deweydecibel

This is just Lemmy.World. You don’t have to be an admin here to help out Lemmy as a whole.

I don’t want to dismiss the facts. There are terrible things going on but overall we’re living our best lives at the same time.

You are dismissing the facts, then.

You could only truly believe this if you’re a financially stable, healthy, gainfully employed, cis white man. Because for everyone else in the States at least, life is getting harder. You can cite all the statistics you like about the globe, but that’s not relevant to what people experience in their own lives.

And more importantly, the things that people are depressed about are the things that are getting worse, and on track to keep getting worse. A video about statistics in 2007 isn’t accounting for what we know in 2024 is coming in the future. The outlook is far more grim now.

People have been saying this about social media and the news for a long long time, and every single time they fail to take the context into account. People said this in 2016, too. “Your anxiety is just the media riling you up”. Then the anxiety ended up being a very accurate thing to feel, and in the years after, the real world events caused negative effects on people’s lives.

The world is not a TV show. What happens in the news, what people talk about on social media, no matter how negative it skews, those things happen in real life, not a vacuum. Many of them affect you in ways you can’t even comprehend, and many of them affect you in very obvious ways that some people just seem to want to overlook.

That doesn’t invalidate the negative news, though. I mean, what good news do you think they’re not reporting that makes up for the actual shit going on in the world that has a real, tangible effect on people’s lives?

"Your future is completely fucked, from finances, to freedoms, to democracy, to the damn climate itself.

But, hey, the bees are coming back. For now, at least."

Every time I see people try to blame the media on this, I look at my medical bills, I look at my bank account, I look at the temperature, I look at the cost of housing, I look at the vacant seats where my coworkers sat before they were let go, I look at the election results, I look at my sister who had her right to an abortion stolen, I look at the hateful people that vandalized my trans partner’s car…

And I think, damn…the media sure has some real reach, don’t they? They’re really going all out to make me miserable. I mean, this is some impressive commitment to a narrative. One day I’m gonna break free and live in this reality where “Everything is fine, actually” with the rest of you but first I gotta figure out how the media has me in the Truman Show situation.

Maybe the central problem is racing to put other people out of work period, regardless of who they are. Maybe putting people out of work is not a net benefit for society, it’s actually negative in the long run, and only truly a benefit for shareholders. They don’t need any more of those at the expense of the working class.

Like how there was a damn good reason for the start menu button to be on the button right: you could fling your mouse the lower left and no matter if you did it too far or fast, it would always hit the corner, and be at the start button. You never had to “target” the start button, you simply went all the way down to the left. Didn’t even have to look.

So obviously, they must of had an equally smart, thoughtful reason to put it in the middle, right? That’s a decision born from utility, not aesthetics. Clearly not making a painfully obvious attempt at copying their main competitor.

Honestly? Any of them except the last one. My preference would be 2005-2015, but any of them is better than what came after. Late 2010s was alright, but around 2020 you can really tell UI designers got their marching orders.

It’s all so damn boring and lifeless. Rounded corners on literally everything for no reason other than trend chasing, wasted space and needless gaps between elements, white OR black - rarely anything else, lest it interfere with whatever systemwide adaptive coloring thing is running (even if there isn’t one), boring and lifeless icons/logos, an obsession with “clean” and “streamlined” that effectively equates to the removal of usability for aesthetics, etc. All of it copy and pasted to every single piece of software or app or site.

Its ironic you put Corporate Memphis images next to it in the 2015-2024 section, because that is effectively what this trend in design aesthetic will be remembered as.

Bland, lifeless, safe, focus-grouped garbage, implemented by companies that have reached a point where the innovation is dead, corporate consolidation has effectively destroyed any room for something new and original to enter the space, and the only thing they do anymore is trend chase. Even the slightest bit of originality or doing something different from the market leader may risk the potential loss of a sliver of shareholder profit, and that simply must never be done.

And I swear to God, if I hear one more focus group generated argument about how rounded corners are more inviting or human, I am going to break into your home, and personally change every last single doorway into a hobbit hole, and every window into a port hole.

I think they’re talking about the designs, not the whole decade.

