https://www.itnews.com.au/news/qld-it-minister-cautions-feds-over-interference-516628
Queensland’s IT minister Mick de Brenni has urged the federal government not to use its newly created Australian Digital Council as a way to dilute state regulation.
 
He has also accused the Canberra of not consulting with state and territory governments prior to releasing its inaugural digital transformation strategy last month

So it seems that only Canberra is keen on it.

@Dashrender said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@JaredBusch said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@Dashrender said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@scottalanmiller said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@Dashrender said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@JaredBusch said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@scottalanmiller said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@JaredBusch said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@scottalanmiller said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

@Obsolesce said in Why, in 2018, is Microsoft adding security questions to Windows 10?:

This only occurs, that I've seen, during OOBE when you set up the PC as a local, non-domain, non-Microsoft-Account, user.

Correct, as a standard local account. The "normal" way. Most people don't use AD, even in business this is dropping off quickly. And lots of people don't want to deal with those ridiculous MS accounts that they try to ram down everyone's throats. And who knows how secure those are, anyway.

That is not the normal way to set up windows anymore and has not been for quite a while. The normal way to set up windows is with a Microsoft account. In fact you have to click no to setting up a Microsoft account multiple times in order to set up a PC without a Microsoft account

That's what they promote, but I wonder how many people are actually doing that.

Probably most that don’t use AD. Of course some will not, but not many.

I tend to agree - most home users will use a MS account simply because it's what's presented. IT folks and some programmers might not, but I'm willing to bet it's way over half that do.

Have you seen a lot of home users doing this? I have not, of course my cross section is tiny. But of the ones I see that have zero tech skills, they all skip it because it is scary and confusing.

The option to skip it's obvious enough for most people I run into - they just do it, even if that means setting up a new account.

It is obvious? not really. And even if they see it and click on it, you have to refuse once or twice more.

Whoops - I meant - NOT super obvious... normal users will be guilted into using an MS account in most cases.

yeah the first two times it took me a moment to notice you could skip.

@scottalanmiller Yeah I check daily for updates to make sure my things are up to par and was surprised when I saw such a huge list of updates waiting.

@JaredBusch said in Why aren’t chip credit cards stopping “card present” fraud in the US?:

@Dashrender said in Why aren’t chip credit cards stopping “card present” fraud in the US?:

@JaredBusch said in Why aren’t chip credit cards stopping “card present” fraud in the US?:

@Dashrender said in Why aren’t chip credit cards stopping “card present” fraud in the US?:

@nadnerB said in Why aren’t chip credit cards stopping “card present” fraud in the US?:

A significant majority of cards here in Au have a "tap 'n' go" feature. There are idiots the put a nail punch into the chip several times to "disable" the "tap 'n' go" feature to make their card "more secure"... which send them right back to magnetic strip swiping... #MeatwareMayhem

Even when it's important to them, the end user refuses to educate themselves.

While I'm not surprised to hear about hole punching - I've never heard about it - what, do they just not want to be more secure? Why kill the chip?

Because part of the chip is RFID capabilities. Stupid humans still.

I guess when I read his comment I thought the hole punch people were only trying to disable the chip, and not TAP, but their overzealous punching also caused damage to the TAP chip..

The RFID is not a separate chip. It still uses the same chip. The antenna may be on the other side, but the brains are all in the one chip.

OK I'd like to think this is right - as it would totally make sense.

the problem I have with it is that tapping takes a fraction of the time to authenticate a transaction compared to plugging the card into a reader - is the wireless read just that much faster? or is TAP really not doing an challenge response situation like chip is?

Probably pretty minor, but just patch nGinx anyway 🙂

Too bad KVM is not available on Mac then I can move from using Virtualbox.

@Dashrender said in Strange snafu misroutes domestic US Internet traffic through China Telecom:

@scottalanmiller said in Strange snafu misroutes domestic US Internet traffic through China Telecom:

@Dashrender said in Strange snafu misroutes domestic US Internet traffic through China Telecom:

Man - BGP needs an overhaul!

Replaced!

Is there something that can replace it now?

Dont' think so. Not on that scale.

So chrome is finally starting to catch up with the level of ad blocking I've had for years.

@PhlipElder said in Tracking People in Their Homes with WiFi Signals:

10-4. Radio Imaging sorta.

The idea has been around for a long time? I seem to remember movies having this type of thing happening?

It's a bit like X-Ray. It's all just non-visible light, but with different sources, bounce patterns, and penetration. Wifi is interesting because it is so common and "bright". There is just so much of it, everywhere.

@mlnews

There goes Ed25519

Might as well stick to RSA 4096

@Donahue said in Why I See UTMs As Generally Bad in the Current Market:

@scottalanmiller said in Why I See UTMs As Generally Bad in the Current Market:

@Donahue said in Why I See UTMs As Generally Bad in the Current Market:

The reason we went with Fortigate over an Edge router, is that the Edge router couldn't do the IPsec bandwidth we were trying to hit. But mine is an NGFW with UTM bundled in. Could there been some other product that I dont know of that would have been better in our case?

ERL does nearly half of what you need...

https://community.ubnt.com/t5/EdgeRouter/ERL-Performance-Testing-with-IPSec-VPN/m-p/1053799#M44593

ER and ERPro are so much more powerful. The ER Pro has 2x the CPU power, and 4x the RAM. We'd expect it to be able to saturate your lines no problem. Of course that is "expect", but based on the ERL speeds, and that they run the same code, there is little doubt that it can push IPSec over 1Gig speeds.

https://dl.ubnt.com/datasheets/edgemax/EdgeRouter_DS.pdf

Your link is what convinced me not to use the ER pro. the Pro's will only do <500 mbps at full capacity, its in the link you posted.

Where in it?

Oh, I see. he mentions ER Pro in another post, then posts them without stating what they are in a thread on ERLs. VERY confusing.

haha