• 5 Posts
  • 113 Comments
Joined 2 years ago
cake
Cake day: June 20th, 2023

help-circle





  • I kinda agree with this, without reading the article yet. I hope there is a clause for “-except with some training certificate”

    The age for getting drafted into the military (in America) is 18. Once in the military, you will receive some kind of training on firearms. If for some reason 18yr olds didn’t join the military (political or otherwise), but instead wish to get training through their own means, I think being able to purchase a firearm should still be a right. Obviously not military weaponry, but most other stuff, yeah






  • I get why 2FA is adopted so widely: companies need to cover they asses. Even if you don’t care if a hacker gets ahold of your password for a flash game website, that password leak could cause issues later on, and opens the website up to responsibility.

    What really bothers me more, is that 2FA is relying so heavily on phone numbers, which is an extremely flawed security system. At least some of the larger companies are open to using authenticator apps, or sharing the private key for storing in a database. But so many websites do 2FA by “requiring a phone number”, which just puts a lot of security responsibility on the phone carrier now. The user doesn’t really gain any extra responsibility for having good opsec, because phone companies fuck up all the time and assign phone numbers to new sim cards all the time, often on concerningly small amounts of information










  • I relate to this style more than the other comments in this thread, this seems more typical of a large company.

    You need to define clear needs out of your request: start with your end goal, the processes you need, the mechanical details of the processes you need to write, how much detail you are comfortable with, and the format in which you want it . and take all of that to the senior or director level of whatever department manages those systems. They may or may not know the exact information you need, but it should be their job to delegate and translate the request such that their reports can collate what you need in the form that you need it. And because it’s the director delegating, the engineers have inherent CYA and will be a lot more comfortable giving you what you need.

    Unfortunately this adds to the bureaucracy, but it really is the most effictive way of translating business needs to engineering needs. It’s not a straightforward process, and accurately defining the steps that need to happen for a job to get done, takes someone with a lot of experience and training.

    If you’re in a startup or smaller company, then I think the other comments that prioritize asking and listing to what the engineers recommend, is the best approach.