#indieweb 2022-11-23

2022-11-23 UTC
Nuve, [fluffy], [snarfed], [Jeremy_Keith], n8chz, geoffo, gxt, jeremycherfas and gRegorLove_ joined the channel
#
[schmarty]
The glitch personal static sites are just static sites. Easily moved for sure. Even more complex stuff on glitch is much less platform-bound than like heroku.
coleman, fcser, romangeeko, mro, gRegor, joshproehl, [Jeremy_Keith], frenzcan, peterrother, benji, Nuve, rvalue, barnaby and jonnybarnes joined the channel
#
[tantek]
Good to know. If there’s a link that documents that perhaps it would be good to add to /Glitch in a new “How to export” section
mouse[d]_, pmlnr, IWDiscordRelay, bterry, coleman, geoffo, rvalue, ehmry, mro, gRegor and gRegorLove_ joined the channel
#
IWDiscordRelay
<j​acky#7226> I could do that in a bit, would link to their docs as well
#
[tantek]
that would be great jacky!
geoffo, mro, ehmry and angelo joined the channel
#
[tantek]
SMS << Twitter SMS second factor failing and vulnerable to shut-off: 2022-11-17 [https://www.schneier.com/blog/archives/2022/11/failures-in-twitters-two-factor-authentication-system.html Failures in Twitter’s Two-Factor Authentication System] <blockquote>… texting “STOP” to the Twitter verification service results in the service turning off SMS two-factor … allows a hacker to spoof the registered phone number to disable two-fac
#
[tantek]
authentication. That potentially exposes accounts to a password reset attack or account takeover through password stuffing.</blockquote>
#
Loqi
friendly reminder [tantek], that's a lot of dev jargon! authentication... can you move to #indieweb-dev?
#
Loqi
ok, I added "Twitter SMS second factor failing and vulnerable to shut-off: 2022-11-17 [https://www.schneier.com/blog/archives/2022/11/failures-in-twitters-two-factor-authentication-system.html Failures in Twitter’s Two-Factor Authentication System] <blockquote>… texting “STOP” to the Twitter verification service results in the service turning off SMS two-factor … allows a hacker to spoof the registered phone number to disable two-fac" to the "See Also" section of /SMS https://indieweb.org/wiki/index.php?diff=84600&oldid=83325
n8chz, bterry1 and sp1ff`` joined the channel
#
[tantek]
hmm, if Apple user documentation uses "authentication" then perhaps it is not jargon but has entered assumption of common usage: https://support.apple.com/en-us/HT204915