Kyle Rankin @kyle@librem.one

@jfred For instance, my initial knee-jerk response years ago was to be against biometric auth as a sole unlock factor for phones, but I realized that for many folks PIN or pattern unlock wasn't something they'd actually use. Without biometrics they would opt for no unlock auth at all.

@jfred Thanks for elaborating on how it's used in this particular case. In person attacks do seem plausible when you are talking about auth for a local login service. But just like you mention, a *lot* depends on individuals and their particular threats. That's why all the nuance and particulars can't be distilled on social media down to "don't do this" or "always do this."

I should make clear that "something you are" factors have a place in authentication and an even bigger place in identification, and over time my opinions on where to use it has gotten more nuanced than can fit well on social media.

@Sirofthenorthernterritories Yeah the free choice in both razors and blades is what keeps bringing me back to safety razors, and since blades aren't proprietary, I buy in bulk every few years and they cost me a few dollars a year.

@Sirofthenorthernterritories Yes, it uses the standard Gilette-style double-edged razor blades. It's not just the vibration but also the design of the head itself that I think lends to the quality of the shave.

This new razor shaves even better than the other one! I think I might be a convert...

@choboDOC @todd We continually get contacted by folks who want to invest smaller amounts and finally got around to building something to enable that kind of investment and make it easy both for them and us to contract. That's all.

It's strange that we are solving the problem that people use the same passwords everywhere, by replacing passwords with unrevokable biometrics, that *have* to be the same everywhere to work.

Biometrics aren't secrets. It seems like "a good quality infrared image of the target's face" is hard to get right now only because the tech isn't ubiquitous yet. Wait until every website the user logs into has a copy. https://arstechnica.com/information-technology/2021/07/hackers-got-past-windows-hello-by-tricking-a-webcam/

I haven't been on call in many years but when I was, my alert was the song Le Freak. It just came on inside a store and my sysadmin PTSD came flooding back.

My local thrift store is a gold mine! I dropped by there on a whim and found another Stahly live Blade with the original box. Last week we found a vintage ad for the razor online that I framed and will hang next to the sink. I bought this razor cheaper than the MSRP in the ad!

Arch, Red Hat, Ubuntu, Debian

"Many eyes make bugs shallow" doesn't apply to security bugs. You need the *right* eyes auditing the code. Until then, backdoors like this can hide in plain sight. https://arstechnica.com/gadgets/2021/07/for-years-a-backdoor-in-popular-kiwisdr-product-gave-root-to-project-developer/

@akhilvarkey @artelse @purism Thank you for finding that!

@artelse @purism That would be up to the owner of that podcast--I don't have control over how the interview is distributed.

Buidl Crypto just published an long-form interview with me where I touch on just about every aspect of @purism. It's a great conversation, check it out here: https://open.spotify.com/episode/290Apvlx688VWT4vPqBl6n

There are certain songs that are always dangerous if they come on the radio while you are driving because they make your foot... heavy. Mine's Jerry Was a Race Car Driver by Primus, what's yours?

@dukethereal I prefer translators that prioritize readability and accuracy to *meaning* than literal word-for-word accuracy. It's poetry after all and I've found the translations I enjoy reading the most are from authors who have a poet's sensibility themselves.

I'm not a book nerd because I read The Iliad and Odyssey, and I'm not a book nerd because I'm about to read The Aeneid, and I'm not a book nerd because I picked the same translator (he's really good).

I'm a book nerd because I made sure all three books matched.