this post was submitted on 16 Oct 2025
1370 points (99.4% liked)

Microblog Memes

9483 readers
2085 users here now

A place to share screenshots of Microblog posts, whether from Mastodon, tumblr, ~~Twitter~~ X, KBin, Threads or elsewhere.

Created as an evolution of White People Twitter and other tweet-capture subreddits.

Rules:

  1. Please put at least one word relevant to the post in the post title.
  2. Be nice.
  3. No advertising, brand promotion or guerilla marketing.
  4. Posters are encouraged to link to the toot or tweet etc in the description of posts.

Related communities:

founded 2 years ago
MODERATORS
ReadyUser31@lemmy.world
aeronmelon@lemmy.world
needanke@feddit.org
1370
It's the dream (piefed.cdn.blahaj.zone)
submitted 1 week ago by LadyButterfly@piefed.blahaj.zone to c/microblogmemes@lemmy.world
97 comments fedilink hide all child comments
 
top 50 comments
sorted by: hot top controversial new old
[–] hardcoreufo@lemmy.world 5 points 6 days ago (1 children)

We use duo as 2fA for our Microsoft accounts at work. Every Thursday its log into teams on phone log into teams on desktop, log into outlook on phone, log into outlook on desktop. Why can't your apps cross authenticate on the same device? How does one drive manage to stay authenticated throughout the whole process?

Any actual work I need togets done is done on a 15 year old think pad running Debian. The beefy 12th gen i9 just whirrs its fan around and occasionally gets used for emails, team chats and logging up tickets.

[–] ricecake@sh.itjust.works 1 points 4 days ago

There's actually a duo feature that does that.
Normally apps can't cross authenticate like that because they don't have the ability to talk to each other in a standard way that's also verifiable and secure. Teams could have a way to share your auth to something else, but it's much more difficult for it to know that the thing asking for access actually is something that's supposed to be able to do so.
OneDrive is built in to Windows, so it's able to use the authentication you use to log into the computer to talk to the Microsoft servers. (Essentially, there's like a million steps and layers of indirection).

[–] iAvicenna@lemmy.world 2 points 5 days ago

Can't access your phone to verify Microsoft Authenticator? Please use Microsoft Authenticator to reset your account, thanks bye.

[–] warpotato@lemmy.world 50 points 1 week ago (8 children)

Okay so I get this is a meme BUT I started using a yubikey instead of the auth app and it has done a world of good for my sanity.

[–] halcyoncmdr@lemmy.world 31 points 1 week ago* (last edited 1 week ago) (4 children)

I transitioned everything to Bitwarden. Password manager, passkeys, and MFA code generation all in one app that works on all of my devices.

And then I started to self-host it via Vaultwarden and transferred all the data.

[–] alsaaas@lemmy.dbzer0.com 41 points 1 week ago (4 children)

A friendly FYI: having your passwords and MFA in one place partially defeats the purpose

[–] halcyoncmdr@lemmy.world 23 points 1 week ago* (last edited 1 week ago) (3 children)

True, but the alternatives generally are either a pain in the ass or require yet another syncing service to have sensitive info just so I can access things reliably anywhere.

It is still more secure than SMS and email based options.

Besides, my vaultwarden still needs an MFA code to access in the first place, and that's handled by a separate generator.

load more comments (3 replies)
load more comments (3 replies)
load more comments (3 replies)
load more comments (7 replies)
[–] Korhaka@sopuli.xyz 29 points 1 week ago (9 children)

Our password manager requires logging in and using the authenticator every time the session times out, so we all started using a browser plug-in to keep the session alive all day.

load more comments (9 replies)
[–] Jankatarch@lemmy.world 27 points 1 week ago

And get 15 emails from microsoft regarding how you just logged in.

[–] echodot@feddit.uk 25 points 1 week ago (5 children)

No matter how bad you have it someone else has it worse.

In order to do my job I have to log into the VPN, and then remote desktop onto a server, then from that server remote desktop onto another server. Then I have to go back to the first remote desktop and remote desktop onto a different server which from there I can remote desktop onto two other servers, on one of those servers there are two different log ons which I can use to do different tasks.

Then back on the main desktop I can remotely connect via web browser to a virtual machine that I can then remote desktop onto a server. If I want to change the password on that server I have to remote desktop from that remote desktop from that virtual machine, into a remote desktop.

