so-old and new parts, some higher-, some lower-level[0]. You need things from all of them, the new API isn't complete enough and has warts in places where using one of the…
It may be a response to specific circumstances like carrying blockade gear, announcements made by the people in question or past crimes: https://www.gesetze-bayern.de/Content/Document/BayPAG-17
> Die entsprechenden Verfahren enden regelmäßig lediglich mit Geldstrafen. This is plain wrong. Repeat offenders in this matter have been sentenced to jail time, in excess of the two months of possible preventative…