Saik0

Well that’s a bit of the point of my post… why are you making it out like disabling the 2fa app matters?

Edit: Swype typos!

What a great addition to the conversation. Congratulations! You’ve still addressed nothing!

Because that shit only works in fantasy land.

Glad to know my company, and the companies I contract for are fantasy land then.

employees WILL expect support

And they will get it if they use the company default options.

Nothing about this is losing. I’m CIO for 3 separate companies (2 by contract). None of them have issues with this type of policy. We do bare minimum to not limit the toolset they can use and support a specific set of tools that we like the best. That’s it. Those who are smart enough to use their own tools clearly know enough about IT to make good decisions that we can trust. The rest use the default tools… and we support those tools explicitly.

More importantly, we’re not shitting on those who ARE making good decisions overall, but just have a preference. That makes the employees feel heard and keeps them happy. Keeping them happier keeps everyone more productive.

This is disingenuous though… You can simply reset the TOTP seed on any account to achieve the same operation. We use AuthLite on a local domain… I can disable an account domain-wide by simply resetting the TOTP seed or disabling the account. Using an Azure domain and MS app doesn’t add any value in that regards. All of the online office stuff can be linked onto a local domain as well and would also be disabled.

I’m pushing to make us exclusive because I’m sick of the IT support guys trying to support a dozen apps.

While I understand this… Why not just refuse to support and NOT remove the capability for all those who don’t need support and work just fine with their own? It’s not like TOTP isn’t a solved problem at this point.

Eg. “we only support MS auth, If you choose to use your own you will not receive any company support.”

Not sure I understand what the faraday cage would accomplish. It’s the companies device. You’d be skipping this presumption outlined earlier in the thread

they are entitled and expected to track it as much as my work laptop or any other company equipment.

Leaving the work phone at work is a valid answer to me. Assuming that doesn’t actually come with any other downsides (working offsite and having to return to the office on unpaid time just to drop off the phone for example).

Or I brought up a point that you didn’t consider, and rather than addressing it you need to resort to low level ad hominem. You contradicted yourself. Either explain the contradiction or move on. There’s no point in this comment unless you’re attempting to discredit me without reason which just makes you look bad.

Your point is illogical.

You stated

they are entitled and expected to track it

Just to turn around and back-peddle

If I don’t want them tracking me I just turn it off

Are they entitled to it or not? If they’re entitled, then why do you have a right to cut it off? I’d argue they have no right to it to track me off hours at all… regardless of the device used. u2f tokens like yubikey would be just as sufficient for 2fa with none of the tracking.

The point is that the phone will be tracking 24/7 regardless of your actual availability.

This whole discussion is about a government forcing Proton mail to take actions. Telling me to “read up on pfs” is irrelevant by your own admission. ProtonMail can be compelled to give up their keys, or to hand them over for all current/future transactions.

So once again…

“read up on pfs”
“Pfs doesn’t matter”
Literally this post.

You cannot rely on MTAs to transmit ANYTHING securely in the context of this discussion. Period. There is no E2E when there’s an MTA involved unless you’re doing GPG/PGP or S/MIME. Nobody does this though… Like literally nobody. I’ve got both setup and have NEVER had an encrypted email go through because nobody else does it. It doesn’t matter what Proton claims to support.

That’s it. Telling anyone to read up on anything when they’re 100% correct is asinine.

Email in transit is not encrypted. At least not encrypted by anything that the government can’t compel the company to hand over.

Edit:

Email in transit is not encrypted. At least not encrypted by anything that the government can’t compel the company to hand over.

This is what I originally said. It was clear. I don’t know why you’re arguing otherwise.

“read up on pfs”
“Pfs doesn’t matter”

Literally this post.

Proton would have the key. A government that is already compelling them to hand over your account can simply be compelled to provide the TLS keys. The point is that government doesn’t have to compel proton for at rest storage, but can compel for in transit interception.

Email in transit is not encrypted. At least not encrypted by anything that the government can’t compel the company to hand over. Your password as best can only lockdown the mailbox itself. Not the receipt/sending of emails.

Edit: The point being is that if you’re a person of interest, the government can just watch your activity until they get what they want. And Proton doesn’t really have anything they can do about it other than a canary page I suppose.

