this post was submitted on 03 Oct 2024
902 points (98.0% liked)
Technology
60102 readers
2633 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I wish. Every fucking bank has their own shitty app for 2FA instead of just using standardized and proven TOTP, no way around that.
Same about school apps the article mentioned since it's connecting to their (one of many) proprietary system, no website for that.
And recently got into the home automation rabbit hole. Lots of devices that require their fucking app, sometimes with mandatory cloud account, just to connect! And people in reviews even praise how easy it is, it's infuriating! I don't need light bulbs connecting to the internet, thank you very much.
Ha, sucker, you think your non-Internet-connected lightbulbs make you safe? My Internet-connected lightbulbs have sent my online-car to wardrive your neighbourhood and sniff your Zigbee network!
…if you see my car please tell it to come back to me, I need to go to the shops…
Joke's on you - I can't even reach my Zigbee devices in the next room, your car won't have a chance from the street. That'll make it easier to convince it to come back home though.
That's because you don't have enough zigbee devices. They have to be everywhere so that they can mesh. Have you considered a zigbee carpet? It's great to link rooms together and it can share data with the zigbee vacuum cleaner.
I get emails from school, with a link that opens a 3rd party app, which only displays a link that opens in the default browser. I've asked the school to just send me direct links to the announcements, but they say they can't. The site doesn't require authentication, but the URLs have UUIDs so I can't just guess what the link would be. The app is quite literally just a data exfiltration layer that does everything it can to make sure you can't bypass it. Good luck getting any other parents to give a shit though.
That's the big one, sadly.
All of the banks I've used in the past utilize email or SMS for 2FA, which isn't the most secure, but doesn't require an app.
They need to switch to Webauthn. SMS-based 2FA should’ve been big 10+ years ago, not today. I don’t really understand why this old style 2FA has been just now becoming popular lately.
I returned a bunch of smart outlets I got at Home Depot after I got fed up with waiting for the app to launch just to turn a light on or off.
I also don't want to have to talk to it, so switching to Home Assistant with Zigbee button remotes has made my experience so much better. And on the plus side, everything still works when the power or Internet goes out because I've got it on battery backup.
That's what started it all for me. I have some Hue lights for TV backlighting and started looking for alternatives when Philipps first threatened making their cloud account mandatory.
Threw out the bridge, works like a charm and I have been buying new devices and return everything I cannot setup locally but it's annoying because they don't always tell about their crappy app and cloud accounts on the product info.