No, you can actually block them from adding additional devices. Once they add a TOTP device, they can not add or change to another without admin approval.

But more to the point, if the admin requires the management of the authentication software, I.e. Bitwarden or authy or whatever, then they clearly have concerns about the security of the MFA on the user’s device. If text messages are no longer considered secure then we move to the TOTP apps, but now if we’re just summarily deciding the apps are no longer considered secure, we’re demanding a secure app controlled by the admin must be used for MFA.

Can we not see where this is going next? Are we really under the delusion that because we have this magical Microsoft Authentication app now, MFA need never become more secure? This is the end of the road, nothing else will be asked of the user ever again?

If the concern is for the security of MFA on the user’s side of that equation, then trying to manage that security on a device that company does not own is a waste of time. Eventually this is not going to be enough.

So let’s just skip this step entirely and move on to fully controlled company devices used for MFA.

The apps work in air plane mode

They’re talking about Microsoft Authenticator, not any MFA. It doesn’t work on airplane mode if they require number matching.

also want to bet more than half the users that complain about this use the companies free WiFi.

…and? The wifi isn’t installed on their phone, the fuck does that matter?

There’s no “battle” here. It’s their phone, end of discussion. They don’t need to justify to you or anyone what they do and do not want on it.

What you don’t understand is that a worker does not need your permission or approval to exercise their right to control their personal property, and that right far exceeds any concerns about how easy the IT admin’s job is.

You don’t need the Intune app to use the authenticator.

The app will enforce a lock screen.

Or tell your IT department to think ahead and skip the part where we use personal devices to ensure the security of company devices and data. That will eventually change, and we’re going to look back on it the same way we look back on letting users receive work emails on any device with nothing but a password.

If you want security, use company devices. It’s really simple.

This is what it’s heading to eventually. This “authentication using a personal device that the IT department can’t control” crap will eventually evolve into “they must control the device”. Which means they just need to quit being cheap and buy devices they can manage for this purpose.

For now.

The point is, the patterns in software security are pretty clear. People will keep finding ways around the authenticator, eventually someone will get their account compromised, and at some point it will get more restrictive.

It doesn’t matter how it works now, because once it’s normalized that this Microsoft app must be on your phone so you can work, and it must operate exactly as it wishes to, Microsoft will be able to start pushing more restrictions.

At a certain point, the device simply has to be verified as secure in and of itself before it can keep another device secure. Meaning your phone will be brought under your workplace’s security policies.

Unless you are going to take the time to reverse engineer the app and show why the company shouldn’t pick it, you’re just being a whiny pain in the arse.

You’re god damn right they are, and they have every right to be. I’m in It too and I’m absolutely sick of the condescending attitude and downright laziness of people in the field who constantly act like what the users want doesn’t matter. If they don’t want it on their personal device, they don’t need a damn reason.

This job is getting easier all the time, complaining because users don’t want Microsoft trash on their phone might make marginally more work for you is exactly as whiny.

Or, throw a fit and have the joys of dealing with two phones. Trust me, after a year or so of that, the MS Authenticator app on your personal phone will feel like a hell of a lot better idea.

I see this all the time and it’s downright hysterical. Who the hell can’t handle having to have two devices on them?

“Oh yeah you’ll regret asking for this! Just wait till you have to pull out that other thing in your bag occasionally! You’ll be sorry you ever spoke up!”

Also, develop some pattern recognition. If you can’t see how Microsoft makes this substantially worse once other methods have been choked out, you haven’t learned a thing about them in the last 30 years.

Ever notice that TOTP can be backed up and restored to a new device? If it can be transferred, then the device no longer counts for the “something you have” second factor in my threat model.

The administrator can restrict this.

When I got the few emails from users at my organization who refused to use the app on their phones, I was ecstatic and I went to bat for them with our section director who insisted on making it mandatory, no exceptions.

Unfortunately most people in IT seem to just be lazy and believe “if it makes my job easier, absolutely no other concerns are relevant”.

Except that the Authenticator is being forced in place of other, third party apps.

I don’t mind using my phone to authenticate. But now I’m not allowed to do it from Bitwarden. I must use their app.