Edit2: to make it even more clear, I’m talking about MTAs communicating with each other. Proton being one party would have the keys to their side of the communication which is sufficient to decode the whole lot.

We don’t acknowledge virtually any other noise that other humans make outside of normal conversation. I’m on the boat of sneezes are just another weird noise we make, there’s no requirement to acknowledge them.

This isn’t the middle ages anymore where a sneeze had way different implications related to illness and death. And I don’t know of any faiths that truly believe the old “soul leaving your body” ‘origin’ story either.

Rolling up a chip bag once every couple of days when you have chips isn’t going to cause hearing loss.

Go look up a video of these bags. Mere handling them is loud as shit. Not just when you roll them up when you’re done.

NIOSH standards say that at 95db, you shouldn’t be exposed to more than ~45 minutes of it. Where-as an alternative “loud” bag was 77 db, which is longer than 50 hours of exposure (exceeds the rolling period and is thus “safe”).

Noise exposure is additive during a rolling period. So just saying “once every few days” is bullshit. This isn’t something that happens or can be in a vacuum. It’s adding to the total exposure that you’re exposed to every day. On top of the rest of your day the 95db chip bag is a really stupid fucking way to damage your hearing. Because you chose to eat some chips while watching a movie one night.

As someone with tinnitus… Fuck people who downplay hearing loss/damage. You should be doing everything possible to keep your exposure to anything above 80db to a minimum.

https://www.wsj.com/articles/SB10001424052748703960004575427150103293906

It is louder than “the cockpit of my jet,” said J. Scot Heathman, an Air Force pilot, in a video probing the issue that he posted on his blog under the headline “Potato Chip Technology That Destroys Your Hearing.” Mr. Heathman tested the loudness using a RadioShack sound meter. He squeezed the bag and recorded a 95 decibel level.

95 decibels is loud enough that you have to be concerned about hearing loss.

https://www.ncoa.org/adviser/hearing-aids/decibel-levels/

Prolonged exposure to sounds louder than 85 decibels can damage your hearing.
Sixty decibels is equal to the sound of normal conversation, 90 decibels is closer to a lawn mower or hair dryer, and 120 decibels is more like a siren on an emergency vehicle.

1/20th of the plastic burns though… And the aluminum is 100% recyclable. So not quite “just like”.

Hearing loss is not an acceptable trade-off for a bag of chips.

Do you remember when Sun Chips changed their chip bag material to a more environmentally friendly compostable material? People lost their minds. Why? Because the bag crinkled a lot.

No… Because it crinkled at a high enough volume that you actually have to worry about hearing loss. People weren’t losing their mind for no reason.

https://www.wsj.com/articles/SB10001424052748703960004575427150103293906

It is louder than “the cockpit of my jet,” said J. Scot Heathman, an Air Force pilot, in a video probing the issue that he posted on his blog under the headline “Potato Chip Technology That Destroys Your Hearing.” Mr. Heathman tested the loudness using a RadioShack sound meter. He squeezed the bag and recorded a 95 decibel level.

The Bag was louder than the ambient noise in a jet fighter cockpit in flight.

One nitpick, Jesus was almost certainly a real figure. There are many records indicating someone with that name was in the area at the time, and that they were executed by crucifixion.

No there isn’t. There’s tons of people who’ve claimed they’ve found records but ultimately none of them can be produced or are based on other accounts like Josephus who doesn’t ever directly reference Jesus. Further none of his original writing survived. Only reproductions, and the earliest one is from 11th century. Or Tacitus who was born after Jesus was dead. So no direct knowledge or evidence of Jesus as a individual, just a second hand accounting at best. Oh and also, no originals exist. Just copies dated back to the 11th century…

All “evidence” only starts 1000 years after Jesus actually lived… supposedly written by people who were born after Jesus died… and would have written that stuff 50-100 years after his death.

There is no actual archaeological evidence that “Jesus” existed. And a mere 3 references that exist outside of the bible that I’m aware of. All of which are not original manuscripts.

Edit: All of this to say, there is no consensus… and to claim there is consensus on the matter is a christian/catholic claim. Not an actual historical consensus.