Oh and then there is the web app that I have to use that only works in Internet Explorer, but for security reasons IE has been removed from the main system, so I have an entire remote desktop literally just to use Internet Explorer.

It takes about 25 minutes to log into everything everyday and about 10 minutes to log out at the end of the day.

[–] Muffi@programming.dev 15 points 6 days ago

Thanks for the aneurysm. I feel for you.

[–] LadyButterfly@piefed.blahaj.zone 13 points 6 days ago (1 children)

Oh ffs I got annoyed just reading the comment I can't imagine the hell of having to do that

[–] teslasaur@lemmy.world 2 points 6 days ago

You clearly don't work in an OT environment. Network segmentation is everything.

[–] lightnegative@lemmy.world 7 points 6 days ago

I bet the security "experts" who designed this are busy jerking each other off about how "secure" they've made everything

[–] AniZaeger@lemmy.world 4 points 6 days ago

Fuck, and here I thought AGS progressive controllers were bad. Remote desktop into the controller using a commonly known username and password to get a "salt", "hash code", "iterations", "password length", and "server name". Enter all that onto a website that has to be logged in to, all to get a generated password which is used to remote desktop desktop into the same progressive controller under a different account. Password changes every 24 hours. Oh, and did I mention that this is typically done on an active casino floor? Good times.

[–] Jax@sh.itjust.works 3 points 6 days ago (1 children)

But why though

[–] Openopenopenopen@lemmy.world 2 points 1 day ago

I’m not op, but It’s probably an isolated network with only one computer that has access to both the isolated network the th general network.

The restricted network (with the production or sensitive servers) has no direct Internet access and often no direct route from a corporate LAN.

There’s one “jump host” or “bastion” system that does have connectivity to that restricted segment.

Administrators connect to that jump host (often over RDP, sometimes SSH or a virtual desktop) from the normal network.

Once on the jump host, they can manage the internal systems inside the isolated network.

[–] MuskyMelon@lemmy.world 19 points 1 week ago (3 children)

Oh did you change your phone? Suffer bitch!!!

/s

load more comments (3 replies)
[–] The_v@lemmy.world 17 points 1 week ago (1 children)

The largest issue I have is the randomness of all the different security setups. One requires MFA by e-mail, one requires an authenticator, most require sms, some push to require using their app, and this random page requires a code by phone call. Now they are pushing passkeys and that is a complete cluster.

What's ironic is that most of the webpages that push these things don't reach the "Do I give a fuck?" threshold. The security is usually there to protect against unauthorized use of user stored credit cards. Since I am not liable for any fraudulent charges to the credit card, I really don't give a fuck about securing the account. Yeah I am reusing passwords, keeping them in plain text in a word doc etc..

When I worked for other companies, I moderately gave fuck about there security. Not enough to inconvenience me. If they made me change the password constantly, they got the number changing series at the end of the password - $tupidPass#01 Seriously that was my actual work password for over a decade.

Now my bank account and financial logins. You'd better believe those have every security feature they offer setup. I do not fuck around with those. I give a fuck about those.

[–] SaraTonin@lemmy.world 20 points 1 week ago (4 children)

I remember reading an article once which referred to research which suggested that making people change passwords every month made their accounts less secure, because they have to go extra steps to remember them - which usually translates to making them really obvious and/or storing them where they’re easily accessed. In one of my previous jobs where we had to change passwords every month, basically everybody would have their password written on a post-it on their computer monitor.

[–] The_v@lemmy.world 14 points 1 week ago (2 children)

In my first job I had like 7 different passwords to access different systems. Each one had different schedule of password reset. They each ended up being on a different reset schedule. I had to reset a password once or twice a week.

Yeah, everyone had their passwords on a sticky note on their monitor. I once got praise for being the one person without it. I of course had an abreviation for the system with what number series the password was on posted on my monitor.

load more comments (2 replies)
load more comments (3 replies)
[–] sirico@feddit.uk 13 points 1 week ago (4 children)

Get a yubi key then you have to find your keys

load more comments (4 replies)
[–] Reygle@lemmy.world 12 points 1 week ago

Have the day you/your company paid to have.

[–] Tja@programming.dev 11 points 1 week ago (2 children)

You should try Okta instead! It's... blue.

load more comments (2 replies)
[–] dan69@lemmy.world 10 points 1 week ago (1 children)

On a scale of 1-10 how likely are you having conversations with your friends about

load more comments (1 replies)
load more comments
view more: next ›